When to use it
Create a safe password hygiene checklist without requesting passwords.
🤖 AI prompt
Password Audit Prompt
By Omellody Editorial Team · Published · UpdatedCreate a safe password hygiene audit checklist covering password managers, MFA, reuse risk, recovery codes, breach checks, and account hardening.
Copy-ready prompt
{account_types}{risk_level}{tools_available}
Create a password hygiene checklist.
Account types: {account_types}
Risk level: {risk_level}
Tools available: {tools_available}
Never ask for actual passwords. Return priority actions, MFA checks, password manager setup steps, recovery-code storage, and what to monitor.
Variables
| Variable | How to fill it |
|---|---|
| {account_types} | Replace with your real account types. |
| {risk_level} | Replace with your real risk level. |
| {tools_available} | Replace with your real tools available. |
Quality checks
- Add real context before running the prompt.
- Ask for examples if the first answer is too generic.
- Verify facts, numbers, links, and sensitive advice.
Direct answer
Password audit prompt: Never share secrets; use this prompt to produce a prioritized checklist for password manager setup, MFA coverage, reused-password cleanup, recovery-code storage, and breach monitoring without exposing any actual passwords.
| Input | What to provide |
|---|---|
| Scope | List account groups such as email, banking, work apps, social, domains. |
| Risk | Use low/medium/high based on reuse, shared devices, and account value. |
| Evidence | Ask for observable signals only: MFA on/off, manager used, recovery codes stored. |
| Output | Request P0/P1/P2 actions, owner, effort, and verification step. |
Source snapshot: Omellody generated this utility page from first-party prompt-library templates and refreshed it during the 2026-05-29 Red Mode quality-rescue pass. The page is not copied from external repositories; external radar signals were used only to understand demand shape.
Reusable output checklist
- Start with a one-sentence direct answer for the requested password hygiene audit.
- Return a structured table with priority, reason, draft/output, and verification step.
- Include assumptions and missing information questions only after the first useful draft.
- End with a short safety or quality review so the user can act without exposing sensitive data.
Red Mode depth upgrade: compact scoring rubric
Use this rubric before accepting the AI output for a password hygiene audit. It turns the prompt into a repeatable mini-tool instead of a one-off draft.
| Score area | Pass condition | Fix if weak |
|---|---|---|
| Completeness | The answer covers account inventory, MFA state, password manager rollout, recovery-code storage, breach-monitoring cadence. | Ask the model to add missing rows and mark assumptions explicitly. |
| Actionability | Every recommendation has an owner, next step, and verification method. | Request a P0/P1/P2 table with dates or effort levels. |
| Safety | No secrets, credentials, customer data, or private files are requested. | Replace sensitive details with labels such as [internal tool] or [account group]. |
| Reviewability | A human can quickly check facts, risk level, and final decision. | Add a final “review checklist” and “unknowns” section. |
Better follow-up prompts
Improve the draft above for a real password hygiene audit.
Return:
1. a direct answer,
2. a priority table,
3. assumptions,
4. risks or edge cases,
5. a verification checklist.
Do not request confidential information.
For adjacent workflows, pair this with Phishing analysis prompt or return to the AI Prompt Library.
Related prompt tools
FAQ
How do I use this prompt?
Copy it, replace the variables with real context, and ask follow-up questions to refine the output.
Can I change the structure?
Yes. Add constraints, examples, required format, and quality bar.
Is the output always correct?
No. AI output should be reviewed and verified before publishing or acting on it.