>>Does anyone know if a tool/function/class that can determine if a password is poor and should be rejected? At the moment, I have a growing list of passwords (example: password, 1234, abc, company name...) and rules (examples: not username, not first or last name, not birthdate...).
>>
>>I've seen tools that will ensure a password has at least 1 number and a special character, but I'm more looking for something that will reject common passwords, words in the dictionary and other common rules.
>
>
>Haven't used one myself. Type "password quality checker" in Google and see what shows up.

Thanks for the search terms. Still mostly regular expressions and other ways of counting and ensuring numbers and special chars. I've found some open source compilations of english words. I think I will end up just doing a database lookup.