PwnBin – Python Pastebin Search Tool


PwnBin is a webcrawler or Pastebin search tool which searches public pastebins for specified keywords. All pastes are then returned after sending completion signal CTRL+C.

PwnBin - Python Pastebin Search Tool


Apart from being a great tool for developers, Pastebins are often used by hackers to leak stolen credentials or d0x people. This tool can help you search pastebins for your API keys, SSH keys, tokens and anything else sensitive to check for leaks.

What is a Pastebin?

A pastebin is a type of web application where users can store plain text. They are most commonly used to share short source code snippets for code review via Internet Relay Chat. The first pastebin was located at pastebin.com. Other sites with the same functionality have appeared, and several open-source pastebin scripts are available. Many pastebins allow commenting where readers can post feedback directly on the page. GitHub Gists are a type of pastebin with version control.

Since pastebins are relatively simple to implement, writing a pastebin web-application is regarded as a good exercise for programmers. Representative pastebins now exist for many programming languages, including Lisp, PHP, Perl and Python.

There are other tools that can help with this and similar tasks like – Scumblr by Netflix – Automatically Scan For Leaks.


Pwbin – Pastebin Search Tool Features

  • Currently only supports Pastebin.com
  • Searches by default for:
    • SSH Credentials
    • Passwords
    • API Keys
    • Tokens

Usage for PwnBin Pastebin Search

Basic command:

Both the keyword and outputfile arguments are optional and default to

Optional commands:

You can download PwnBin for Pastebin search here:

pwnbin-master.zip

Or read more here.

Posted in: Hacking Tools

,


Latest Posts:


Fuzzilli - JavaScript Engine Fuzzing Library Fuzzilli – JavaScript Engine Fuzzing Library
Fuzzilii is a JavaScript engine fuzzing library, it's a coverage-guided fuzzer for dynamic language interpreters based on a custom intermediate language.
OWASP APICheck - HTTP API DevSecOps Toolset OWASP APICheck – HTTP API DevSecOps Toolset
APICheck is an HTTP API DevSecOps toolset, it integrates existing tools, creates execution chains easily and is designed for integration with 3rd parties.
trident - Automated Password Spraying Tool trident – Automated Password Spraying Tool
The Trident project is an automated password spraying tool developed to be deployed on multiple cloud providers and provides advanced options around scheduling
tko-subs - Detect & Takeover Subdomains With Dead DNS Records tko-subs – Detect & Takeover Subdomains With Dead DNS Records
tko-subs is a tool that helps you to detect & takeover subdomains with dead DNS records, this could be dangling CNAMEs point to hosting services and more.
Arcane - Tool To Backdoor iOS Packages (iPhone ARM) Arcane – Tool To Backdoor iOS Packages (iPhone ARM)
Arcane is a simple script tool to backdoor iOS packages (iPhone ARM) and create the necessary resources for APT repositories.
SharpHose - Asynchronous Password Spraying Tool SharpHose – Asynchronous Password Spraying Tool
SharpHose is an asynchronous password spraying tool in C# for Windows environments that takes into consideration fine-grained password policies and can be run over Cobalt Strike's execute-assembly.


Comments are closed.