pwned
h8mail
pwned | h8mail | |
---|---|---|
1 | 11 | |
220 | 3,956 | |
- | - | |
9.5 | 0.0 | |
3 days ago | 9 months ago | |
TypeScript | Python | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pwned
-
Passwords have probably stopped more people getting into their own account than hackers.
If only this Troy guy would've told us how the passwords are checked. Oh, wait. He did. And if only this Troy guy would've provided an API to use in case we don't trust the site (since sites can be hacked and code can be changed). Ah, would you look at that. Now if only there weren't some developers out there that could use this API to make tools that'd check for passwords in the same way that's documented in that blog post. Like these ones or this one or other ones which I haven't searched for.
h8mail
- Search for sensitive data using theHarvester and h8mail tools
- Tool for looking into information associated with an email address?
- Is there a CLI for searching breached website databases?
- khast3x/h8mail: Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
-
h8mail VS Hackfb - a user suggested alternative
2 projects | 13 Nov 2021
-
r/196 user thinks he's a hero for grabbing someone's IP
There's a bit more you can do with an IP, and I'll elaborate. Your IP may be tied to several publicly dumped accounts. Tools such as h8mail will index data from these breaches. This is the beginning of the reconnaissance phase. An IP has more value than some may expect
-
[ILPT Request] Pay back my teachers for making fun of me
Since you know their emails, I'd try a tool such as h8mail in order to find if they have any known passwords. Then, since most people (specially boomers) reuse their credentials, you can probably figure something out to do (get into their Facebook, email, school website etc) https://github.com/khast3x/h8mail
-
Email Breach Lookup API
No there is no free API with all features the only APIs that are free have limits you can find a list here https://github.com/khast3x/h8mail#APIs
What are some alternatives?
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
WhatBreach - OSINT tool to find breached emails, databases, pastes, and relevant information
buttercup-core - :tophat: The mighty NodeJS password vault
mosint - An automated e-mail OSINT tool
javascript-obfuscator - A powerful obfuscator for JavaScript and Node.js
theHarvester - E-mails, subdomains and names Harvester - OSINT
email2phonenumber - A OSINT tool to obtain a target's phone number just by having his email address
ail-framework - AIL framework - Analysis Information Leak framework
Hackfb - Script Hack Facebook Termux by AC10 Hacks https://www.ac10hacks.com/script-hack-fb-termux
socialscan - Python library for accurately querying username and email usage on online platforms
deepweb-scappering - Discover hidden deepweb pages
DonPAPI - Dumping DPAPI credz remotely