PassRefresh

Your passwords are your first line of defense — but when was the last time you actually updated them?

The average person has over 100 saved passwords. Many are weak, reused across multiple sites, or have already been exposed in data breaches. The problem is not that people do not care about security — it is that fixing all those passwords feels overwhelming. PassRefresh solves that.

PassRefresh coaches you through refreshing every password you have, one site at a time. No more guessing which ones are weak. No more wondering if you have been breached.

HOW IT WORKS:

STEP 1 — IMPORT
Export your saved passwords from Chrome or Safari as a CSV file and import them into PassRefresh. The app detects the format and parses your passwords securely on your device. Nothing is uploaded to any server.

STEP 2 — AUDIT
PassRefresh checks every password against the Have I Been Pwned database using a privacy-preserving technique called k-anonymity. Your actual passwords never leave your device. The app also flags weak passwords, short passwords, passwords without special characters, and passwords reused across multiple accounts.

STEP 3 — PRIORITIZE
A priority queue ranks your passwords from most critical to least. Breached passwords come first, followed by weak and reused ones. You always know exactly what to fix next.

STEP 4 — REFRESH
Tap any password in the queue to start the guided refresh flow. PassRefresh generates a strong replacement password, copies it to your clipboard, and opens the website for you. Update your password, come back to the app, and tap Mark as Updated. The app automatically advances to the next password in the queue.

STEP 5 — TRACK
Watch your security improve in real time. The Progress dashboard shows a completion ring, streak counter, and motivational messages that keep you going until every password is refreshed.

FEATURES:
- Breach detection powered by Have I Been Pwned
- Password generator with customizable length, character types, and quick presets
- Passphrase mode for memorable yet strong passwords
- Clipboard auto-clear after 60 seconds
- Priority queue ranks passwords by risk level
- Guided refresh flow with one-tap copy and open site
- Progress dashboard with completion ring and streaks
- Works with Chrome and Safari CSV exports
- Local storage only — your passwords never leave your device
- No account required — no sign-up, no email, no login

YOUR PRIVACY:
PassRefresh was built with privacy as the foundation. All password data is stored locally on your device. The only network request is to the Have I Been Pwned API using k-anonymity — only the first 5 characters of a password hash are sent, making it impossible to determine your actual password. No analytics, no tracking, no advertising.

Stop putting it off. Start refreshing.