Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/l4rm4nd/dehasheddumper

Python3 script to dump breach data from Dehashed
https://github.com/l4rm4nd/dehasheddumper

breach breach-check dehashed leaks leaks-scanner osint python3

Last synced: 5 days ago
JSON representation

Python3 script to dump breach data from Dehashed

Host: GitHub
URL: https://github.com/l4rm4nd/dehasheddumper
Owner: l4rm4nd
Created: 2022-10-20T16:14:57.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2024-07-25T13:33:14.000Z (4 months ago)
Last Synced: 2024-07-25T15:31:43.793Z (4 months ago)
Topics: breach, breach-check, dehashed, leaks, leaks-scanner, osint, python3
Language: Python
Homepage:
Size: 122 KB
Stars: 14
Watchers: 2
Forks: 4
Open Issues: 0
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Funding: .github/FUNDING.yml

Awesome Lists containing this project

README

DehashedDumper

Python3 script to dump breach data from Dehashed

## 💬 Description

DehashedDumper is a Python 3 script that dumps breach data from the [Dehashed Leak API](https://dehashed.com).

The script either takes a single domain name or a file with newline separated domain names. It will then query breach data for each target domain and output the results into outfiles. If you supply the `--full` command, all breach data from Dehashed's API is stored in a separate CSV outfile. The CSV will be extended with private information about breaches, e.g. a description, the breach date as well as the amount and type of leaked data.

## ✨ Requirements

DehashedDumper talks with the official Dehashed API, which requires authentication. Therefore, you must have a valid subscription and enough API tokens on Dehashed. You can retrieve your API key from your [Dehashed profile](https://dehashed.com/profile). Use your email address for the API authentication.

Your authentication credentials are passed via the CLI parameters `--email` and `--api-token`.

## 🎓 Usage

````
usage: dehasheddumper.py [-h] (--domain | --domains ) [--email ] [--api-token ] [--full]

options:
-h, --help show this help message and exit
--domain Domain name to extract leaks
--domains Newline separated file with domain names
--email Dehashed email account
--api-token Dehashed API token
--full Dump all data from Dehashed into CSV
````

### 🐳 Example 1 - Docker Run

````
docker run --rm -v ${PWD}:/app/results l4rm4nd/dehasheddumper:latest --domain apple.com --email --api-token --full
````

### 🐍 Example 2 - Native Python

````
# install dependencies
pip install -r requirements.txt

python3 dehasheddumper.py --domain apple.com --email --api-token --full
````

## 💎 Outputs

````
$ python3 dehasheddumper.py --domains domains.txt --full

▓█████▄ ▓█████▄ █ ██ ███▄ ▄███▓ ██▓███ ▓█████ ██▀███
▒██▀ ██▌▒██▀ ██▌ ██ ▓██▒▓██▒▀█▀ ██▒▓██░ ██▒▓█ ▀ ▓██ ▒ ██▒
░██ █▌░██ █▌▓██ ▒██░▓██ ▓██░▓██░ ██▓▒▒███ ▓██ ░▄█ ▒
░▓█▄ ▌░▓█▄ ▌▓▓█ ░██░▒██ ▒██ ▒██▄█▓▒ ▒▒▓█ ▄ ▒██▀▀█▄
░▒████▓ ░▒████▓ ▒▒█████▓ ▒██▒ ░██▒▒██▒ ░ ░░▒████▒░██▓ ▒██▒
▒▒▓ ▒ ▒▒▓ ▒ ░▒▓▒ ▒ ▒ ░ ▒░ ░ ░▒▓▒░ ░ ░░░ ▒░ ░░ ▒▓ ░▒▓░
░ ▒ ▒ ░ ▒ ▒ ░░▒░ ░ ░ ░ ░ ░░▒ ░ ░ ░ ░ ░▒ ░ ▒░
░ ░ ░ ░ ░ ░ ░░░ ░ ░ ░ ░ ░░ ░ ░░ ░
░ ░ ░ ░ ░ ░ ░
░ ░ ░ by LRVT

[i] Performing leak check on apple.com
[i] Finished leak check on apple.com
> 42 unique user emails found!
> 1000 unique passwords found!

$ ls -la
.rw-r--r-- anon anon 148 B Thu Oct 20 18:13:04 2022  20102022-1337_DD_apple.com_passwords.lst
.rw-r--r-- anon anon 122 B Thu Oct 20 18:13:04 2022  20102022-1337_DD_apple.com_users.lst
.rw-r--r-- anon anon 08 KB Thu Oct 20 18:13:04 2022  20102022-1337_DD_apple.com_fulldata.lst
.rw-r--r-- anon anon 04 KB Thu Oct 20 18:13:44 2022  dehasheddumper.py
````