Skip to content

AgnellusX1/SmartPass

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

61 Commits

.idea

.idea

 
 

FrontEnd2

FrontEnd2

 
 

PreProcess

PreProcess

 
 

ScreenShots

ScreenShots

 
 

static

static

 
 

templates

templates

 
 

.gitattributes

.gitattributes

 
 

.whitesource

.whitesource

 
 

Cluster Connect.py

Cluster Connect.py

 
 

Clustering(KMeans).py

Clustering(KMeans).py

 
 

DecisonTree.py

DecisonTree.py

 
 

Hierarchial.py

Hierarchial.py

 
 

LogisticRegression.py

LogisticRegression.py

 
 

NaiveBay.py

NaiveBay.py

 
 

README.md

README.md

 
 

Sample.py

Sample.py

 
 

algo_compare.py

algo_compare.py

 
 

k_fold.py

k_fold.py

 
 

knn.py

knn.py

 
 

logistic(input).py

logistic(input).py

 
 

model1.pkl

model1.pkl

 
 

randomforest.py

randomforest.py

 
 

svm.py

svm.py

 
 

Repository files navigation

SmartPass

A Smarter Approach towards Password Profiling

Abstract

In today's world of inter-connectivity and vast ocean of services on the Internet, Security seems to be one of the important factor. Passwords have always been the most primitive security and the first line of defense against any unauthorized access. Over the years, with the advancement in computational power and new smarter ways for password-based breaches, passwords need to be stronger than ever. The determination of Strength of a passwords has always been a topic of discussion for many Security Scientist and experts. The most widely used approach today is the Rule-Based Approach. A password that is able to satisfy a set of rules, such as length, special characters and numbers is considered to be a strong password

About the Project

In this project we decided to to study the various passwords structures and determine a new way of password profiling using Machine Learning Tools. Our objective was to study these passwords and isolate attributes that play an important role in determining the strength of the passwords and use these attributes to profile passwords and determine their strength and Probablity of being Breached.

FEATURES

  • A Smarter Way
  • Latest Dataset of Breached Passwords
  • Data-Driven Approach
  • 2 Approaches
    • Based on Breached Passwords (Clustering)
    • Based on Breached and UnBreached Passwords (Regression)
  • Real-time Profiling
  • Could be used Individually or as second Layer of ensuring password Strength
Rule-Based Approach Smart Approach
A set of Regex rules are defined in order to force the user into creating Complex Passwords There are no fixed Defined Rules
These Rules are generic in nature The Rules are auto generated and data dependent
They increase the probability of Randomness in the password They leave the creation of the password to the users creativity
They can be used as guidelines to a malicious attacker There are no fixed guidelines that impact the creation of the password
The Rules are fixed and have no scope of updating or scalability in future The model can be retrained with fresher and more recent data, to generate better results
The Rules are derived from computational ideal strategies The Rules are generated on the basis of actual human generated passwords
Gives Probability of Complexity Gives Probability of being Breached and Complexity

Developers

Screenshots

1.Clustering Based

2.Regression Based

Tools used

  • Python 3 (Obviously)
  • Sci-kit Learn Machine Learning Library (Machine Learning Models)
  • Pycharm (IDE of Choice)
  • Flask (Web Based GUI)
  • SecLists (Dataset)

About

A Smarter Approach towards Password profiling, using Machine Learning

Topics

security machine-learning clustering regression password dataset password-strength strength breaches password-profile password-profiling

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages