Purpose: Checks for data breaches and leaked credentials associated with the target email, domain, or username. Useful for identifying compromised accounts and exposure risks.

Category: Threat Intelligence / Data Breach

• Enabled for email, domain, and username targets.
• Can be run from the web UI or CLI:

  python sf.py -s [email protected] -t EMAILADDR -m sfp_breach

Email: [email protected]
Breaches Found: 3
Sources: HaveIBeenPwned, Dehashed
Details: Passwords, personal info exposed

• HaveIBeenPwned (optional, for more results)
• Dehashed (optional, for more results)

• Use to assess risk for users, domains, or organizations.
• Combine with sfp_email, sfp_username for full coverage.

Authored by poppopjmp