H8mail Versions Save

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

2.3

4 years ago

View the blog post here

New features and bugfixes

  • Add HIBP v3
  • Switch to emailrep.io as default for breach checks
  • Implement username & password & ip search for all API providers
  • Implement hash, domain search
  • Check if running latest version
  • Fix breachcomp separator issues
  • Generate template config file in CWD (gen-config)
  • Added more related emails from API services
  • Rewrote chasing (recursive)
  • Added 'power-chasing' for additional related emails targeting (related emails found using WeLeakInfo, Snusbase or Leak-Lookup)
  • Added --debug output

Search Operators Summary

username domain hash password ip
WeLeakInfo yes yes yes yes yes
LeakLookup yes yes yes yes
Snusbase yes yes yes yes

2.3.pre-release

4 years ago

Final release will remove deprecated code from HaveIBeenPwnedv2, who's free tier is terminating on 2019/08/18

2.2

4 years ago

:skull_and_crossbones: :purple_heart: "HAILTEAM" Update :skull_and_crossbones: :purple_heart:

:sparkles: Whats new

  • added HIBP paste search
  • added emailrep.io for last seen + social profiles
  • added WeLeakInfo API (Priv)
  • added WeLeakInfo API (Pub)
  • added Snusbase username data
  • added Snusbase lastip data
  • added LL hash/pass difference
  • added LL username data
  • added LL lastip data

:wrench: What's fixed

  • fixed Breachcompilation Docker bash exec
  • fixed Breachcompilation chmod docker
  • fixed Breachcompilation byte subprocess output decoding err
  • fixed targets not marked as pwned if running local only
  • switch all utf8 decoding in local searchs to cp437
  • rewrite chasing as a sperate functions
  • print_results refactor to seperate file
  • added signal handling for multiprocessing

:package: How to update

To update, simply type:

$ pip3 install --upgrade h8mail

Add --user at the end if getting a permission message

Enjoy! :rocket:

-k

2.0

4 years ago

:birthday: h8mail Anniversary Update :balloon:

This release marks the h8mail's first year. In no particular order:

  • Added multiple argument support per option (-t [email protected] [email protected])
  • Added Leak-Lookup public and premium API services
  • Added --chase, to add discovered related emails to the ongoing target list. Very powerful :skull:
  • Added local breach searching:
    • Supports cleartext sources using -lb
    • Supports compressed .gz sources using -gz (Tested with Collection#1)
    • Uses multiprocessing when multiple files are given :zap:
  • Added --single-file option to scan file by file, thus showing precise progress bar, even for big files
  • Added globing support for file paths (-lb /tmp/2019_*)
  • Add --hide to hide password outputs for demonstrations
  • Intense code refactor :fire:
    • Performance boost
    • Stability boost
    • Code maintainability boost
    • Many :bug: fixes
    • Much easier to add new services for future releases
  • Stripped almost every dependencies. Only requires requests
  • Prettier printing and output formatting
  • Added Loosey pattern matching for targets with --loose
  • h8mail now uses pip for releases. So clean!

:package: pip3 install h8mail

2.0.pre-release

4 years ago

:birthday: h8mail Anniversary Update :balloon:

This is a pre-release. Documentation still needs updating, code needs small finishing tests for edge-cases. Other than that, enjoy!

:package: pip3 install h8mail