Query Passwords for a Domain

Takes a domain (e.g. enzoic.com) and returns a list of emails and recovered passwords for any email address we've found credentials for in that domain.

PreviousQuery Passwords for an Email Address NextQuery Passwords for a Partial Hash of an Email Address

Last updated 7 months ago

Was this helpful?

Query all cleartext passwords for a users in a given email domain.

Returns a paginated list of credentials in the Enzoic database for all users under a given email domain. This variant of the call takes a domain (e.g. enzoic.com) and returns a list of emails and recovered passwords for any email address we've found credentials for in that domain.

get

/cleartext-credentials-by-domain

Authorizations

Query parameters

domainstringrequired

The email domain to pull credentials for

Example: enzoic.com

pageSizeinteger · default: 100

(Optional) The number of results to return in a single call. The default page size is 100 and the maximum is 500.

Example: 500

pagingTokenstring

(Optional) For each call to the API, if there are additional pages of results available then a pagingToken will be returned. Pass the pagingToken in via this parameter to retrieve the subsequent page of results. Should be left off for the initial call to the API.

Example: 598e5b844eb6d82ea07c5783

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url 'https://api.enzoic.com/v1/cleartext-credentials-by-domain?domain=text' \
  --header 'Authorization: Basic username:password'

200

{
  "count": 1,
  "pagingToken": "598e5b844eb6d82ea07c5783",
  "users": [
    {
      "username": "sample@email.tst",
      "passwords": [
        {
          "password": "password123",
          "hashType": 0,
          "salt": "text",
          "exposures": [
            {
              "id": "57dc11964d6db21300991b78",
              "title": "funsurveys.net",
              "entries": 5123,
              "date": "2015-05-01T00:00:00.000Z",
              "category": "Manufacturing",
              "source": "Cybercrime Forums",
              "passwordType": "Cleartext",
              "dateAdded": "2016-09-16T15:36:54.000Z",
              "domainsAffected": 683,
              "sourceFileCount": 1,
              "exposedData": [
                "Emails",
                "Passwords"
              ],
              "sourceURLs": [
                "https://www.someplace.com"
              ]
            }
          ]
        }
      ]
    }
  ]
}

The call was successful and all matching credentials are in the response