HacWare Ban Hacked Passwords is a free jQuery form validation extension that prevents website users from creating accounts using passwords found on commonly hacked password lists. The extension validates passwords against either the top 5,000 or top 100,000 most commonly hacked passwords, as identified by Britain's National Cyber Security Centre (NCSC) in collaboration with the Have I Been Pwned (HIBP) project. How it works: - Extends the existing jQuery Validator plugin with a custom rule called "CheckPasswordBanned" - Checks user-submitted passwords against a pre-compiled list of known compromised passwords - Blocks account creation if the submitted password matches an entry on the hacked passwords list - Offers two list sizes: a 5K list (checkHackedPass5K.js) and a 100K list (checkHackedPass.js) Installation: - Implemented by including the extension script alongside jQuery and the jQuery Validate plugin - Source code and installation instructions are available on HacWare's GitHub repository (HacWare-Inc/checkHackedPassExtension) - Integrates into existing HTML forms with minimal configuration The password list used is sourced from the NCSC/Have I Been Pwned dataset. The tool is offered at no cost and is positioned as a standalone utility separate from HacWare's commercial security awareness training platform.