Cr3dov3r Kali Linux- Credential Reuse Attack Tool
Convert Text to Speech
https://github.com/D4Vinci/Cr3dOv3r
You give Cr3dOv3r an email then it does two simple useful jobs with it:
Search for public leaks for the email and returns the result with the most useful details about the leak (Using haveibeenpwned API) and tries to get the plain text passwords from leaks it find (Using @GhostProjectME).
Now you give it a password or a leaked password then it tries this credentials against some well-known websites (ex: Facebook, Twitter, Google...), tells if the login successful and if there's captcha some where blocking our way!
Some of the scenarios Cr3dOv3r can be used in it
Check if the targeted email is in any leaks and then use the leaked password to check it against the websites.
Check if the target credentials you found is reused on other websites/services.
Checking if the old password you got from the target/leaks is still used in any website.
Installation
For Linux :
git clone https://github.com/D4Vinci/Cr3dOv3r.git
cd Cr3dOv3r
python3 -m pip install -r requirements.txt
python3 Cr3d0v3r.py -h
All information contained in this site and all software provided by it are intended solely for the purpose of helping users to secure their online privacy from eventual cyberattacks. Such information and software do NOT constitute professional advice/services, are indicative and provided for educational use only. The site does not guarantee their accuracy or completeness. The use of such information and software for any purpose other than the abovementioned is strictly forbidden. The site and/or the site’s owner(s) hold no responsibility for any misuse of the above by third parties and reserve their rights to ban the access of users or take any legal action against users, should any misuse be noticed.
source
Gloss