Currently, Medic can accept a list of SHA1 hashes to check against the given KeePass database's passwords.

Wondering if it would be useful if, through a different flag/option, Medic could take a file of actual, non-hashed passwords; which users might have. Should be pretty easy to implement...

Added in 87ec044