h8mail is a powerful email OSINT and password breach hunting tool that aggregates data from multiple breach and reconnaissance services both locally and via premium APIs.
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
This tool is primarily used by security researchers, penetration testers, and threat intelligence analysts to discover if emails have been compromised in data breaches and to hunt for related credentials or associated emails. It enables users to perform comprehensive breach searches locally or through various online services, helping to assess password security and gather threat intelligence.
Users should obtain and configure API keys for premium services to unlock advanced features and cleartext breach data. Local breach datasets like Collection#1 require manual download and setup. Multiprocessing improves performance on large local datasets. Exercise caution when handling sensitive breach data and consider privacy and legal implications.
Ensure Python 3 is installed
Run `pip3 install h8mail` to install the tool and its dependenciesh8mail -t target@example.com
Scan a single email address for breaches using all configured sources
h8mail -f emails.txt
Perform bulk scanning of multiple emails listed in a file
h8mail --url https://example.com
Extract and scan emails found on a specified webpage URL
h8mail --hide-passwords
Run the scan but hide any discovered passwords in the output
h8mail --output-format json -t target@example.com
Output the results of the scan in JSON format
h8mail --chase-related-emails
Automatically find and include related emails in the ongoing search