SafeVaultSafeVault
Back to Help Center
Security

Running a Security Audit on Your Vault

Use SafeVault's built-in security audit tool to find weak, reused, or compromised passwords.

What Is the Security Audit?

SafeVault's security audit scans your vault and identifies potential vulnerabilities. It checks for weak passwords, reused credentials, and passwords that have appeared in known data breaches.

How to Run a Security Audit

  1. Open SafeVault and go to Tools → Security Audit
  2. Click Run Audit
  3. SafeVault analyzes all entries in your vault
  4. Results are shown in a dashboard with a security score

The audit runs entirely on your device — your passwords are never sent to any server for analysis.

What the Audit Checks

Weak Passwords

Passwords that are too short, lack complexity, or use common patterns (e.g., "password123", "qwerty") are flagged as weak.

Reused Passwords

Using the same password on multiple sites means a breach on one site compromises all of them. The audit highlights every instance of password reuse.

Compromised Passwords

SafeVault checks your passwords against known data breaches using a technique called k-anonymity. Only a partial hash of your password is sent to the breach database — your full password is never exposed.

Old Passwords

Passwords that haven't been changed in over a year are flagged for review. Regular rotation reduces risk from undetected breaches.

Understanding Your Security Score

Your score ranges from 0 to 100:

  • 90–100: Excellent — your vault is well-secured
  • 70–89: Good — a few improvements recommended
  • 50–69: Fair — several passwords need attention
  • Below 50: Poor — immediate action recommended

Fixing Issues

For each flagged item, SafeVault provides an Update button:

  1. Click Update next to a flagged entry
  2. SafeVault opens the website in your browser
  3. Navigate to the site's password change page
  4. Use SafeVault's password generator to create a new strong password
  5. Save the updated password in your vault

Best Practices

  • Run the audit monthly to catch new issues
  • Fix critical items first — compromised and reused passwords are the highest priority
  • Use the password generator for all new passwords — aim for 16+ characters
  • Enable breach monitoring in Settings to get real-time alerts when your credentials appear in new breaches