Introduction
The BreachHub API provides access to a comprehensive suite of OSINT and data breach intelligence tools through a unified interface. All endpoints use GET requests and require authentication via API key.
Base URL
https://breachhub.org
Request Format
GET https://breachhub.org/api/{endpoint}?{parameters}&key={YOUR_API_KEY}
Authentication
All API requests require an API key passed as a query parameter (key).
Query Parameter Format
Example Request URL
https://breachhub.org/api/[email protected]&key=your_api_key_here
Getting an API Key
Purchase an API key from our main website. We offer both monthly and lifetime plans.
€10 / Month
€30 / Month
€100 / Lifetime
Rate Limits
Maximum 10 requests per second and 120 requests per minute. Exceeding these limits will result in a 30-minute access block.
| Plan Type | Daily Limit | Rate Limit |
|---|---|---|
| Premium | 500 searches/day | 10 req/sec, 120 req/min |
| Premium Advanced | 2000 searches/day | 10 req/sec, 120 req/min |
| Lifetime | Unlimited | 10 req/sec, 120 req/min |
API Status
Check the real-time status of all BreachHub sources. This endpoint tests every API with real queries every hour (first check 5s after startup) and returns their current availability, description, category, and endpoints.
GET
/api/status?key={KEY_API}
Parameters
key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/status?key=your_api_key"
Response
JSON
{
"success": true,
"status": "partial_outage",
"summary": {
"total_sources": 44,
"total_endpoints": 120,
"operational": 40,
"down": 2,
"timeout": 1,
"errors": 1
},
"categories": [
"breach",
"intelligence_platform",
"network_intelligence",
"social_osint",
"specialized_tools",
"user_lookup"
],
"sources": [
{
"id": "breachhub",
"name": "BreachHub",
"description": "Unified breach intelligence — multi-source search (QueryX), FiveM database, digital footprints, and public document metadata.",
"category": "intelligence_platform",
"status": "operational",
"response_time_ms": 125,
"endpoints": [
{
"path": "/api/breachhub/search",
"supportedParams": ["query"],
"supportedTypes": ["discord_id", "username", "ip", "fivem_license"]
}
]
},
{
"id": "snusbase",
"name": "Snusbase",
"description": "Large-scale breach database — combo lists, stealer logs, and leaked credentials.",
"category": "breach",
"status": "operational",
"response_time_ms": 312,
"endpoints": [
{
"path": "/api/snusbase/search",
"supportedParams": ["query", "type"],
"supportedTypes": ["email", "username", "password", "hash", "name", "ip"]
}
]
},
{
"id": "intelx",
"name": "IntelX",
"description": "Intelligence X — darknet, paste sites, public leaks, and OSINT feeds.",
"category": "breach",
"status": "timeout",
"response_time_ms": 15001,
"error": "TIMEOUT",
"endpoints": [
{
"path": "/api/intelx/search",
"supportedParams": ["query"],
"supportedTypes": ["email", "domain", "ip", "url", "phone", "bitcoin"]
}
]
}
],
"timestamp": "2026-03-21T10:45:23.456Z",
"next_check": "2026-03-21T11:45:23.456Z"
}
Source Status Values
| Status | Description |
|---|---|
operational | Source is working correctly |
down | Source is unreachable (connection refused, DNS error, 500) |
timeout | Source did not respond within 15 seconds |
rate_limited | Source returned a rate limit or quota error |
auth_error | API key issue (expired, invalid) |
error | Other error |
partial | Source partially working (some endpoints failing) |
Overall Status
| Value | Description |
|---|---|
all_operational | All sources are working |
partial_outage | Some sources are down or have issues |
major_outage | All sources are down |
Categories
| Category | Description |
|---|---|
breach | Breach databases, combo lists, stealer logs, leaked credentials |
intelligence_platform | Unified OSINT and intelligence platforms |
social_osint | Social media lookup, identity verification, phone/email intelligence |
specialized_tools | BIN lookup, VIN decoder, document metadata, specialized searches |
network_intelligence | IP geolocation, port scanning, network infrastructure |
user_lookup | Platform-specific user lookups (GitHub, Discord, etc.) |
BreachHub
Access comprehensive breach and OSINT intelligence through BreachHub's unified API, including multi-source search, FiveM database, digital footprints, and public document metadata.
GET
/api/breachhub/search?query={query}&key={KEY_API}
Parameters
query(string, required): Discord ID, IP, Username, License FiveMkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/search?query=05e4efa3f75fe157db65b308b676d68934168dc1&key=your_api_key"
GET
/api/breachhub/google-osint/docs?query={query}&key={KEY_API}
Parameters
query(string, required): Url Docs Googlekey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/google-osint/docs?query=https://docs.google.com/document/d/13P3p5bA3lslqEJT1BGeTL1L5ZrQq_fSov_56jT9vf0I&key=your_api_key"
GET
/api/breachhub/ganknow/profil?username={query}&key={KEY_API}
Parameters
username(string, required): Username to lookupkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/ganknow/profil?username=user&key=your_api_key"
GET
/api/breachhub/email-osint?query={email}&key={KEY_API}
Parameters
query(string, required): Email address to scankey(string, required): Your API key
Description
Checks if an email is registered on 500+ websites (social media, shopping, gaming, etc.).
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/[email protected]&key=your_api_key"
GET
/api/breachhub/xbox-lookup?query={query}&key={KEY_API}
Parameters
query(string, required): Username Xboxkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/xbox-lookup?query=user&key=your_api_key"
GET
/api/breachhub/steam?steam_id={query}&key={KEY_API}
Parameters
steam_id(string, required): SteamID64, SteamID hex, SteamID decimal, or vanity URLkey(string, required): Your API key
Example Request
cURL - Steam Lookup
curl -X GET "https://breachhub.org/api/breachhub/steam?steam_id=76561198012345678&key=your_api_key"
GET
/api/breachhub/crypto?category={btc|eth}&term={address}&key={KEY_API}
Parameters
category(string, required): btc or ethterm(string, required): Wallet addresskey(string, required): Your API key
Example Requests
cURL - BTC Wallet
curl -X GET "https://breachhub.org/api/breachhub/crypto?category=btc&term=1A1zP1eP5QGefi2DMPTfTL5SLmv7DivfNa&key=your_api_key"
cURL - ETH Wallet
curl -X GET "https://breachhub.org/api/breachhub/crypto?category=eth&term=0xde0B295669a9FD93d5F28D9Ec85E40f4cb697BAe&key=your_api_key"
GET
/api/breachhub/stalkme/lookup?user_id={user_id}&key={KEY_API}
Parameters
user_id(string, required): Discord user IDkeyword(string, optional): Filter messages by keywordserver(string, optional): Filter by server namebefore(string, optional): Filter messages before date (YYYY-MM-DD)after(string, optional): Filter messages after date (YYYY-MM-DD)key(string, required): Your API key
Description
Retrieve all tracked Discord messages from a user across monitored servers.
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/stalkme/lookup?user_id=123456789012345678&key=your_api_key"
GET
/api/breachhub/stalkme/search?keyword={keyword}&key={KEY_API}
Parameters
keyword(string, required): Keyword to search across all messageskey(string, required): Your API key
Description
Search a keyword across all tracked Discord messages from all monitored servers.
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/stalkme/search?keyword=bitcoin&key=your_api_key"
GET
/api/breachhub/stalkme/suggest?server={invite}&key={KEY_API}
Parameters
server(string, required): Discord invite link (discord.gg/xxx)key(string, required): Your API key
Description
Suggest a Discord server to be added to the tracking list.
Example Request
cURL
curl -X GET "https://breachhub.org/api/breachhub/stalkme/suggest?server=discord.gg/example&key=your_api_key"
Snusbase
Data breach search engine — search leaked databases by email, username, IP, password, or hash. Includes combo list lookup, hash reversal, and IP WHOIS.
| Endpoint | Module | Description |
|---|---|---|
| Database Search | ||
| /api/snusbase | Search | Search breached databases by email, username, IP, hash, password, or name |
| Tools | ||
| /api/snusbase/combo-lookup | Combo Lookup | Search combo lists (username:password pairs) |
| /api/snusbase/hash-lookup | Hash Lookup | Reverse-lookup hashes or find hash of a password |
| /api/snusbase/ip-whois | IP WHOIS | WHOIS information for an IP address |
GET
/api/snusbase?query={query}&key={KEY_API}
Search breached databases. Supports email, username, IP, hash, password, and name. Wildcard enabled. Auto-rotates API keys and falls back to Indicia if all keys are exhausted.
Parameters
query(string, required): Search term (email, username, IP, hash, password, name)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
GET
/api/snusbase/combo-lookup?type={type}&query={query}&key={KEY_API}
Search combo lists (username:password pairs) by username or password.
Parameters
type(string, required):usernameorpasswordquery(string, required): Search termkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/snusbase/combo-lookup?type=username&query=johndoe&key=your_api_key"
GET
/api/snusbase/hash-lookup?type={type}&query={query}&key={KEY_API}
Reverse-lookup a hash to find the original password, or find the hash of a known password.
Parameters
type(string, required):hashorpasswordquery(string, required): Hash or password to lookupkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/snusbase/hash-lookup?type=hash&query=5f4dcc3b5aa765d61d8327deb882cf99&key=your_api_key"
GET
/api/snusbase/ip-whois?query={ip}&key={KEY_API}
Get WHOIS information for an IP address — ISP, organization, country, network range.
Parameters
query(string, required): IP address to lookupkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/snusbase/ip-whois?query=8.8.8.8&key=your_api_key"
LeakOsint
OSINT search engine for leaked information across multiple breach sources.
GET
/api/leakosint?query={query}&key={KEY_API}
Search leaked data across multiple sources by email, username, phone, or domain.
Parameters
query(string, required): Search term (email, username, phone, domain)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
LeakCheck V2
Advanced breach search with pagination and filtering.
GET
/api/leakcheck/v2?query={query}&key={KEY_API}
Search leaked credentials with advanced filtering and paginated results.
Parameters
query(string, required): Search term (email, username, etc.)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/leakcheck/[email protected]&key=your_api_key"
Breachbase
Breach database search by email or username with categorized results.
GET
/api/breachbase?category={type}&term={term}&key={KEY_API}
Search breached databases by email or username.
Parameters
category(string, required):emailorusernameterm(string, required): Search valuekey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
IntelVault
Targeted breach database search by email address.
GET
/api/intelvault?email={query}&key={KEY_API}
Search IntelVault's breach database by email address.
Parameters
email(string, required): Email address to searchkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
BreachDirectory
Breach intelligence API — search leaked credentials by email, username, or IP with structured JSON responses.
GET
/api/breachdirectory?type={type}&query={query}&key={KEY_API}
Search breached credentials across multiple data types.
Parameters
type(string, required):email,username, oripquery(string, required): Search termkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
HackCheck
Fast breach checker — search by email, username, or password.
GET
/api/hackcheck?category={type}&term={term}&key={KEY_API}
Quick breach lookup by email, username, or password.
Parameters
category(string, required):email,username, orpasswordterm(string, required): Search valuekey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
OsintKit
Multi-category OSINT search — email, phone, and name lookups. Rate limit resets daily at 00:00 AM.
| Category | Description | Example |
|---|---|---|
email | Email address search | [email protected] |
phone | Phone number search | +13334567890 |
name | Name search | JohnDoe |
GET
/api/osintkit?category={type}&term={term}&key={KEY_API}
OSINT lookup by email, phone, or name.
Parameters
category(string, required):email,phone, ornameterm(string, required): Search valuekey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
Breach.vip
Category-based breach search — supports 10 data types including email, password, domain, username, IP, name, UUID, Steam ID, phone, and Discord ID.
GET
/api/breachvip?category={type}&query={query}&key={KEY_API}
Search breached data by category. Supports: email, password, domain, username, ip, name, uuid, steamid, phone, discordid.
Parameters
category(string, required):email,password,domain,username,ip,name,uuid,steamid,phone, ordiscordidquery(string, required): Search termkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
Cord.cat
Discord user lookup and IP-based Discord intelligence.
| Endpoint | Description |
|---|---|
| /api/cordcat | Discord user lookup by ID |
| /api/cordcat/ip | IP-based Discord intelligence |
GET
/api/cordcat?id={query}&key={KEY_API}
Lookup Discord user profile by user ID.
Parameters
id(string, required): Discord user IDkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/cordcat?id=123456789012345678&key=your_api_key"
GET
/api/cordcat/ip?ip={ip}&key={KEY_API}
Find Discord accounts associated with an IP address.
Parameters
ip(string, required): IP addresskey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/cordcat/ip?ip=1.2.3.4&key=your_api_key"
Melissa
Data enrichment and validation — emails, names, phones, and addresses. Auto-detects input type.
GET
/api/melissa?input={term}&key={KEY_API}
Validate and enrich any identifier — email, phone, name, or address. The service auto-detects the type.
Parameters
input(string, required): Email, phone, name, or addresskey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
IntelX
IntelX search tool for archived data and documents.
Note: IntelX has a rate limit that resets automatically every day at 02:00 AM.
| Endpoint | Parameters | Description |
|---|---|---|
| /api/intelx | system_id | Intelx System ID |
GET
/api/intelx?system_id={system_id}&key={KEY_API}
Parameters
system_id(string, required): System IDkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelx?system_id=67283122-710f-477c-82dd-2edb8db140ed&key=your_api_key"
OsintCat
Comprehensive OSINT platform with database search, social media intelligence, and Machine Viewer for stealer logs.
Database Search
GET
/api/osintcat/database-search?query={query}&key={KEY_API}
Parameters
query(string, required): Email or Domainkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/[email protected]&key=your_api_key"
OSINT
GET
/api/osintcat/twitter-osint?username={username}&key={KEY_API}
Parameters
username(string, required): Twitter usernamekey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/twitter-osint?username=elonmusk&key=your_api_key"
MachineInfo
GET
/api/osintcat/machine-viewer/search?query={query}&key={KEY_API}
Search infected machines by query (email, domain, IP, etc.).
Parameters
query(string, required): Search termkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/[email protected]&key=your_api_key"
GET
/api/osintcat/machine-viewer/machines/{machine_id}/info?key={KEY_API}
Get detailed information about a specific infected machine.
Parameters
machine_id(string, required): Machine ID from search resultskey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/machines/abc123/info?key=your_api_key"
GET
/api/osintcat/machine-viewer/machines/{machine_id}/files/treeview?key={KEY_API}
Get the file tree of a specific machine (browse stolen files).
Parameters
machine_id(string, required): Machine IDkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/machines/abc123/files/treeview?key=your_api_key"
GET
/api/osintcat/machine-viewer/files/{file_id}/info?key={KEY_API}
Get metadata about a specific file from a machine.
Parameters
file_id(string, required): File ID from treeviewkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/files/file123/info?key=your_api_key"
GET
/api/osintcat/machine-viewer/files/{file_id}/download?key={KEY_API}
Download an individual file from a machine.
Parameters
file_id(string, required): File IDkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/files/file123/download?key=your_api_key"
GET
/api/osintcat/machine-viewer/machines/{machine_id}/download?key={KEY_API}
Download all files from a machine as a single archive.
Parameters
machine_id(string, required): Machine IDkey(string, required): Your API key
cURL
curl -X GET "https://breachhub.org/api/osintcat/machine-viewer/machines/abc123/download?key=your_api_key"
xOsint Searcher
Specialized French database search engine providing access to breach data from French sources and databases.
GET
/api/xosint/search?query={query}&key={KEY_API}
Parameters
query(string, required): Search term (email, username, phone, etc.) - 1-200 characterskey(string, required): Your API key
See-Know
A European OSINT and dark web search platform providing access to intelligence data, exposed information, and investigation tools through aggregated public and underground sources.
GET
/api/seeknow/search?query={query}&key={KEY_API}
Parameters
query(string, required): Search termkey(string, required): Your API key
OsintBat
Comprehensive OSINT toolkit covering phone intelligence, social media profiling, gaming lookups, IP/DNS analysis, and multi-source breach searches.
| Endpoint | Description |
|---|---|
| /api/osintbat/phone-osint | Phone carrier, geolocation, social registrations & CNAM |
| /api/osintbat/github-osint | GitHub profile & activity lookup |
| /api/osintbat/twitter-osint | Twitter/X profile & activity lookup |
| /api/osintbat/discord | Discord ID lookup (Medal, Roblox, FiveM, username history) |
| /api/osintbat/roblox | Roblox user lookup with linked socials |
| /api/osintbat/minecraft | Minecraft player lookup (UUID, name history, breach records) |
| /api/osintbat/ip | IP intelligence, geolocation, ASN & breach checks |
| /api/osintbat/dns | DNS resolver (A, AAAA, MX, TXT records) |
| /api/osintbat/email-breach | Email breach search |
| /api/osintbat/username-breach | Username/domain breach & stealer log search |
| /api/osintbat/phone-breach | Phone number breach search |
| /api/osintbat/facebook-breach | Facebook account breach search |
| /api/osintbat/database-breach | Multi-source database breach search |
GET
/api/osintbat/phone-osint?query={phone}&key={KEY_API}
Parameters
query(string, required): Phone number (e.g.14155550199)key(string, required): Your API key
GET
/api/osintbat/github-osint?query={username_or_email}&key={KEY_API}
Parameters
query(string, required): GitHub username or emailkey(string, required): Your API key
GET
/api/osintbat/twitter-osint?query={handle}&key={KEY_API}
Parameters
query(string, required): Twitter/X handle (e.g.@jack)key(string, required): Your API key
GET
/api/osintbat/discord?query={discord_id}&key={KEY_API}
Parameters
query(string, required): Discord user IDkey(string, required): Your API key
GET
/api/osintbat/roblox?query={username}&key={KEY_API}
Parameters
query(string, required): Roblox usernamekey(string, required): Your API key
GET
/api/osintbat/minecraft?query={username_or_uuid}&key={KEY_API}
Parameters
query(string, required): Minecraft username or UUIDkey(string, required): Your API key
GET
/api/osintbat/ip?query={ip}&key={KEY_API}
Parameters
query(string, required): IPv4 or IPv6 addresskey(string, required): Your API key
GET
/api/osintbat/dns?query={domain}&key={KEY_API}
Parameters
query(string, required): Hostname or domain (e.g.example.com)key(string, required): Your API key
GET
/api/osintbat/email-breach?query={email}&key={KEY_API}
Parameters
query(string, required): Email addresskey(string, required): Your API key
GET
/api/osintbat/username-breach?query={username}&key={KEY_API}
Parameters
query(string, required): Username, handle or domainkey(string, required): Your API key
GET
/api/osintbat/phone-breach?query={phone}&key={KEY_API}
Parameters
query(string, required): Phone number (e.g.+14155550199)key(string, required): Your API key
GET
/api/osintbat/facebook-breach?query={profile_id_or_email}&key={KEY_API}
Parameters
query(string, required): Facebook profile ID or associated emailkey(string, required): Your API key
GET
/api/osintbat/database-breach?query={query}&key={KEY_API}
Parameters
query(string, required): Search term (domain, email, username, etc.)key(string, required): Your API key
Eye-All
Lightweight OSINT search platform focused on quick lookups of digital footprints, public data, and cross-source intelligence.
GET
/api/eye-all?query={query}&key={KEY_API}
Parameters
query(string, required): Search termkey(string, required): Your API key
Wentyn
Stealer logs search powered by Wentyn. Search by email or domain across millions of compromised credentials updated weekly. Returns structured records with URL, login, and password.
GET
/api/wentyn?type={email|domain}&query={query}&key={KEY_API}
Parameters
type(string, required):emailordomainquery(string, required): Email address or domain to searchkey(string, required): Your API key
Example Request
cURL — by email
curl -X GET "https://breachhub.org/api/wentyn?type=email&query=user%40example.com&key=your_api_key"
cURL — by domain
curl -X GET "https://breachhub.org/api/wentyn?type=domain&query=example.com&key=your_api_key"
HudsonRock
Powered by Hudson Rock's cybercrime database of millions of machines compromised by global Infostealer campaigns.
GET
/api/hudsonrock?email={query}&key={KEY_API}
Parameters
email(string, required): Email to querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
Akula Database
Search Akula breach database by email or domain.
GET
/api/akula?category={type}&term={term}&key={KEY_API}
Parameters
category(string, required): email or domainterm(string, required): Search termkey(string, required): Your API key
LeakSight Platform
Advanced breach intelligence platform providing comprehensive leak detection across multiple data types including credentials, personal information, network reconnaissance, and threat intelligence.
Available Search Types
| Type | Value | Description |
|---|---|---|
username | string | Username or email address lookup |
url | string | Website URL breach search |
search_url_all_database | string | Search URL across all databases |
url2 | string | Alternative URL search method |
subdomainsearch | string | Subdomain enumeration + leak detection |
subdmains | string | List all subdomains for a domain |
domainmapper | string | Domain credentials + subdomain mapping |
password | string | Password breach lookup |
number | string | Phone number search (includes Facebook data) |
ip | string | IP address breach lookup |
ipgeo | string | IP geolocation information |
subnet | string | Subnet /24 network scan |
hwid | string | Hardware ID breach search |
proxydetect | string | Proxy/VPN detection |
portscam | string | Open port scanning |
twitter | string | Twitter/X account analysis & breach correlation |
name | string | Name search (Brazil only) |
cpf | string | Brazilian CPF document search |
searchstring | string | Universal string search across all data types |
GET
/api/leaksight?type={type}&query={query}&key={KEY_API}
Query Parameters
type(string, required): Search type (see table above, default: username)query(string, required): Search term/valuekey(string, required): Your API key
cURL - Username Search
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
cURL - URL Search (All Databases)
curl -X GET "https://breachhub.org/api/leaksight?type=search_url_all_database&query=https://roblox.com&key=your_api_key"
cURL - Twitter Analysis
curl -X GET "https://breachhub.org/api/leaksight?type=twitter&query=elonmusk&key=your_api_key"
cURL - Phone Number Lookup
curl -X GET "https://breachhub.org/api/leaksight?type=number&query=5551234567&key=your_api_key"
cURL - Subdomain Scan
curl -X GET "https://breachhub.org/api/leaksight?type=subdomainsearch&query=example.com&key=your_api_key"
Cypher Dynamics
Threat intelligence search engine covering IOC lookups, stealer log data, and underground intel. Search across credentials, tokens, cookies, darkweb forums, and more.
Available Categories
| Category | Type | Description |
|---|---|---|
ip | IOC | IPv4/IPv6 address lookup |
domain | IOC | Domain name lookup |
hash | IOC | File hash lookup (MD5, SHA1, SHA256) |
url | IOC | URL lookup |
asn | IOC | Autonomous System Number lookup |
hostname | IOC | Hostname lookup |
uuid | IOC | Machine UUID lookup |
wallet | IOC | Cryptocurrency wallet lookup |
phone | IOC | Phone number lookup |
email | Stealer | Email address in stealer logs |
username | Stealer | Username in stealer logs |
password | Stealer | Password in stealer logs |
email_pass | Stealer | Email:password combo lookup |
cookie | Stealer | Session cookies in stealer logs |
token | Stealer | API tokens in stealer logs |
telegram | Underground | Telegram channel/message search |
forum | Underground | Clearnet forum search |
darkweb | Underground | Dark web forum search |
GET
/api/cypherdynamics?category={category}&query={query}&key={KEY_API}
Query Parameters
category(string, required): Search category (see table above)query(string, required): Search termkey(string, required): Your API key
cURL - Email Stealer Search
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
cURL - Domain IOC Lookup
curl -X GET "https://breachhub.org/api/cypherdynamics?category=domain&query=example.com&key=your_api_key"
cURL - Darkweb Forum Search
curl -X GET "https://breachhub.org/api/cypherdynamics?category=darkweb&query=target_keyword&key=your_api_key"
cURL - Crypto Wallet Lookup
curl -X GET "https://breachhub.org/api/cypherdynamics?category=wallet&query=bc1qxy2kgdygjrsqtzq2n0yrf2493p83kkfjhx0wlh&key=your_api_key"
cURL - Password Stealer Search
curl -X GET "https://breachhub.org/api/cypherdynamics?category=password&query=mypassword123&key=your_api_key"
Response Fields
results— Array of matching records (email, password, url, domain, machine_id, upload_date, etc.)total— Total number of matches in the databasecount— Number of results returned in this pagenext_cursor— Cursor for pagination (use to fetch next page)quality— Aggregated stats (unique passwords, domains, upload timeline, email domain distribution)analysis— AI-generated risk assessment, exposure summary, and recommendations
Room 101
Advanced Reddit intelligence platform with AI-powered profile analysis, comment history, subreddit user mapping, and full-text search across submissions and comments.
| Endpoint | Method | Description |
|---|---|---|
| /api/room101/analyze | GET | AI-powered Reddit profile analysis (demographics, interests, personality) |
| /api/room101/user | GET | Retrieve full comment & submission history of a Reddit user |
| /api/room101/subreddit | GET | List all users who posted in a given subreddit |
| /api/room101/search | GET | Search Reddit submissions & comments by keywords (v1 — flat list) |
| /api/room101/v2/search | GET | Search Reddit submissions & comments by keywords (v2 — grouped) |
GET
/api/room101/analyze?username={user}&key={KEY_API}
Query Parameters
username(string, required): Reddit username (use 'rand' for random profile)model(string, optional): AI model selection (Grok, Gemini, DeepSeek, Llama)latest(boolean, optional): Fetch latest messages not in archiverefresh(boolean, optional): Force re-processing of profilesources(boolean, optional): Verify sources for analysisuse_case(string, optional): Specify analysis use case (e.g. law_enforcement)key(string, required): Your API key
Example Request
Profile Analysis
curl -X GET "https://breachhub.org/api/room101/analyze?username=spez&key=your_api_key"
GET
/api/room101/user?username={user}&key={KEY_API}
Query Parameters
username(string, required): Reddit usernamelatest(boolean, optional): Fetch latest messages not in archivekey(string, required): Your API key
Returns
Parsed comment and submission history with text, id, timestamp, subreddit and URL for each entry.
Example Request
User Comment History
curl -X GET "https://breachhub.org/api/room101/user?username=spez&key=your_api_key"
GET
/api/room101/subreddit?name={subreddit}&key={KEY_API}
Query Parameters
name(string, required): Subreddit name (without r/)key(string, required): Your API key
Returns
List of Reddit usernames who have posted or commented in the specified subreddit.
Example Request
Subreddit Users
curl -X GET "https://breachhub.org/api/room101/subreddit?name=osint&key=your_api_key"
GET
/api/room101/search?terms={keyword}&key={KEY_API}
Query Parameters
terms(string/array, required): Search terms (all must appear in title/text)from(integer, optional): Unix timestamp — search startto(integer, optional): Unix timestamp — search endtype(string, optional): Filter bycommentorsubmissionkey(string, required): Your API key
Returns
Up to 50 results ordered by recency. Flat list of submissions and comments.
Example Request
Search v1
curl -X GET "https://breachhub.org/api/room101/search?terms=data+breach&key=your_api_key"
GET
/api/room101/v2/search?terms={keyword}&key={KEY_API}
Query Parameters
terms(string/array, required): Search terms (all must appear in title/text)from(integer, optional): Unix timestamp — search startto(integer, optional): Unix timestamp — search endtype(string, optional): Filter bycommentorsubmissionkey(string, required): Your API key
Returns
Same as v1 but results are grouped into separate submissions and comments arrays with full payloads.
Example Request
Search v2
curl -X GET "https://breachhub.org/api/room101/v2/search?terms=data+breach&key=your_api_key"
SEON
Email, phone, IP and payment card intelligence with risk scoring and digital footprint analysis.
| Endpoint | Method | Description |
|---|---|---|
| /api/seon/phone | GET | Phone number validation, carrier, location, risk & social footprint |
| /api/seon/email | GET | Email intelligence, social profiles, breach history & risk score |
| /api/seon/ip | GET | IP geolocation, ISP, proxy/VPN detection & fraud indicators |
| /api/seon/bin | GET | Bank card BIN/IIN lookup — issuer, card type, country & brand |
| /api/seon/email-verification | GET | Fast email syntax, MX records & disposable/temporary check |
GET
/api/seon/phone?phone={phone}&key={KEY_API}
Query Parameters
phone(string, required): Phone number (E.164 format recommended: +12025550123)key(string, required): Your API key
Example Request
Phone Lookup
curl -X GET "https://breachhub.org/api/seon/phone?phone=+12025550123&key=your_api_key"
GET
/api/seon/email?email={email}&key={KEY_API}
Query Parameters
email(string, required): Email address to analyzekey(string, required): Your API key
Returns
Social media linked accounts, data breach exposure, reputation score, suspicious patterns, disposable/temporary status, etc.
Example Request
Email Intelligence
curl -X GET "https://breachhub.org/api/seon/[email protected]&key=your_api_key"
GET
/api/seon/ip?ip={ip}&key={KEY_API}
Query Parameters
ip(string, required): IPv4 or IPv6 addresskey(string, required): Your API key
Returns
Geolocation, ISP, organization, proxy/VPN/Tor detection, abuse velocity, fraud score
Example Request
IP Analysis
curl -X GET "https://breachhub.org/api/seon/ip?ip=185.220.101.12&key=your_api_key"
GET
/api/seon/bin?bin={bin}&key={KEY_API}
Query Parameters
bin(string, required): First 6–8 digits of the card (BIN/IIN)key(string, required): Your API key
Returns
Card brand (Visa, Mastercard…), issuing bank, card type (debit/credit/prepaid), country, category
Example Request
BIN Lookup
curl -X GET "https://breachhub.org/api/seon/bin?bin=457173&key=your_api_key"
GET
/api/seon/email-verification?email={email}&key={KEY_API}
Query Parameters
email(string, required): Email address to verifykey(string, required): Your API key
Returns
Deliverability status, syntax validity, MX records, disposable/temporary email detection, catch-all detection
Example Request
Email Verification
curl -X GET "https://breachhub.org/api/seon/[email protected]&key=your_api_key"
Oathnet
Comprehensive OSINT platform — breach data, stealer logs, victim analysis, Discord/gaming profiles, email intelligence, IP geolocation, and subdomain extraction.
| Endpoint | Module | Description |
|---|---|---|
| Breach & Stealer | ||
| /api/oathnet/breach | Breach | General data breach search |
| /api/oathnet/stealer | Stealer | Stealer logs search by email/domain |
| /api/oathnet/stealer-subdomain | Stealer Subdomain | Find subdomains from stealer logs |
| /api/oathnet/extract-subdomain | Extract Subdomain | General subdomain extraction for a domain |
| Victims | ||
| /api/oathnet/victims | Victims Search | Search infected devices by email/domain |
| /api/oathnet/victims/{log_id} | Victims Manifest | Get file tree for a victim log |
| /api/oathnet/victims/{log_id}/files/{file_id} | Victims File | Download file content as .txt |
| /api/oathnet/victims/{log_id}/archive | Victims Archive | Download full victim log as ZIP |
| Discord | ||
| /api/oathnet/discord-userinfo | Discord User Info | User profile (avatar, badges, creation date) |
| /api/oathnet/discord-username-history | Discord Username History | Username change history |
| /api/oathnet/discord-to-roblox | Discord To Roblox | Discord to Roblox ID mapping |
| Gaming | ||
| /api/oathnet/steam | Steam | Steam profile (username, real name, country) |
| /api/oathnet/xbox | Xbox | Xbox profile by gamertag or XUID |
| /api/oathnet/roblox-userinfo | Roblox | Roblox profile by user ID or username |
| /api/oathnet/mc-history | Minecraft | Minecraft username change history |
| OSINT | ||
| /api/oathnet/ip-info | IP Info | IP geolocation, ISP, proxy detection |
| /api/oathnet/holehe | Holehe | Check email registration across websites |
| /api/oathnet/ghunt | GHunt | Google account OSINT (profile, maps, photos) |
GET
/api/oathnet/breach?query={query}&key={KEY_API}
Parameters
query(string, required): Email, username, etc.key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/[email protected]&key=your_api_key"
GET
/api/oathnet/stealer?query={query}&key={KEY_API}
Parameters
query(string, required): Email, password, or domainkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/[email protected]&key=your_api_key"
GET
/api/oathnet/stealer-subdomain?domain={domain}&key={KEY_API}
Parameters
domain(string, required): Domain to scan (e.g. sfr.fr)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/stealer-subdomain?domain=sfr.fr&key=your_api_key"
GET
/api/oathnet/extract-subdomain?domain={domain}&key={KEY_API}
Parameters
domain(string, required): Target domainis_alive(boolean, optional): Only return HTTP-responsive subdomains (default: false)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/extract-subdomain?domain=example.com&is_alive=true&key=your_api_key"
GET
/api/oathnet/victims?query={query}&key={KEY_API}
Parameters
query(string, required): Email or domainkey(string, required): Your API key
Search infected devices. Returns log IDs, device IPs, emails, HWIDs, Discord IDs.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/[email protected]&key=your_api_key"
GET
/api/oathnet/victims/{log_id}?key={KEY_API}
Parameters
log_id(string, required): Victim log ID (from victims search)key(string, required): Your API key
Returns the file tree (manifest) of a victim log — directories and files with their IDs and sizes.
GET
/api/oathnet/victims/{log_id}/files/{file_id}?key={KEY_API}
Parameters
log_id(string, required): Victim log IDfile_id(string, required): File ID (from manifest)key(string, required): Your API key
Downloads the file content as a .txt file (passwords, cookies, autofills, etc.).
GET
/api/oathnet/victims/{log_id}/archive?key={KEY_API}
Parameters
log_id(string, required): Victim log IDkey(string, required): Your API key
Downloads the complete victim log as a .zip archive.
GET
/api/oathnet/discord-userinfo?discord_id={discord_id}&key={KEY_API}
Parameters
discord_id(string, required): Discord user ID (14-19 digits)key(string, required): Your API key
Returns username, global name, avatar, banner, creation date, badges.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/discord-userinfo?discord_id=300760994454437890&key=your_api_key"
GET
/api/oathnet/discord-username-history?discord_id={discord_id}&key={KEY_API}
Parameters
discord_id(string, required): Discord user ID (14-19 digits)key(string, required): Your API key
Returns the full username change history.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/discord-username-history?discord_id=300760994454437890&key=your_api_key"
GET
/api/oathnet/discord-to-roblox?discord_id={discord_id}&key={KEY_API}
Parameters
discord_id(string, required): Discord user IDkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/discord-to-roblox?discord_id=300760994454437890&key=your_api_key"
GET
/api/oathnet/steam?steam_id={steam_id}&key={KEY_API}
Parameters
steam_id(string, required): Steam64 ID or custom URL namekey(string, required): Your API key
Returns username, real name, avatar, profile URL, country, account creation date, online status.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/steam?steam_id=76561199443618616&key=your_api_key"
GET
/api/oathnet/xbox?xbl_id={gamertag}&key={KEY_API}
Parameters
xbl_id(string, required): Xbox Live gamertag or XUIDkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/xbox?xbl_id=ethan&key=your_api_key"
GET
/api/oathnet/roblox-userinfo?username={username}&key={KEY_API}
Parameters
user_id(string, optional): Roblox user IDusername(string, optional): Roblox usernamekey(string, required): Your API key
Provide either user_id or username.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/roblox-userinfo?username=Chris&key=your_api_key"
GET
/api/oathnet/mc-history?username={username}&key={KEY_API}
Parameters
username(string, required): Minecraft usernamekey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/mc-history?username=Notch&key=your_api_key"
GET
/api/oathnet/ip-info?ip={ip}&key={KEY_API}
Parameters
ip(string, required): IPv4 or IPv6 addresskey(string, required): Your API key
Returns country, city, ISP, ASN, timezone, mobile/proxy/hosting detection.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/ip-info?ip=174.235.65.156&key=your_api_key"
GET
/api/oathnet/holehe?email={email}&key={KEY_API}
Parameters
email(string, required): Email addresskey(string, required): Your API key
Checks if an email is registered on various websites. Returns the list of domains where the account exists.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/[email protected]&key=your_api_key"
GET
/api/oathnet/ghunt?email={email}&key={KEY_API}
Parameters
email(string, required): Gmail addresskey(string, required): Your API key
Google account OSINT — profile name, avatar, Gaia ID, Google Maps reviews, Google Photos.
Example Request
cURL
curl -X GET "https://breachhub.org/api/oathnet/[email protected]&key=your_api_key"
Memory.lol
Social media username history and tracking across platforms.
GET
/api/memory?username={username}&key={KEY_API}
Parameters
username(string, required): Username to querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/memory?username=exampleuser&key=your_api_key"
NoSINT
Multi-module OSINT search engine. Streams results in real time via SSE across 30+ modules (social media, breaches, public records). Supports email, username and phone lookups. Also provides IP geolocation.
| Endpoint | Description |
|---|---|
| /api/nosint/search | Multi-module OSINT search (email, username, phone) |
| /api/nosint/ip | IP geolocation lookup |
GET
/api/nosint/search?type={type}&query={query}&key={KEY_API}
Parameters
query(string, required): The value to search (email, username, phone number)type(string, required): Target type —email,usernameorphonekey(string, required): Your API key
Notes
- Results are streamed via Server-Sent Events (SSE) — use
Accept: text/event-stream - Each module result is emitted as a separate
data:event - Stream ends with
{"done": true} - A 10-second cooldown is applied between searches
GET
/api/nosint/ip?ip={ip}&key={KEY_API}
Parameters
ip(string, required): IPv4 or IPv6 addresskey(string, required): Your API key
Reconly
Advanced Open Source Intelligence (OSINT) terminal. Modern modules for comprehensive data analysis and digital footprint tracking — covering Discord, gaming platforms, social profiles, and breach databases via a unified mode parameter.
| Mode | Query | Description |
|---|---|---|
| discord | Discord ID | Multi-source Discord lookup (discord1 + discord2) |
| discord-leak | Discord ID | Discord leak databases (3 sources) |
| discord-lookup | Discord ID | Discord profile lookup |
| discord-search | Query string | Discord search across 2 sources |
| itemsatis | Username | ItemSatis marketplace profile + data + ID |
| craftrisecraftlime | Query string | CraftRise / CraftLime player lookup |
| dcturkiye | Username | DC Türkiye username lookup |
| fivem | Query string | FiveM player lookup |
| github | Username | GitHub profile lookup |
| leakcheck | Query string | LeakCheck breach search |
| owobot | Discord ID | OwO bot profile lookup |
| Username | Pinterest profile lookup |
GET
/api/reconly?mode={mode}&query={query}&key={KEY_API}
Parameters
mode(string, required): The lookup mode (see table above)query(string, required): Discord ID, username, or search string depending on modekey(string, required): Your API key
Example Request
cURL — Discord lookup
curl -X GET "https://breachhub.org/api/reconly?mode=discord&query=123456789012345678&key=your_api_key"
cURL — GitHub lookup
curl -X GET "https://breachhub.org/api/reconly?mode=github&query=torvalds&key=your_api_key"
cURL — Discord leak search
curl -X GET "https://breachhub.org/api/reconly?mode=discord-leak&query=123456789012345678&key=your_api_key"
TikTok Osint
Comprehensive TikTok user intelligence and profile analysis.
GET
/api/tiktok?type={type}&username={username}&key={KEY_API}
Parameters
type(string, required): basic & fullusername(string, required): Username to querykey(string, required): Your API key
| Type | Description | Response Time |
|---|---|---|
| Basic | Profile info, followers, bio | ~2-5 seconds |
| Full | Video history, engagement metrics | ~10-30 seconds |
Binlist
Bank Identification Number (BIN) lookup for card validation.
GET
/api/binlist?bin={BIN}&key={KEY_API}
Parameters
bin(string, required): 6-8 digit BIN numberkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/binlist?bin=45717360&key=your_api_key"
Inf0sec
Multi-module intelligence platform with specialized search capabilities.
INF0SEC Modules: INF0SEC uses a modular approach where each endpoint represents a specialized search capability.
All endpoints follow the same pattern /api/inf0sec?module={module}&query={query}&key={KEY_API}
| Endpoint | Module | Description |
|---|---|---|
| /api/inf0sec?module=leaks | Leaks | General data breach search |
| /api/inf0sec?module=npd | NPD | National Public Data search with multiple criteria |
| /api/inf0sec?module=ip-info | IP INFO | National Public Data search with multiple criteria |
| /api/inf0sec?module=domain | Domain | Domain intelligence and WHOIS data |
| /api/inf0sec?module=username | Username | Username analysis across multiple platforms |
| /api/inf0sec?module=hlr | HLR | Phone number lookup and carrier information |
| /api/inf0sec?module=cfx | CFX | CFX gaming platform data (FiveM/RedM) |
GET
/api/inf0sec?module=leaks&query={query}&key={KEY_API}
query(string, optional): Search termkey(string, required): Your API key
Example Request
Leaks Module
curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key"
GET
/api/inf0sec?module=npd&firstname={query}&lastname={query}&phone={query}&key={KEY_API}
Parameters
firstname(string, optional): First namelastname(string, optional): Last namephone(string, optional): Phone numberkey(string, required): Your API key
VIN Decoder
Comprehensive Vehicle Identification Number (VIN) decoding with manufacturer data, vehicle specifications, engine details, production plant information, and more.
| Endpoint | Method | Type | Description |
|---|---|---|---|
| /api/vin | GET | decode |
Decode a single VIN (standard or extended information) |
| /api/vin | GET | batch |
Batch decode multiple VINs at once |
| /api/vin | GET | makes |
Get list of vehicle makes for a specific year |
| /api/vin | GET | wmi |
World Manufacturer Identifier (WMI) lookup |
| /api/vin | GET | manufacturers |
Get full list of vehicle manufacturers |
| /api/vin | GET | variables |
Get list of available variables / fields |
| /api/vin | GET | canadian |
Canadian vehicle specifications lookup |
GET
/api/vin?type=decode&query={vin}&key={KEY_API}
Query Parameters (type=decode)
type(string, required):decodequery(string, required): VIN to decode (17 characters)extended(boolean, optional):truefor more detailed outputmodel_year(string, optional): Specific model year filterkey(string, required): Your API key
Example Requests
Standard Decode
curl -X GET "https://breachhub.org/api/vin?type=decode&query=1HGBH41JXMN109186&key=your_api_key"
Extended Decode
curl -X GET "https://breachhub.org/api/vin?type=decode&query=1HGBH41JXMN109186&extended=true&key=your_api_key"
GET
/api/vin?type=batch&query={vin1,vin2,...}&key={KEY_API}
Query Parameters (type=batch)
type(string, required):batchquery(string, required): VINs separated by commas (e.g. VIN1,VIN2,VIN3)key(string, required): Your API key
Example Request
Batch Decode (3 VINs)
curl -X GET "https://breachhub.org/api/vin?type=batch&query=1HGBH41JXMN109186,5YJSA1E26JF123456,4T1BF1FK0CU123456&key=your_api_key"
GET
/api/vin?type=makes&year={year}&key={KEY_API}
Query Parameters (type=makes)
type(string, required):makesyear(string, optional): Desired year (e.g. 2024)key(string, required): Your API key
Example Request
Makes for 2024
curl -X GET "https://breachhub.org/api/vin?type=makes&year=2024&key=your_api_key"
GET
/api/vin?type=wmi&query={wmi}&key={KEY_API}
Query Parameters (type=wmi)
type(string, required):wmiquery(string, required): WMI code (first 3 characters of the VIN)key(string, required): Your API key
Example Request
WMI Lookup (Honda)
curl -X GET "https://breachhub.org/api/vin?type=wmi&query=1HG&key=your_api_key"
IntelFetch
Access selected IntelFetch OSINT tools through a secure proxy. Only a subset of IntelFetch features are exposed: GitHub search, Discord search, IP lookup, domain analysis, Fetchbase search.
GET
/api/intelfetch/discord?query={query}&key={KEY_API}
Parameters
query(string, required): ID Discordkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelfetch/discord?query=123456789012345678&key=your_api_key"
GET
/api/intelfetch/github?username={username}&key={KEY_API}
Parameters
username(string, required): Username to querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelfetch/github?username=john&key=your_api_key"
GET
/api/intelfetch/ip-lookup?ip={query}&key={KEY_API}
Parameters
query(string, required): IP to querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelfetch/ip-lookup?ip=8.8.8.8&key=your_api_key"
GET
/api/intelfetch/fetchbase?query={query}&key={KEY_API}
Parameters
query(string, required): Search querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelfetch/[email protected]&key=your_api_key"
GET
/api/intelfetch/domain?domain={query}&key={KEY_API}
Parameters
query(string, required): Domainkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/intelfetch/domain?domain=example.com&key=your_api_key"
Indicia Intelligence
Access Indicia Intelligence OSINT API through a secure unified interface. Multiple endpoints are available for comprehensive intelligence gathering across various data sources including email, phone, person search, and breach databases.
GET
/api/indicia/email?query={email}&key={KEY_API}
Parameters
query(string, required): Email address to searchkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/[email protected]&key=your_api_key"
GET
/api/indicia/gmail?query={email}&key={KEY_API}
Parameters
query(string, required): Gmail address to searchkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/[email protected]&key=your_api_key"
GET
/api/indicia/web-dbs?query={query}&services={services}&key={KEY_API}
Parameters
query(string, required): Search queryservices(string, required): Comma-separated list of services (e.g., breachvip,snusbase)key(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/[email protected]&services=breachvip,snusbase&key=your_api_key"
GET
/api/indicia/roblox?query={username}&key={KEY_API}
Parameters
query(string, required): Search username robloxkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/roblox?query=john_doe&key=your_api_key"
GET
/api/indicia/whois?query={domain}&key={KEY_API}
Parameters
query(string, required): Search querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/whois?query=example.com&key=your_api_key"
GET
/api/indicia/tiktok?query={username}&key={KEY_API}
Parameters
query(string, required): Search querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/tiktok?query=john_doe&key=your_api_key"
GET
/api/indicia/discord?query={id_discord}&key={KEY_API}
Parameters
query(string, required): Search querykey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/indicia/discord?query=1234567801234567801&key=your_api_key"
IPinfo
Retrieves detailed information about an IP address.
GET
/api/ipinfo?ip={query}&key={KEY_API}
Parameters
ip(string, required): Search termkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/ipinfo?ip=8.8.8.8&key=your_api_key"
Shodan
Search engine for Internet-connected devices. Query hosts, search vulnerabilities, analyze infrastructure.
GET
/api/shodan/{module}?ip={query}&key={KEY_API}
Parameters
module(string, required): host, honeyscore, searchquery(string, required): Search termkey(string, required): Your API key
Example Request
cURL
curl -X GET "https://breachhub.org/api/shodan/host?ip=8.8.8.8&key=your_api_key"
cURL
curl -X GET "https://breachhub.org/api/shodan/honeyscore?ip=1.1.1.1&key=your_api_key"
cURL
curl -X GET "https://breachhub.org/api/shodan/search?query=apashe&key=your_api_key"
GitHub OSINT
Full GitHub recon — profile, repos, orgs, gists, followers, contributions, SSH/GPG keys, commit emails. Supports username, numeric user ID, profile URL, or email reverse lookup.
GET
/api/github?username={username}&key={KEY_API}
Parameters
username(string, optional): GitHub username, numeric ID, or profile URLemail(string, optional): Email — reverse lookup via noreply pattern, commit search, user search, Gravatarquery(string, optional): Auto-detected (email/username/ID/URL). Used if neitherusernamenoremailis providedtype(string, optional):basic(default) orfull— full mode includes complete repos list, gists list, activity histograms, and commit-email miningkey(string, required): Your API key
Example Requests
cURL
curl -X GET "https://breachhub.org/api/github?username=octocat&key=your_api_key" curl -X GET "https://breachhub.org/api/[email protected]&key=your_api_key" curl -X GET "https://breachhub.org/api/github?username=octocat&type=full&key=your_api_key"
Discord OSINT
Discord user lookup and stalking tools with comprehensive profile data.
| Endpoint | Description |
|---|---|
| /api/discord/discord-lookup | Basic Discord user lookup |
| /api/discord/discord-stalker | Advanced Discord user tracking |
GET
/api/discord/discord-lookup?query={query}&key={KEY_API}
Parameters
query(string, required): Discord user IDkey(string, required): Your API key
GET
/api/discord/discord-stalker?query={query}&key={KEY_API}
Parameters
query(string, required): Discord user IDkey(string, required): Your API key
Error Handling
The API uses standard HTTP status codes to indicate success or failure.
Error Handling
HTTP status codes
200
Success
Request completed
400
Bad Request
Invalid parameters
401
Unauthorized
Invalid API key
403
Forbidden
Key revoked
429
Rate Limited
Limit exceeded
500
Server Error
Internal error
Example Error Response
401 Unauthorized
{
"success": false,
"error": "Invalid key"
}