Overview
Have I been Pwned is a free data breach search & notification service that monitors security breaches and password leaks for users security. Anyone can quickly assess if they may have been put at risk due to an online account of theirs having been compromised or “pwned” in a data breach. The data on the site comes from “breaches” where data is exposed to persons that should not have been able to view it.
With Have I been Pwned Transforms, investigators can query the Have I been pwned API to check for password/domain breeches or to check if alias/e-mail have been listed in a post to Pastebin as part of their investigations.
To read more click here.
Have I been Pwned Machines
@haveibeenpwned v3 Alias
Is an alias listed as breached by @haveibeenpwned API v3?
| Information | Value |
|---|---|
| Id | cmlh.haveibeenpwned.v3.alias |
| Author | Christian Heinrich |
@haveibeenpwned v3 E-Mail Address
Is an e-mail address listed as breached by @haveibeenpwned API v3?
| Information | Value |
|---|---|
| Id | cmlh.haveibeenpwned.v3.email1 |
| Author | Christian Heinrich |
@haveibeenpwned v5 Pwned Passwords
What is the k-anonymity of "Pwned Passwords” v5?
| Information | Value |
|---|---|
| Id | cmlh.pwnedpasswords.v5 |
| Author | Christian Heinrich |
Have I been Pwned Transforms
Enrich breached domain [v3 @haveibeenpwned]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | Enrich breached domain [v3 @haveibeenpwned] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v3 @haveibeenpwned |
| Transform Name | HIBPv3breachedDomain |
| Input Entities | maltego.Domain |
| Output Entities | Phrase |
| Short Description |
Enrich breach name [v3 @haveibeenpwned]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | Enrich breach name [v3 @haveibeenpwned] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v3 @haveibeenpwned |
| Transform Name | HIBPv3breach |
| Input Entities | haveibeenpwned.Breach |
| Output Entities | Phrase |
| Short Description |
Get all breaches of an e-mail address [v3 @haveibeenpwned]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | Get all breaches of an e-mail address [v3 @haveibeenpwned] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v3 @haveibeenpwned |
| Transform Name | HIBPv3breachedEmail |
| Input Entities | maltego.EmailAddress |
| Output Entities | Phrase |
| Short Description |
Get all breaches of an alias [v3 @haveibeenpwned]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | Get all breaches of an alias [v3 @haveibeenpwned] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v3 @haveibeenpwned |
| Transform Name | HIBPv3breachedAlias |
| Input Entities | maltego.Alias |
| Output Entities | Phrase |
| Short Description |
Get all pastes featuring the e-mail address [v3 @haveibeenpwned]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | Get all pastes featuring the e-mail address [v3 @haveibeenpwned] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v3 @haveibeenpwned |
| Transform Name | HIBPv3paste |
| Input Entities | maltego.EmailAddress |
| Output Entities | Phrase |
| Short Description |
What is the k-anonymity of a SHA-1 hash? [v8 Pwned Password]
Transform Meta Info
| Information | Value |
|---|---|
| Display Name | What is the k-anonymity of a SHA-1 hash? [v8 Pwned Password] |
| Owner | Christian Heinrich |
| Author | christian.heinrich@cmlh.id.au |
| Data Source | v8 Pwned Password |
| Transform Name | PPv8RangeHash |
| Input Entities | maltego.Hash |
| Output Entities | Phrase |
| Short Description |