search

Credentials Harvesting

hashtag
Email Harvesting

hunter.io

craw emails from all websites

Email pattern:
{f}{last}@tesla.com

Clear Bits (chrome extension + need login)

https://chrome.google.com/webstore/detail/clearbit-connect-free-ver/pmnhcgfcafcnkbengdcanjablaabjplo

phonebook.cz (Reliable)

craw emails , domains and URLs

hashtag
Google Account Abusing

put username then check if google auto add @gmail to behind username

Click forgot password and it may reveal another email that link to the current email

hashtag
Github abusing

https://github.com/username
https://github.com/maverickadams

hashtag
Verify Email Existence

hashtag
Checking for leaked usernames and passwords

breach-parse

leakcheck (need login + 15 limit search)

https://leakcheck.io/dashboard

  • 15 limit search

  • only reveal first 4 characters

breachdirectory (No need login + unlimited search)

https://www.breachdirectory.org/

  • sha1 hash

  • reveals first 4 char

hashtag
Google ID DORKING

![[Pasted image 20230819035629.png]]

PreviousWeb Tech HuntingNextSubdomain Hunting

Last updated