Consumer Leaks API
This endpoint can be used for retrieving consumer leaks related to the given domain address.
Endpoint: https://api.whiteintel.io/get_consumer_leaks.php
Method: POST
Content-Type: application/json
Parameters
Parameter
Required
Default
Description
apikey
Yes
N/A
Your API Key
query
Yes
N/A
Target domain address (ex. xyz.com)
type
No
all
Leak type. Accepted values are: stealer, combolist or all.
limit
No
500
Integer value of limit. Min 1, maximum 5000.
include_system_info
No
0
Returns compromised systeminfo along with the leaked credentials (if available). Accepted values are 1 or 0.
page
No
1
Page number for pagination. Starts from 1.
Response Fields
Response Key
Response Values
success
true or false
remaining_daily_calls
Integer
results
Array of returned results. See below for example "results": [ { "data_type": "stealer", "url": "application_login_url", "log_id": 13371337, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-29", "hostname": "compromised_computer_name", "ip": "compromised_ip", "malware_path": "malware_path", "anti_virus": null }, { "data_type": "combolist", "url": "application_login_url", "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-27" } ]
Full Sample Result
{ "success": true, "remaining_daily_calls": 1974, "results": [ { "data_type": "stealer", "url": "application_login_url", "log_id": 13371337, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-29", "hostname": "compromised_computer_name", "ip": "compromised_ip", "malware_path": "malware_path", "anti_virus": null }, { "data_type": "combolist", "url": "application_login_url", "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-27" } ] }
Sample Request
curl --location 'https://api.whiteintel.io/get_consumer_leaks.php' \
--header 'Content-Type: application/json' \
--data '{
"apikey": "YOUR API KEY",
"query": "TARGETDOMAIN(ex. xyz.com)",
"limit": 1000,
"include_system_info": 1,
"type": "all",
"page": 1
}'
Notes
Make sure to replace
"YOUR API KEY"
with your actual API key.The
query
field should be a valid domain likeexample.com
.
Last updated