bcoles
commented
4 years ago The following modules return EMAILADDR_COMPROMISED data:
- modules/sfp_binaryedge.py
- modules/sfp_haveibeenpwned.py
- modules/sfp_citadel.py
- modules/sfp_emailrep.py
- modules/sfp_scylla.py
However, most of these modules require EMAILADDR data as input, so you'll need to run additional modules.
sfcli can be used to invoke individual or multiple modules, but you'll probably want to play around with the modules first to figure out a configuration which works for you, which is more easily done using the web interface.
When you create a scan, you can choose which modules or module types to run. There's a By Required Data tab, which allows you to chose which modules should be run, based on the returned data type. Selecting Email Address and Hacked Email Address, then entering you domain of interest as input, will get you in the right direction.
Alternatively, you can simply select a Passive scan By Use Case. This will return a lot of information, including email addresses and compromised email addresses.
amartya89
Hi Team,
Thanks for this awesome tool. Just to understand better, i am trying to use the tool to find any breached e-mail address against a domain. So can i? If so, would you please in short guide me on the process?
Regards