🗣️Breaches/Leaks

🗣️ Breaches/Leaks

🗣 Breaches

Have I Been Pwned: Check if your email address has been exposed in a data breachHave I Been Pwned

• Usage : https://psbdmp.ws/api/search/<email>

Intelligence Xintelx.io

Snusbase Database Search Enginepublicdbhost

DeHashed — #FreeThePasswordwww.dehashed.com

LeakCheck - Find out if your credentials have been compromisedleakcheck.io

LeakPeek - Homeleakpeek.com

Hudson Rock - Infostealer Intelligence SolutionsHudson Rock

• Usage https://cavalier.hudsonrock.com/api/[email protected] =======

• Usage https://cavalier.hudsonrock.com/api/[email protected]

Tools

• WhatBreach — An OSINT tool facilitating the discovery of breaches involving a specific email address, capable of loading public databases.

• h8mail и pwnedOrNot — Tools for finding passwords from compromised email addresses in public databases.

• Infoga — Collects email account information from public sources and checks for email leaks using the haveibeenpwned.com API.

Pastebins

Investigate - Verify Leak Data

https://techjournalism.medium.com/how-to-verify-leak-data-3b0c8d8b764a

Metadata

• Extract the metadata from multiple images and store it in a list : link

  • Tools :

    • PDFMiner

    • metadata2go.com

    • Jimpl

    • VerEXIF

    • Metadata Interrogator

  • Automate the collection of metadata, collect creation dates and store it for analysis in chronological order :

Virus scan - You never know

• Set up a separate machine, one that perhaps connects via the Tor Project

  • Runs two different virus scan software packages.

    • If the data runs on an external hard drive, check virus/malware on that dump of data as a whole.

Check photos/graphs

• Yandex reverse image search : Struggles with graphics

• Search through Dorks, a lot of leaks on Slideshare

• Chronolocate

Signatures (pen)

• fileproinfo

Word-Doc

• FOCA