Home Unlabelled Whatbreach - Osint Tool To Discovery Breached Emails In Addition To Databases

Whatbreach - Osint Tool To Discovery Breached Emails In Addition To Databases

By
Tuesday, October 15, 2013
Read
Add Comment

WhatBreach is a tool to search for breached emails as well as their corresponding database. It takes either a unmarried e-mail or a listing of emails as well as searches them leveraging haveibeenpwned.com's API, from in that place (if in that place are whatever breaches) it volition search for the inquiry link on Dehashed pertaining to the database, as well as output all breaches along alongside all pastes that this e-mail is included inwards (if any). If yous are trying to honor the database, passing a sure enough flag volition also endeavour to download available freely world databases from databases.today. If the inquiry is flora inside the publicly listed it volition download the database for yous as well as salve it into the projects abode folder which volition live on located nether /.whatbre ach_home/downloads.

Examples
As an illustration nosotros volition purpose user@gmail.com equally the illustration search:
(venv) admin@Hades: /whatbreach$ python whatbreach.py -e "user@gmail.com" [ i ] starting search on unmarried e-mail address: user@gmail.com [ i ] searching breached accounts on HIBP related to: user@gmail.com [ i ] searching for glue dumps on HIBP related to: user@gmail.com [ i ] flora a full of 67 database breach(es) as well as a full of 59 paste(s) pertaining to: user@gmail.com ------------------------------------------------------------------------------------ Breached Site:      | Database Link: Paste#26             | https://pastebin.com/b0zdYUzc  Paste#27             | https://pastebin.com/C6YUMUxk  Paste#24             | https://pastebin.com/JFvBG4HW  Paste#25             | https://pastebin.com/hi5yXRCn  Paste#22             | https://pastebin.com/mVrrDb9d  Paste#23             | https://pastebin.com/jBCPwT1e  Paste#20             | https://pastebin.com/uyG5ggf8  Paste#21             | https://pastebin.com/QrudBvXf  Paste#28             | https://pastebin.com/6fZtANAb  Paste#29             | https://pastebin.com/gffDmJ5X  ...                  | ...  # truncated to salve infinite Paste#13             | https://pastebin.com/RLVk8j3E  Paste#12             | https://pastebin.com/zaN47ZZJ  Paste#11             | https://pastebin.com/k193QzRG  Paste#10             | https://pastebin.com/Qhaf51b6  Paste#17             | http://siph0n.in/exploits.php?id=4440 Paste#16             | https://pastebin.com/j7YX2sJm  Paste#15             | https://pastebin.com/Sin9fR7f  Paste#14             | https://pastebin.com/jvSgnZkK  Paste#19             | https://pastebin.com/2rVemphh  VK                   | https://www.dehashed.com/search?query=VK ArmyForceOnline      | https://www.dehashed.com/search?query=ArmyForceOnline Gawker               | https://www.dehashed.com/search?query=Gawker Paste#9              | http://www.pemiblanc.com/test.txt Paste#8                 | https://pastebin.com/EGS77pC4  Paste#7              | https://pastebin.com/pQdmx6mc  Paste#6              | https://pastebin.com/ZwUh4tcG  Paste#5              | https://pastebin.com/RkdC5arB  MySpace              | https://www.dehashed.com/search?query=MySpace Paste#3              | https://pastebin.com/GUV70Jqa  Paste#2              | https://pastebin.com/2eENex9n  Paste#1              | https://pastebin.com/rSd85uLK  Onverse              | https://www.dehashed.com/search?query=Onverse ------------------------------------------------------------------------------------
You also conduct keep the selection to suppress the discovered pastes:
(venv) admin@Hades: /whatbreach$ python whatbreach.py -e "user@gmail.com" -nP [ i ] starting search on unmarried e-mail address: user@gmail.com [ i ] searching breached accounts on HIBP related to: user@gmail.com [ i ] searching for glue dumps on HIBP related to: user@gmail.com [ w ] suppressing discovered pastes [ i ] flora a full of 67 database breach(es) as well as a full of 0 paste(s) pertaining to: user@gmail.com ------------------------------------------------------------------------------------ Breached Site:      | Database Link: Dropbox              | https://www.dehashed.com/search?query=Dropbox Leet                 | https://www.dehashed.com/search?query=Leet MySpace              | https://www.dehashed.com/search?query=MySpace MyHeritage           | https://www.dehashed.com/search?query=MyHeritage ArmyForceOnline      | https://www.dehashed.com/search?query=ArmyForceOnline 17Media              | https://www.dehashed.co   m/search?query=17Media Xbox360ISO           | https://www.dehashed.com/search?query=Xbox360ISO LinkedIn             | https://www.dehashed.com/search?query=LinkedIn QuinStreet           | https://www.dehashed.com/search?query=QuinStreet Bookmate             | https://www.dehashed.com/search?query=Bookmate ...                  | ... # truncated to salve infinite Dubsmash             | https://www.dehashed.com/search?query=Dubsmash MangaFox             | https://www.dehashed.com/search?query=MangaFox FashionFantasyGame   | https://www.dehashed.com/search?query=FashionFantasyGame Trillian             | https://www.dehashed.com/search?query=Trillian Disqus               | https://www.dehashed.com/search?query=Disqus NemoWeb              | https://www.dehashed.com/search?query=NemoWeb Gawker               | https://www.dehashed.com/search?query=Gawker CashCrate            | https://www.dehashed.com/search?query=CashCrate Tumblr                  | https://www.dehashed.com/search?query=Tumblr PoliceOne            | https://www.dehashed.com/search?query=PoliceOne Onverse              | https://www.dehashed.com/search?query=Onverse Interpals            | https://www.dehashed.com/search?query=Interpals Seedpeer             | https://www.dehashed.com/search?query=Seedpeer HeroesOfNewerth      | https://www.dehashed.com/search?query=HeroesOfNewerth Bell2017             | https://www.dehashed.com/search?query=Bell2017 ------------------------------------------------------------------------------------
As good equally the discovered databases:
(venv) admin@Hades: /whatbreach$ python whatbreach.py -e "user@gmail.com" -nD [ i ] starting search on unmarried e-mail address: user@gmail.com [ i ] searching breached accounts on HIBP related to: user@gmail.com [ i ] searching for glue dumps on HIBP related to: user@gmail.com [ i ] flora a full of 67 database breach(es) as well as a full of 59 paste(s) pertaining to: user@gmail.com [ w ] suppressing discovered databases ----------------------------------------------------------------------- Breached Site:      | Database Link: Paste#26             | https://pastebin.com/b0zdYUzc  Paste#27             | https://pastebin.com/C6YUMUxk  Paste#24             | https://pastebin.com/JFvBG4HW  Paste#25             | https://pastebin.com/hi5yXRCn  Paste#22             | https://pastebin.com/mVrrDb9d  Paste#23             | https://pastebin.com/jBCPwT1e  ...                  | ... # truncated to salve infinite Paste#9              |    http://www.pemiblanc.com/test.txt Paste#8              | https://pastebin.com/EGS77pC4  Paste#7              | https://pastebin.com/pQdmx6mc  Paste#6              | https://pastebin.com/ZwUh4tcG  Paste#5              | https://pastebin.com/RkdC5arB  Paste#4              | https://pastebin.com/4qH2fRMc  Paste#3              | https://pastebin.com/GUV70Jqa  Paste#2              | https://pastebin.com/2eENex9n  Paste#1              | https://pastebin.com/rSd85uLK  Paste#52             | https://pastebin.com/ffkjfRrY  Paste#48             | http://balockae.online/files/Lizard Stresser.txt Paste#49             | https://pastebin.com/bUq60ZKA  Paste#44             | http://siph0n.in/exploits.php?id=3667 Paste#45             | https://pastebin.com/MAFfXwGA  Paste#46             | http://pxahb.xyz/emailpass/www.chocolate.at.txt Paste#47             | https://pastebin.com/zchq7iQS  Paste#40             | https://pastebin.com/sj9   eyM5w  Paste#41             | https://pastebin.com/wY9ghBM9  Paste#42             | https://pred.me/gmail.html     Paste#43             | https://pastebin.com/AnTUDMtj  -----------------------------------------------------------------------
I conduct keep also implemented the might to search through a listing of e-mail addresses as well as cheque for the possibility of the e-mail beingness a "Ten infinitesimal email", it volition prompt yous to proceed if the e-mail is found, since the possibility of using this e-mail is side yesteryear side to none:
(venv) admin@Hades: /whatbreach$ python whatbreach.py -l test.txt -cT [ i ] parsing e-mail file: test.txt [ i ] starting search on a full of iii email(s) [ i ] searching breached accounts on HIBP related to: user@gmail.com [ i ] searching for glue dumps on HIBP related to: user@gmail.com [ i ] flora a full of 67 database breach(es) as well as a full of 59 paste(s) pertaining to: user@gmail.com ------------------------------------------------------------------------------------ Breached Site:      | Database Link: Paste#26             | https://pastebin.com/b0zdYUzc  Paste#27             | https://pastebin.com/C6YUMUxk  Paste#24             | https://pastebin.com/JFvBG4HW  Paste#25             | https://pastebin.com/hi5yXRCn  Paste#22             | https://pastebin.com/mVrrDb9d  Paste#23             | https://pastebin.com/jBCPwT1e  Paste#20             | https://pastebin.com/uyG5ggf8  Paste#21             | https://paste   bin.com/QrudBvXf  R2Games              | https://www.dehashed.com/search?query=R2Games NemoWeb              | https://www.dehashed.com/search?query=NemoWeb Disqus               | https://www.dehashed.com/search?query=Disqus Adobe                | https://www.dehashed.com/search?query=Adobe ...                  | ... # truncated to salve infinite Paste#15             | https://pastebin.com/Sin9fR7f  Paste#14             | https://pastebin.com/jvSgnZkK  Paste#19             | https://pastebin.com/2rVemphh  VK                   | https://www.dehashed.com/search?query=VK ArmyForceOnline      | https://www.dehashed.com/search?query=ArmyForceOnline Gawker               | https://www.dehashed.com/search?query=Gawker Paste#9              | http://www.pemiblanc.com/test.txt Paste#8              | https://pastebin.com/EGS77pC4  Paste#7              | https://pastebin.com/pQdmx6mc  Paste#6              | https://pastebin.com/ZwUh4tcG  Paste#5              | https://pastebin.com/RkdC5arB  MySpace              | https://www.dehashed.com/search?query=MySpace Paste#3              | https://pastebin.com/GUV70Jqa  Paste#2              | https://pastebin.com/2eENex9n  Paste#1              | https://pastebin.com/rSd85uLK  Onverse              | https://www.dehashed.com/search?query=Onverse ------------------------------------------------------------------------------------ [ w ] email: user@0815.ru0clickemail.com appears to live on a 10 infinitesimal e-mail [ ? ] would yous similar to procedure the email[y/N]: n [ i ] searching breached accounts on HIBP related to: someuser@gmail.com [ i ] searching for glue dumps on HIBP related to: someuser@gmail.com [ i ] flora a full of vi database breach(es) as well as a full of iv paste(s) pertaining to: someuser@gmail.com ---------------------------------------------------------------------------- Breached Site:      | Database Link: Adobe                   | https://www.dehashed.com/search?query=Adobe Paste#4              | http://xn--e1alhsoq4c.xn--p1ai/base/Gmail.txt Paste#3              | https://pastebin.com/GUV70Jqa  Paste#2              | https://pred.me/gmail.html     Paste#1              | https://pastebin.com/VVgL8Fzp  NemoWeb              | https://www.dehashed.com/search?query=NemoWeb ----------------------------------------------------------------------------
The programme is pretty direct forwards but for simplicity I conduct keep provided the acceptable arguments below:
(venv) admin@Hades: /whatbreach$ python whatbreach.py --help usage: whatbreach.py [-h] [-e EMAIL] [-l PATH] [-nD] [-nP] [-cT] [-d]  optional arguments:   -h, --help            exhibit this assist message as well as croak  mandatory opts:   -e EMAIL, --email EMAIL                         Pass a unmarried e-mail to scan for   -l PATH, -f PATH, --list PATH, --file PATH                         Pass a file containing emails 1 per delineate of piece of job to scan  search opts:   -nD, --no-dehashed    Suppres dehashed output   -nP, --no-pastebin    Suppress Pastebin output  misc opts:   -cT, --check-ten-minute                         Check if the provided e-mail address is a 10 infinitesimal                         e-mail or non   -d, --download        Attempt to dow   nload the database if in that place is 1                         available

Installation
Installing is extremely easy, simply function pip install -r requirements.txt


Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us