PHPackages                             divineomega/laravel-password-security-audit - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. divineomega/laravel-password-security-audit

Abandoned → [jord-jd/laravel-password-security-audit](/?search=jord-jd%2Flaravel-password-security-audit)Library[Security](/categories/security)

divineomega/laravel-password-security-audit
===========================================

Laravel Password Security Audit

v3.0.0(2mo ago)44LGPL-3.0-onlyPHPCI failing

Since Feb 15Pushed 2mo agoCompare

[ Source](https://github.com/Jord-JD/laravel-password-security-audit)[ Packagist](https://packagist.org/packages/divineomega/laravel-password-security-audit)[ GitHub Sponsors](https://github.com/DivineOmega)[ RSS](/packages/divineomega-laravel-password-security-audit/feed)WikiDiscussions master Synced yesterday

READMEChangelog (4)Dependencies (4)Versions (5)Used By (0)

🔏 Laravel Password Security Audit
=================================

[](#-laravel-password-security-audit)

This package provides an Artisan command to audit the security of your users' passwords.

Laravel Password Security Audit works by executing a long running process that checks your users passwords against a list of over 10k commonly used weak passwords. When complete, it outputs a report of those users that are affected and the passwords that were found.

Installation
------------

[](#installation)

To install Laravel Password Security Audit, just run the following command from the root of your project.

```
composer require jord-jd/laravel-password-security-audit
```

Usage
-----

[](#usage)

In a standard Laravel installation using the default `\App\User` model, you can just run the `security:password-audit` Artisan command.

```
php artisan security:password-audit
```

While running a progress bar will be displayed indicating which user is being checked, and an estimate of how long the process will take to complete.

The speed of this process will take is dependent on the number of users your project has and your server's CPU performance. Multiple CPU cores will be taken advantage of if available.

```
User 1   3.6%   33/560168   ETC: 4h 39m   Elapsed: 6s   ▓░░░░░░░░░░░░░░░░░░░

```

When complete, you will be presented with a table of users with weak passwords. For each user, this will include the user's primary key (usually the `id` field), the password found and its associated hash.

```
6 user password(s) were found to be weak.
+----------+----------+--------------------------------------------------------------+
| Key (id) | Password | Hash                                                         |
+----------+----------+--------------------------------------------------------------+
| 1        | password | $2y$10$v6LjwoJOqumnO2A1VmscD.Tnot0D2koOzpGsmVfZaiWM6zprRpwWi |
| 2        | secret   | $2y$10$em9DONupJiDO1LMnR2PZZeoTOEyNutx4mGscQiKXWCBr09INUAjj6 |
| 14       | admin    | $2y$10$Kc.6/37NfY.D.JlSFxhyKexUQoo8dDng37MQDl.jSTtwclt7/ypJO |
| 43       | test123  | $2y$10$Nli8PgRNgTEZE1D1XuiBwOVdxRJJfkVvnWf7N2.Ko93av1ykC4DJO |
| 54       | secret   | $2y$10$eq6kcNOFC4bYNBDPHOTtC.EAvrQU3IK1kM5/QpwN3FK7HnxPOjR5e |
| 68       | secret   | $2y$10$Fvl47D2y0uDEr.6waoXzpeyB2k/.nz1SBlygWP12g8TbMEMxp1E4S |
+----------+----------+--------------------------------------------------------------+

```

### Custom user model

[](#custom-user-model)

If you've moved the `User` model, or want to check a different model, you can use the `--user-model` option. See the following example.

```
php artisan security:password-audit --user-model=\\App\\Models\\User
```

### Custom password field

[](#custom-password-field)

If the passwords you wish to check are stored in a different field, you can change this using the `--password-field` option. See the example below.

```
php artisan security:password-audit --password-field=new_password
```

###  Health Score

41

—

FairBetter than 89% of packages

Maintenance83

Actively maintained with recent releases

Popularity7

Limited adoption so far

Community6

Small or concentrated contributor base

Maturity59

Maturing project, gaining track record

 Bus Factor1

Top contributor holds 100% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Every ~730 days

Total

4

Last Release

87d ago

Major Versions

v1.1.0 → v2.0.02026-02-14

v2.0.0 → v3.0.02026-02-14

### Community

Maintainers

![](https://www.gravatar.com/avatar/c580cdf7c14898fff179cdfc1085892091d5d2f49d917873a12365af9ac77c93?d=identicon)[Jord-JD](/maintainers/Jord-JD)

---

Top Contributors

[![Jord-JD](https://avatars.githubusercontent.com/u/650645?v=4)](https://github.com/Jord-JD "Jord-JD (42 commits)")

---

Tags

laravellaravel-packagepasswordphpsecuritysecurity-auditusers

###  Code Quality

TestsPHPUnit

### Embed Badge

![Health badge](/badges/divineomega-laravel-password-security-audit/health.svg)

```
[![Health](https://phpackages.com/badges/divineomega-laravel-password-security-audit/health.svg)](https://phpackages.com/packages/divineomega-laravel-password-security-audit)
```

###  Alternatives

[akaunting/laravel-firewall

Web Application Firewall (WAF) package for Laravel

999465.8k2](/packages/akaunting-laravel-firewall)[soved/laravel-gdpr

GDPR compliance with ease

299127.5k2](/packages/soved-laravel-gdpr)[masterro/laravel-xss-filter

Filter user input for XSS but don't touch other html

41254.5k](/packages/masterro-laravel-xss-filter)[enlightn/laravel-security-checker

A Laravel package to scan your dependencies for known security vulnerabilities.

51173.4k](/packages/enlightn-laravel-security-checker)[nickurt/laravel-pwned-passwords

PwnedPasswords for Laravel 11.x/12.x/13.x

187.5k](/packages/nickurt-laravel-pwned-passwords)[dgtlss/owaspadvisor

A Laravel package to help developers implement OWASP Top 10 security guidelines

327.1k](/packages/dgtlss-owaspadvisor)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)