59

GitHub - thewhiteh4t/pwnedOrNot: Python Script to Find Passwords for Compromised...

 6 years ago
source link: https://github.com/thewhiteh4t/pwnedOrNot
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
neoserver,ios ssh client

README.MD

pwnedOrNot

Introduction

pwnedOrNot is a python script which checks if the email account has been compromised in a data breach, if the email account is compromised it proceeds to find passwords for the compromised account.

It uses haveibeenpwned v2 api to test email accounts and searches for the password in Pastebin Dumps

This script has been tested on

  • Kali Linux 18.2
  • Ubuntu 18.04
  • Kali Nethunter
  • Termux

Installation

Ubuntu and Kali

pip install cfscrape
apt-get install nodejs

Termux

pkg install python2
pkg install git
pip2 install requests
pip2 install cfscrape

Other common standard python modules pwnedornot uses:

  • os
  • re
  • time
  • json
  • requests

Usage

git clone https://github.com/thewhiteh4t/pwnedOrNot.git
cd pwnedOrNot/
python pwnedornot.py

Features

haveibeenpwned offers a lot of information about the compromised email, some useful information is displayed by this script:

  • Name of Breach
  • Domain Name
  • Date of Breach
  • Fabrication status
  • Verification Status
  • Retirement status
  • Spam Status
  • Source of Dump
  • ID of Dump

And with all this information pwnedOrNot can easily find passwords for compromised emails if the dump is accessible and it contains the password

Screenshots

example example

Also works on Kali Nethunter

example example


report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK