Hi!
By using an online testing tool, you are effectively breaking the very first rule:
DO NOT GIVE OUT YOUR PASSWORD. EVER.
That's why I suggested having internal bot that would use the same techniques intruders use to test passwords (without knowing them), instead of having people to send their pwds to unknown site and trust them not to do anything wrong with it :)