Skip to content
/ mybb-breachshield Public

A MyBB extension to reject breached passwords.

License

ISC license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dvz/mybb-breachshield

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
inc
inc
 
 
.gitattributes
.gitattributes
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 

Repository files navigation

Breach Shield

A MyBB plugin that rejects compromised passwords during login attempts, protecting against credential stuffing attacks.

Submitted values are checked against a list of compromised passwords from the HIBP API using a partial hash. Recognized passwords produce an error message directing users to reset their password using e-mail.

The length of automatically generated passwords during password reset is set to 20.

Requirements

  • MyBB ≥ 1.8
  • PHP ≥ 7.1

About

A MyBB extension to reject breached passwords.

Topics

mybb haveibeenpwned mybb-plugin credential-stuffing

Resources

Readme

License

ISC license

Security policy

Security policy
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages