D4Vinci/Cr3dOv3r D4Vinci/Cr3dOv3r

  • Stars
    star
    1,911
  • Rank 24,257 (Top 0.5 %)
  • Language
    Python
  • License
    MIT License
  • Created about 7 years ago
  • Updated over 5 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
D4Vinci/Cr3dOv3r
github

D4Vinci

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Know the dangers of credential reuse attacks.

Cr3dOv3r Python 3.5 Python 2.7 Build Status

Your best friend in credential reuse attacks.

You give Cr3dOv3r an email then it does two simple useful jobs with it:

  • Search for public leaks for the email and returns the result with the most useful details about the leak (Using haveibeenpwned API) and tries to get the plain text passwords from leaks it find (Using @GhostProjectME).
  • Now you give it a password or a leaked password then it tries this credentials against some well-known websites (ex: Facebook, Twitter, Google...), tells if the login successful and if there's captcha some where blocking our way!

Some of the scenarios Cr3dOv3r can be used in it

  • Check if the targeted email is in any leaks and then use the leaked password to check it against the websites.
  • Check if the target credentials you found is reused on other websites/services.
  • Checking if the old password you got from the target/leaks is still used in any website.

Screenshots

screenshot screenshot screenshot

Usage

usage: Cr3d0v3r.py [-h] [-p] [-np] [-q] email

positional arguments:
  email       Email/username to check

optional arguments:
  -h, --help  show this help message and exit
  -p          Don't check for leaks or plain text passwords.
  -np         Don't check for plain text passwords.
  -q          Quiet mode (no banner).

Installing and requirements

To make the tool work at its best you must have :

  • Python 3.x or 2.x (preferred 3).
  • Linux or Windows system.
  • Worked on some machines with MacOS and python3.
  • The requirements mentioned in the next few lines.

Installing

+For windows : (After downloading ZIP and upzip it)

cd Cr3dOv3r-master
python -m pip install -r win_requirements.txt
python Cr3d0v3r.py -h

+For Linux :

git clone https://github.com/D4Vinci/Cr3dOv3r.git
cd Cr3dOv3r
python3 -m pip install -r requirements.txt
python3 Cr3d0v3r.py -h

+For docker :

git clone https://github.com/D4Vinci/Cr3dOv3r.git
docker build -t cr3dov3r Cr3dOv3r/
docker run -it cr3dov3r "[email protected]"

If you want to add a website to the tool, follow the instructions in the wiki

Contact

Donation

If this tool has been useful for you, feel free to thank me by buying me a coffee :)

Coffee

Disclaimer

Cr3dOv3r is created to show how could credential reuse attacks get dangerous and it's not responsible for misuse or illegal purposes. Use it only for Pen-test or educational purpose !!!

Copying a code from this tool or using it in another tool is accepted as you mention where you get it from πŸ˜„

Pull requests are always welcomed :D

More Repositories

1

One-Lin3r

Gives you one-liners that aids in penetration testing operations, privilege escalation and more
Python
1,606
star
2

Dr0p1t-Framework

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks
Python
1,345
star
3

elpscrk

An Intelligent wordlist generator based on user profiling, permutations, and statistics. (Named after the same tool in Mr.Robot series S01E01)
Python
673
star
4

Cuteit

IP obfuscator made to make a malicious ip a bit cuter
Python
530
star
5

PyLoggy

A python keylogger that does more than any other keylogger - Key logger, Clicks logger and Screenshots
Python
402
star
6

PyFlooder

A http flood python script that could stop a normal website in 10s
Python
351
star
7

PasteJacker

Hacking systems with the automation of PasteJacking attacks.
Python
343
star
8

CWFF

Create your Custom Wordlist For Fuzzing
Python
156
star
9

Clickjacking-Tester

A python script designed to check if the website if vulnerable of clickjacking and create a poc
Python
122
star
10

bugz-tools

A collection of tools I wrote for bug bounty or hacking and don't mind publishing it πŸ˜„
Python
103
star
11

Chrome-Extractor

Python script that will extract all saved passwords from your google chrome database on windows only
Python
61
star
12

AdflyUrlGrabber

A python script designed to grab the original url from an adfly url without opening it :D
Python
57
star
13

Wormy

some python3 functions to add spreading features to any python backdoor
Python
56
star
14

Twitter-Info

A simple python script to grab twitter account info just by username or profile link
Python
47
star
15

Anti_Killer

Kill Any Antivirus Using Python For Windows Users .
Python
44
star
16

Palsy-Virus

Python virus that will make your pc paralyzed once it opened :D
Python
44
star
17

AirCracker

Basic python script for detect airdroid users in lan
Python
43
star
18

ReverseHttp

Python backdoor that uses http post/get requests to communicate
Python
39
star
19

Exif-Grabber

A python tool that will extract exif data from picture with two methods
Python
35
star
20

SSH-Honeypot

Create Basic SSH Honeypot With Python
Python
27
star
21

Paste2Web

A python3 script that uses cl1p website to send and receive secret messages
Python
26
star
22

My-laziness

Random scripts I write to automate non-hacking stuff
Python
21
star
23

Domain-Checker

Python tool to check the HTTP response code for a list of websites
Python
20
star
24

EagleEye

A host-based IDS and network monitoring system (My graduation project)
HTML
19
star
25

WifiPass

Dump the saved wifi passwords for windows using regular expressions and python 3
Python
18
star
26

XOE

Exploit XXE Out-Of-Band Vulnerability Easily
Python
16
star
27

Arr4ng3d_Sh4r3

Share wifi on windows with arranged password like every hour or every day
Python
15
star
28

Humax-CLI

An unofficial Humax IR4000HD terminal client with enhanced features.
Python
10
star
29

Insta-Crawler

A python script designed to generate a random instagram pictures ids and try it
Python
9
star
30

Some-fun-with-CPP

Here you gonna find some of the C++ scripts I created in many fields, someone could benefit from it πŸ˜„
C++
7
star
31

D4Vinci

2
star
32

Scrapling

Lightning-Fast, Adaptive Web Scraping for Python
Python
1
star