Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.
The Triple Lock Standard
: Often includes timestamps and source tags indicating which specific leak the data originated from. How to handle this file safely
The file is a commonly circulated archive in digital forensics and cybersecurity research circles, typically containing a massive collection of leaked credentials, "combo lists," and personally identifiable information (PII) sourced from various historical data breaches . What is in this collection?
Possessing and using leaked PII can carry legal risks depending on your jurisdiction and intent. Ensure you are following guidelines and only using the data for authorized security testing or personal data-protection purposes.
: Because the files are "compressed" and likely contain millions of lines of text, use command-line tools like grep , awk , or specialized tools like Ripgrep to search for specific strings without opening the files in a standard text editor (which will likely crash).
: Large text files containing email addresses and passwords (often in email:password format) used by researchers to test for credential stuffing vulnerabilities.
If you are using this for legitimate security research or to check your own exposure:
: Never open or extract files of this nature on your primary operating system. Use a Virtual Machine (VM) (like Kali Linux or a clean Windows sandbox) to prevent potential malware infections often bundled with "leaks."
|
Triple Lock Application Guide
|
Complete Triple Lock Form
|
Ethical fundraising
Your board has formally adopted the Guidelines for Charitable Organisations on Fundraising from the Public. Your staff, volunteers and anyone else fundraising on your behalf are fully trained on the requirements and you have implemented controls to ensure that all your fundraising practices are fully in line with the "Guidelines" and any related Codes of Practice. You review and report annually on compliance.
Annual and Financial Reporting
Your charity prepares a trustees annual report and financial statements in full compliance with the Charity SORP (Statement of Recommended Practice under FRS102) and makes them easily available to the public on your website.
Read our blog "What is the Charity SORP" for more information on what you should be looking for when reviewing a charities financial accounts in regards to transparent reporting.
Governance
Your board has formally adopted the 'Charities Governance Code' as devised by the CRA,
This means your charity complies with the six principles of governance, has reached the core standards expected, and attained additional standards that reflect a more complex structure, if relevant.
