Make sure you have brew installed on your system. If you don't have it, you can install it by following the instructions at brew.sh.

Make sure you have enough storage space available, as the script will download a large file (~55Gb) and process it. It will not re-download if pwnedpasswords.txt was not removed.

Make sure you don't have resource-intensive applications running, as the script will download a large file and process it. It will not sort it if pwnedpasswords_sorted.txt was not removed.

Run the generate-passwords.sh script to download the latest passwords list from HaveIBeenPwned and generate a new common-passwords.txt file with 1,000,000 most common passwords.

./generate-passwords.sh

Optionally you can pass the number of passwords you want to generate as an argument. For example, to generate 100,000 passwords:

./generate-passwords.sh 100000

Install .NET SDK

brew install --cask dotnet-sdk

Install the PwnedPasswordsDownloader tool

dotnet tool install --global haveibeenpwned-downloader

Download the full passwords list (~55Gb), it will be saved as pwnedpasswords.txt in the current directory

haveibeenpwned-downloader

Sort the passwords list by frequency (descending order) and save it to sorted.txt (This step will take a while and be resource-intensive on RAM and CPU)

sort -t: -k2,2nr pwnedpasswords.txt > pwnedpasswords_sorted.txt

Extract the top 1.000.000 passwords.

head -n 1000000 pwnedpasswords_sorted.txt > top_passwords.txt

Remove the frequency column (optional, but recommended for consistency and reduced file size)

cut -d':' -f1 top_passwords.txt > top_passwords_hash_only.txt

Sort the passwords list by hash (optional, but recommended for consistency and may improve performance in some applications)

sort top_passwords_hash_only.txt > top_passwords_hash_only_sorted.txt

Move it into the passwords directory

mv top_plasswords_hash_only_sorted.txt passwords/common-passwords.txt