Introducing LulzCheck

June 26, 2011

So, apparently LulzSec is  over and done with. Even so, they’ve left a lot behind, in the form of more than 100,000 compromised passwords. Cearly, this is still potentially a problem, especially considering password reuse.

LulzCheck is a Greasemonkey script for Firefox. Basically, whenever you log into a website, it checks the username that you supply against an updated list of accounts that have been “leaked” by LulzSec, and gives you a warning if it finds your login in that list.

Keep in mind, if you get a warning message, it may not actually apply to the site that your are logging into. Because people reuse logins, and the ultimate origin of some of the leaked usernames/passwords is unknown, it’s not really possible for LulzCheck to automatically pin down exactly what accounts you need to change.

LulzCheck checks usernames only, and does not try to cross-reference the username and the password. This is done for a couple of reasons:

  1. It allows LulzCheck to alert the user that an account that they use has probably been compromised, even if it is not the account they are currently logging into.
  2. I didn’t want the ptoential leal and ethical implications of distributing the whole password list

 

LulzCheck can be downloaded at http://userscripts.org/scripts/show/105484

Advertisements

One Response to “Introducing LulzCheck”

  1. Anonymous said

    gud..script..really luved it..Thanks

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: