View on GitHub

The Riddler

Riddler is a lightweight, performant microservice that checks passwords against the NCSC top list of the most common passwords

Go Docker Image CI version

Introduction

Riddler is a lightweight, performant microservice written in Go.

It stores an in-memory list of the 100,000 most common passwords as issued by the National Cyber Security Centre and provides a simple API to do whole-word, case-sensitive matching against this list.

Deploy it

Docker container

A tiny alpine distribution running the go binary

  1. git clone git@github.com:henricook/riddler.git
  2. Create the files server.crt and server.key in the base directory for HTTPS (compulsory).
  3. docker build .
  4. Run/deploy as you wish

Go Binary

  1. Download from the releases page.
  2. Unpack the tar ball and select a suitable binary for your system.
  3. Create the files 'server.crt' and 'server.key' in the base directory for HTTPS (compulsory).
  4. Run/deploy as you wish

Simple API

Check most common passwords

POST /check-100k

Example Request Payload:

{ "value": "string-to-check" }

Example Response Payload:

{ "common": true }

Ping

GET /ping

Example Response Payload:

{ "response": "PONG" }

Contributors

Are very welcome. Please drop me an email riddler [at] henricook.com