I wanted to check my passwords to see if they were compromised but really didn’t feel safe having a third party check them.
https://haveibeenpwned.com/Passwords
Luckily they provide a large 10Gb file with hashed SHA1 passwords.
I can simply run
echo -n “foobar” | grep pwned-passwords-sha1-ordered-by-hash-v4.txt
But it takes a long time, luckily someone came up with a trivial binary search
https://github.com/doug16rogers/find-pwned-password
I compiled it on one box and copied the database and binaries to a secure box.
This box has firewall, selinux and is non routable on the internet.
Much better, I am surprised at what passwords I used to use is out there.