Purpose: Checks HaveIBeenPwned for breaches and exposures related to the target email or domain. Useful for identifying compromised accounts and risk assessment.

Category: Threat Intelligence / Data Breach

• Enabled for email and domain targets.
• Can be run from the web UI or CLI:

python sf.py -s [email protected] -t EMAILADDR -m sfp_hibp

Email: [email protected]
Breaches Found: 5
Sources: HaveIBeenPwned
Details: Passwords, personal info exposed

• HaveIBeenPwned API key (optional, for more results)

• Use to assess breach exposure for users and organizations.
• Combine with sfp_email and sfp_breach for comprehensive risk analysis.

Authored by poppopjmp