Open In App

We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy

pwnedOrNot – OSINT Tool to Find Passwords for Compromised Email Addresses

pwnedOrNot is an OSINT tool written in Python which checks the email account that has been compromised in a data breach and finds the password of the compromised account.

Features

Installation

First clone the tool from the GitHub repository.



git clone https://github.com/thewhiteh4t/pwnedOrNot.git

Change directory.

cd pwnedOrNot

Install requests using pip command.



pip3 install requests
pip3 cfscrape

Fig 1: Cloning Tool from GitHub repo.

Usages

Run the tool using the command,

python3 pwnedornot.py
python3 pwnedornot.py -h (To display optional arguments)

Fig 2: pwnedornot tool.

To check if a domain was breached or not.

www.google.com

Fig 3: Domain not breached.

Another example with yahoo.

Fig 4: Domain breached.

Output: Breached on 2012-07-11 (Email address and passwords were compromised in that breach)

To get a list of all pwned domains, use -l flag:

python3 pwnedornot.py -l

Fig 5: List of pwned domains.

Output: pwnedornot found 552 breached domains including big market players like zomato, yahoo.

To check if an email was compromised or not, use -e flag.

python3 pwnedornot.py -e jeyzetaservices@protonmail.com

Fig 6: Email address not breached.

Article Tags :
Linux-Unix
Recommended Articles
1. Email2phonenumber - OSINT tool to obtain a target’s phone number by email address
2. Th3Inspector - OSINT Tool for Reconnaissance
3. Toutatis - OSINT Tool to Extract Information From Instagram Account
4. Gitrecon – OSINT Tool For Github in Kali Linux
5. Ashok - Osint Recon Tool in Kali Linux
6. MOSINT - OSINT Tool for Emails in Kali Linux
7. Google Cloud Platform - Introduction to PhoneInfoga an OSINT Reconnaissance Tool
8. How to Use Twint OSINT Tool on Google Cloud Console ?
9. Photon Scanner - Web Scraping OSINT Tool
10. DNSTwist - OSINT Tool in Linux
11. Namechk - Osint tool for Usernames
12. Nexfil - OSINT Tool For Finding Profiles By Username
13. DarkScrape - OSINT Tool For Scraping Dark Websites
14. HostHunter - Hostnames Recon Tool Using OSINT
15. Geo-Recon - OSINT Tool To Fast Track IP Reputation And Geolocation Look Up For Security Analysts
16. Twosint - Automated OSINT Tool to Investigate Twitter Account
17. Automater – IP and URL OSINT Tool For Analysis
18. Terra - OSINT Tool On Instagram
19. Mr.Holmes - Information Gathering OSINT Tool
20. IP Rover - OSINT tool to get information of any IP address
21. Find All Live Hosts IP Addresses Connected on Network in Linux
22. Infoga – Email Information Gathering Tool in Kali Linux
23. Durag - SMS and email Bomber Tool in Kali Linux
24. EmBomber - Email Bomber Tool in Kali Linux
25. Buster - An advanced tool for Email Reconnaissance