pwnedOrNot – Tool To Find Passwords For Compromised Email Accounts Using HaveIBeenPwned API

pwnedOrNot is a python script which checks if the email account has been compromised in a data breach, if the email account is compromised it proceeds to find passwords for the compromised account.It uses haveibeenpwned v2 api to test email accounts and searches for the password in Pastebin DumpsThis script has been tested on Kali Linux 18.2 and Ubuntu 18.04.InstallationIt’s a pure python script and relies on common python modules and does not need installation :osretimejsonrequestsUsagegit clone https://github.com/thewhiteh4t/pwnedOrNot.gitcd pwnedOrNot/python pwnedornot.pyFeatureshaveibeenpwned offers a lot of information about the compromised email, some useful information is displayed by this script:Name of BreachDomain NameDate of BreachFabrication statusVerification StatusRetirement statusSpam StatusSource of DumpID of DumpAnd with all this information pwnedOrNot can easily find passwords for compromised emails if the dump is accessible and it contains the passwordScreenshotsDownload pwnedOrNot

Link: http://feedproxy.google.com/~r/PentestTools/~3/Z1fInQ932X4/pwnedornot-tool-to-find-passwords-for.html

sniff-probe-req : Wifi Probe Requests Sniffer.

sniff-probe-req is a software allows you to sniff the Wi-Fi probe requests passing near your wireless interface. Probe requests are sent by a station to…

Link: http://seclist.us/sniff-probe-req-wifi-probe-requests-sniffer.html

TIH – Threat Intelligence Hunter framework.

TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs. The idea…

Link: http://seclist.us/tih-threat-intelligence-hunter-framework.html

s3scanner – Find S3 buckets and dump.

s3scanner tool takes in a list of bucket names to check. Found S3 domains are output to file with their corresponding region in the format…

Link: http://seclist.us/s3scanner-find-s3-buckets-and-dump.html

SIXNETtools – Tool for exploitation sixnet RTUs.

Legal Disclaimer: This Tools for Research and Learning Purpose Only! The goal of SIXNETtools was to demonstrate the critical lack of security inherent in certain…

Link: http://seclist.us/sixnettools-tool-for-exploitation-sixnet-rtus.html

alias – modular tool for finding backdoor for Sat.

modular tool for finding backdoor for Sat (ALIAS) – a customizable scalable tool that can employ incremental state-of-the-art SAT solvers and black-box optimization heuristics to…

Link: http://seclist.us/alias-modular-tool-for-finding-backdoor-for-sat.html