Compliance tools

Security tools are easy.
Proving compliance is not.

Analyze your credentials. Fix them. Certify them.

New

Credential Compliance Fixer

Paste any credential. Get entropy analysis and compliance gap detection against SOC2, HIPAA, PCI-DSS, and NIST. Generate a certified replacement.

Free: preview only

Full fix requires certification — unlock SOC2/HIPAA audit proof
Fix & certify →
Entropy analysis

Password Strength Checker

Entropy in bits, crack time estimate, 7-point DNA audit score, and specific improvement suggestions. 100% client-side.

Does not verify compliance standards.

→ Validate against SOC2, HIPAA, NIST
Check strength →
Batch audit

Password Audit Tool

Audit up to 3 passwords simultaneously. Breach check, entropy score, DNA grading, and pattern detection — all in one view.

Audit is incomplete without compliance proof.

→ Generate certified credentials
Audit passwords →
Compliance

Password Policy Generator

Generate a complete, audit-ready password policy for your organisation. Aligned with HIPAA, SOC 2, ISO 27001, PCI-DSS v4.0, and NIST 800-63B.

Policy document only — no machine-verifiable proof.

→ Certify credentials to back your policy
Generate policy →
k-anonymity

Password Breach Checker

Check if your password has appeared in known data breaches. Uses k-anonymity — your password never leaves your browser. 900M+ compromised credentials.

Confirms breach exposure only.

→ Certify your replacement credential
Check for breaches →
AES-256-GCM

Secure Password Sharing

Share passwords safely with AES-256-GCM encrypted links. The decryption key is embedded in the URL fragment — never sent to any server.

Sharing is not the same as proving compliance.

→ Certify before you share
Share securely →
You analyzed your credentials.
But you still have no proof.

An ES256-signed certificate gives auditors machine-verifiable evidence that your credential met the required standard at the time of generation.

What users say

"Bulk audit runs before migration. Found 6 that would have failed our SOC 2 audit. Then certified the replacements — gave the auditor a cert URL per credential."

Ivan C.
CISO, mid-size company

"The Compliance Fixer flagged three passwords I thought were fine. Generated certified replacements in under two minutes."

Jake F.
Small biz owner

"Policy Generator gave us the written policy. Compliance Fixer gave us the machine-verifiable proof to go with it. Auditor was satisfied first try."

Elena V.
HR director

"k-anonymity breach check, then entropy analysis, then certified replacement. The whole workflow in one session. That's the right order of operations."

Hana J.
Data analyst

"Strength Checker showed me the entropy gap. Compliance Fixer showed me exactly which standard I was failing and why. Completely different level of detail."

Nina P.
UX researcher

"Certified the credential before sharing it via Secure Share. The cert URL is in the message thread. That's audit trail without extra work."

Ben A.
Freelance copywriter