Inicio / Verificar Contraseña

¿Tu contraseña fue filtrada?

Verifica la fortaleza de tu contraseña y descubre si apareció en filtraciones de datos. 100% privado — tu contraseña nunca sale de tu navegador.

Verificando filtraciones...
Strength
Time to Crack
Breach Checker
Checking...

Your password never leaves your browser. We use k-Anonymity to check breaches without revealing your password. Only the first 5 characters of the SHA-1 hash are sent — making it impossible to reconstruct the original password.

Protégete

Una contraseña fuerte es el primer paso. La encriptación es el segundo.

Escudo VPN encrypts your entire connection with post-quantum technology. Real residential IPs, zero trackers, zero logs — desde solo. Cancel anytime.

Get Escudo VPN

Todo sobre la seguridad de contraseñas

Cómo funciona la verificación

We use a technique called k-Anonymity to check if your password has been leaked without ever revealing it. Here is how it works:

  1. Your password is converted into a SHA-1 hash in your browser (e.g. 5BAA6...)
  2. Only the first 5 characters of the hash are sent to the Have I Been Pwned API
  3. The API returns hundreds of hashes that start with those 5 characters
  4. Your browser compares locally whether the full hash is in the list

Result: the API never receives enough information to discover your password. It is mathematically impossible to reconstruct it from 5 characters of the hash.

Qué hacer si tu contraseña fue filtrada

If your password appeared in breaches, follow these steps immediately:

  1. Change the password now on all services where you use it
  2. Enable two-factor authentication (2FA) on all accounts possible
  3. Use unique passwords for each service — never reuse passwords
  4. Check your email in our breach checker
  5. Use a password manager to create and store strong passwords automatically

5 consejos para contraseñas seguras

  1. Minimum 12 characters: The longer, the more secure. Short passwords can be cracked in seconds by brute force attacks.
  2. Mix everything: Combine uppercase, lowercase, numbers, and special symbols to maximise entropy.
  3. Avoid the obvious: No dates, pet names, "123456", or "password". Hackers test these first.
  4. Use random phrases: "correct-horse-battery-staple" is stronger and easier to remember than "P@ssw0rd!".
  5. One password per service: If one site leaks, the others remain secure. Use a password manager to make it easy.

Herramientas relacionadas

Explore other free tools from Escudo VPN to protect your digital life:

Email Breach Checker Escáner de Amenazas Test de Velocidad Test de Privacidad

Every tool is built with privacy in mind. No personal data is stored on our servers.

Frequently Asked Questions

Preguntas sobre el verificador

Yes, 100% safe. Your password never leaves your browser. To check for breaches, we use k-Anonymity: only the first 5 characters of the SHA-1 hash of your password are sent to the Have I Been Pwned API. This makes it impossible to reconstruct your password from that information. All strength processing and comparison happens locally on your device.

It means your password appeared in X databases leaked by hackers. This does not mean YOUR account was hacked, but that someone (possibly another person) used the same password and it was exposed. The higher the number, the more well-known the password and therefore the more vulnerable you are. We recommend changing any password found in breaches immediately.

Use at least 12 characters combining uppercase, lowercase, numbers, and symbols. Avoid dictionary words, dates of birth, or sequences like 123456. The best strategy is to use a password manager to create and store unique passwords for each service. Long random phrases (like "correct-horse-battery-staple") are also excellent options.

A VPN like Escudo VPN encrypts your entire internet connection, preventing hackers on public WiFi networks from intercepting your passwords and data. However, a VPN does not replace good password practices — it adds an extra layer of protection. The ideal approach is to combine strong, unique passwords with a VPN for maximum security.