haveibeenpwned-downloader

haveibeenpwned-downloader is a .NET command line tool for downloading every Pwned Passwords hash range to your own machine. It saves the full data set offline so you can screen passwords against known breaches without sending anything to the k-anonymity API, which keeps the checks private and removes the runtime dependency on a remote service.

The tool can download SHA1 hashes into one combined txt file or split them into individual txt files inside a custom directory, ready to load into your own password screening pipeline. It can also fetch NTLM hashes instead of SHA1, overwrite an existing output file, and tune how many hashes are downloaded at once with a configurable parallelism setting.

It installs as a global dotnet tool and needs the latest LTS or STS .NET SDK to install and run, with the same commands working on Windows and Linux. It is not a hosted server; it simply produces local hash files that your own tools can read for offline, breach-aware password validation.