{"id":4526,"date":"2017-06-13T04:58:46","date_gmt":"2017-06-12T20:58:46","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=4526"},"modified":"2017-06-16T01:13:18","modified_gmt":"2017-06-15T17:13:18","slug":"credmap-the-credential-mapper","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2017\/06\/credmap-the-credential-mapper\/","title":{"rendered":"credmap &#8211; The Credential Mapper"},"content":{"rendered":"<p>Credmap is an open source credential mapper tool that was created to bring awareness to the dangers of credential reuse. It is capable of testing supplied user credentials on several known websites to test if the password has been reused on any of these.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2017\/06\/credmap-The-Credential-Mapper-640x344.png\" alt=\"credmap - The Credential Mapper\" width=\"640\" height=\"344\" class=\"aligncenter size-medium wp-image-4564\" srcset=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2017\/06\/credmap-The-Credential-Mapper-640x344.png 640w, https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2017\/06\/credmap-The-Credential-Mapper.png 731w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>It is not uncommon for people who are not experts in security to reuse credentials on different websites; even security savvy people occasionally reuse credentials. <\/p>\n<p>Credmap takes a username and\/or e-mail, and a password as input and it attempts to login on a variety of known websites to verify if these credentials have been reused on any of them.<\/p>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<h3>Usage<\/h3>\n<pre>Usage: credmap.py --email EMAIL | --user USER | --load LIST [options]\r\n\r\nOptions:\r\n  -h\/--help             show this help message and exit\r\n  -v\/--verbose          display extra output information\r\n  -u\/--username=USER..  set the username to test with\r\n  -p\/--password=PASS..  set the password to test with\r\n  -e\/--email=EMAIL      set an email to test with\r\n  -l\/--load=LOAD_FILE   load list of credentials in format USER:PASSWORD\r\n  -f\/--format=CRED_F..  format to use when reading from file (e.g. u|e:p)\r\n  -x\/--exclude=EXCLUDE  exclude sites from testing\r\n  -o\/--only=ONLY        test only listed sites\r\n  -s\/--safe-urls        only test sites that use HTTPS.\r\n  -i\/--ignore-proxy     ignore system default HTTP proxy\r\n  --proxy=PROXY         set proxy (e.g. \"socks5:\/\/192.168.1.2:9050\")\r\n  --list                list available sites to test with<\/pre>\n<h3>Examples<\/h3>\n<pre>.\/credmap.py --username janedoe --email janedoe@email.com\r\n.\/credmap.py -u johndoe -e johndoe@email.com --exclude \"github.com, live.com\"\r\n.\/credmap.py -u johndoe -p abc123 -vvv --only \"linkedin.com, facebook.com\"\r\n.\/credmap.py -e janedoe@example.com --verbose --proxy \"https:\/\/127.0.0.1:8080\"\r\n.\/credmap.py --load creds.txt --format \"e.u.p\"\r\n.\/credmap.py -l creds.txt -f \"u|e:p\"\r\n.\/credmap.py -l creds.txt\r\n.\/credmap.py --list<\/pre>\n<p>You can download credmap here:<\/p>\n<p><a href=\"https:\/\/github.com\/lightos\/credmap\/archive\/master.zip\">credmap-master.zip<\/a><\/p>\n<p>Or read more <a href=\"https:\/\/github.com\/lightos\/credmap\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Credmap is an open source credential mapper tool that was created to bring awareness to the dangers of credential reuse. It is capable of testing supplied user credentials on several known websites to test if the password has been reused on any of these. It is not uncommon for people who are not experts in [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"Credmap is an open source credential mapper tool that was created to bring awareness to the dangers of credential reuse. It's in Python.","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[9,31,17],"tags":[284],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4526"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=4526"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4526\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=4526"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=4526"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=4526"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}