HaveIBeenPwnd – PowerShell Function

Body:

I recently became aware of a site called HaveIBeenPwnd – https://haveibeenpwned.com – run by @troyhunt and wanted to create a simple PowerShell Function for being able to check against this Database on whether your Email address (or like me addresses) has been likely to have been Pwnd!

The function is in a Module called Check-HaveIBeenPwndStatus & the current function is called Check-HaveIBeenPwndStatus with only the 1 parameter –Account in which you pass your email account across

So you would call it via Check-HaveIBeenPwndStatus –Account ‘bar@foobar.com’ and you’ll either get back 1 of 2 messages – A warning if it is found like the below

WARNING: We have your account foo@bar.com marked as having been pwnd on the following sites 000webhost Adobe Black Hat World Flashback Gawker MPGH Stratfor – Please Check and change your passwords across other sites as soon as you can!

Or you’ll get back the following (obviously with your account details)

Although bar@foobar.com has not been found in this database of PwndSites we advise that you change passwords regularly for any other accounts that may be linked to bar@foobar.com for your own protection

Hopefully adding in this function into a profile script that will run once a month (or week or even daily if you need it) will save you some possible headaches in future.

You can find the module on GitHub at http://bit.ly/1MbnFTD

Published: 04/11/2015 03:48


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.