pwnedOrNot uses haveibeenpwned v2 api to test email accounts and tries to find the password in Pastebin Dumps.
haveibeenpwned offers a lot of information about the compromised email, some useful information is displayed by this script:
- Name of Breach
- Domain Name
- Date of Breach
- Fabrication status
- Verification Status
- Retirement status
- Spam Status
And with all this information pwnedOrNot can easily find passwords for compromised emails if the dump is accessible and it contains the password
- Kali Linux 18.2
- Ubuntu 18.04
- Kali Nethunter
- Termux
Ubuntu / Kali Linux / Nethunter / Termux
chmod 777 install.sh
./install.sh
python pwnedornot.py -h
usage: pwnedornot.py [-h] [-e EMAIL] [-f FILE]
optional arguments:
-h, --help show this help message and exit
-e EMAIL, --email EMAIL Email account you want to test
-f FILE, --file FILE Load a file with multiple email accounts