yarri / password-strength-analyzer
PasswordStrengthAnalyzer analyzes given password and scores its strength from 0% to 100%.
Requires
- php: >=5.6.0
- atk14/string4: ^0.5
Requires (Dev)
- atk14/tester: *
This package is auto-updated.
Last update: 2024-10-17 14:28:43 UTC
README
PasswordStrengthAnalyzer analyzes given password and scores its strength from 0% to 100%.
Usage
$analyzer = new Yarri\PasswordStrengthAnalyzer();
$score = $analyzer->analyze("someFAIRpasswd"); // 26
Usually, passwords with letters, numbers, symbols are considered as strong. It is also true for PasswordStrengthAnalyzer.
echo $analyzer->analyze("SomW2!3RE#"); // 91
PasswordStrengthAnalyzer will also rate letter-only passwords high if they are long enough.
echo $analyzer->analyze("someBOYS"); // 9
echo $analyzer->analyze("someBOYSdontCRY"); // 38
echo $analyzer->analyze("someBOYSdontCRYmuch"); // 71
But not all long passwords are rated high.
echo $analyzer->analyze("somesomesomesomesomesome"); // 4
Groups of 3 or more consecutive characters have a negative impact on the final score.
echo $analyzer->analyze("Secret18239!"); // 58
echo $analyzer->analyze("Secret12345!"); // 45
echo $analyzer->analyze("Secret76543!"); // 45
echo $analyzer->analyze("OpenAFBGCED!"); // 42
echo $analyzer->analyze("OpenABCDEFG!"); // 28
Installation
Just use the Composer:
composer require yarri/password-strength-analyzer
Live testing
In the package, there is a script runnable in shell which can be used for live testing.
$ php test/test_cli.php
initial score: 50%
coefficients:
* unique_chars: 1.8
* password_length: 1.2
* types_used: 0.675
* type_transitions: 0.7465
* simplicity_factor: 1
FINAL SCORE: 54%
password: THISisS3CR3T
License
PasswordStrengthAnalyzer is free software distributed under the terms of the MIT license