pwnedOrNot Download - pwnedOrNot Source code download

pwnedOrNot

Other source code

1.0.0

Download

OSINT Tool for Finding Passwords of Compromised Email Accounts

Twitter - Telegram - Blog

Available	in
BlackArch Linux	SecBSD	Tsurugi Linux

pwnedOrNot works in two phases. In the first phase it tests the given email address using HaveIBeenPwned v3 API to find if the account have been breached in the past and in the second phase it searches the password in available public dumps.

An API Key is required to use the tool. You can purchase a key from HIBP website linked below

https://haveibeenpwned.com/API/v3

Featured

> OSINT Collection Tools for Pastebin - Jake Creps

> eForensics Magazine May 2020

Changelog

https://github.com/thewhiteh4t/pwnedOrNot/wiki/Changelog

Features

haveibeenpwned offers a lot of information about the compromised email, pwnedOrNot displays most useful information such as :

Name of Breach
Domain Name
Date of Breach
Fabrication status
Verification Status
Retirement status
Spam Status

About Passwords

The chances of finding passwords depends upon the following factors :

If public dumps are available for the email address
If the public dumps are accessible

Sometimes the dumps are removed

If the public dump contains password

Sometimes a dump contains only email addresses

Tested on

Kali Linux
BlackArch Linux
Kali Nethunter
Termux

Windows users are suggested to use Kali Linux WSL2 or a VM

Installation

Ubuntu / Kali Linux / Nethunter / Termux

git clone https://github.com/thewhiteh4t/pwnedOrNot.gitcd pwnedOrNot
chmod +x install.sh
./install.sh

BlackArch Linux

pacman -S pwnedornot

Docker

git clone https://github.com/thewhiteh4t/pwnedOrNot.git
docker build -t pon .docker run -it pon

Updates

cd pwnedOrNot
git pull

Usage

python3 pwnedornot.py -h

usage: pwnedornot.py [-h] [-e EMAIL] [-f FILE] [-d DOMAIN] [-n] [-l]
                     [-c CHECK]

optional arguments:
  -h, --help                  show this help message and exit
  -e EMAIL, --email EMAIL     Email Address You Want to Test
  -f FILE, --file FILE        Load a File with Multiple Email Addresses
  -d DOMAIN, --domain DOMAIN  Filter Results by Domain Name
  -n, --nodumps               Only Check Breach Info and Skip Password Dumps
  -l, --list                  Get List of all pwned Domains
  -c CHECK, --check CHECK     Check if your Domain is pwned# Examples# Check Single Emailpython3 pwnedornot.py -e <email>#ORpython3 pwnedornot.py --email <email># Check Multiple Emails from Filepython3 pwnedornot.py -f <file name>#ORpython3 pwnedornot.py --file <file name># Filter Result for a Domain Name [Ex : adobe.com]python3 pwnedornot.py -e <email> -d <domain name>#ORpython3 pwnedornot.py -f <file name> --domain <domain name># Get only Breach Info, Skip Password Dumpspython3 pwnedornot.py -e <email> -n#ORpython3 pwnedornot.py -f <file name> --nodumps# Get List of all Breached Domainspython3 pwnedornot.py -l#ORpython3 pwnedornot.py --list# Check if a Domain is Pwnedpython3 pwnedornot.py -c <domain name>#ORpython3 pwnedornot.py --check <domain name>

Expand

Additional Information

Version 1.0.0
Type Other source code
Update Time 2025-02-21
size 7.32KB
From Github

Related Applications

Google Dorks

2025-03-10
shepherd

2025-06-04
hidusbf

2025-02-14
mongo express

2025-06-04
Free Algorithms Books

2025-05-29
markdownpedia

2025-04-22

Recommended for You

chat.petals.dev

Other source code

1.0.0
GPT Prompt Templates

Other source code

1.0.0
GPTyped

Other source code

GPTyped 1.0.5
Google Dorks

Other source code

1.0
shepherd

Other source code

v6.1.6-react-shepherd: Prepare Release (#3063)
hidusbf

Other source code

1.0.0
Google Dorks

Other source code

1.0
shepherd

Other source code

v6.1.6-react-shepherd: Prepare Release (#3063)
hidusbf

Other source code

1.0.0

Related Information All