WhiteIntel API Documentation
  • WhiteIntel API
  • Authentication
  • Postman Collections
  • Webhooks
    • WhiteIntel Webhook API
    • Signature Validation
  • WhiteIntel API v2
    • Consumer Leaks API
  • Corporate Leaks API
  • Username Leaks API
  • IP Leaks API
  • Computer Leaks API
  • Get Leaks By ID API
  • Overall Stats API
  • Last Leaks API
  • Whiteintel API v1
    • Combolists API
      • ComboLists Username Leaks API
      • ComboLists Customer Leaks API
      • ComboLists Corporate Email Leaks API
      • Get IDs From Leaks
      • Get Customer Leaks by Id API
      • Get Corporate Leaks by Id API
      • Get Username Leaks by Id API
    • Infostealer API
      • Customer Leaks API
      • Corporate Email Leaks API
      • Username Leaks API
      • Password Leaks API
      • IP Leaks API
      • Hostname Leaks API
      • Get IDs From Leaks
      • Get Multiple Leaks By Ids
      • Get Leak by Id
    • Overall Stats API
    • Last Leaks API
Powered by GitBook
On this page
  • Parameters
  • Response Fields
  • Sample Request
  • Notes
  1. WhiteIntel API v2

Consumer Leaks API

This endpoint can be used for retrieving consumer leaks related to the given domain address.

Endpoint: https://api.whiteintel.io/get_consumer_leaks.php Method: POST Content-Type: application/json

Parameters

Parameter

Required

Default

Description

apikey

Yes

N/A

Your API Key

query

Yes

N/A

Target domain address (ex. xyz.com)

type

No

all

Leak type. Accepted values are: stealer, combolist or all.

limit

No

500

Integer value of limit. Min 1, maximum 5000.

include_system_info

No

0

Returns compromised systeminfo along with the leaked credentials (if available). Accepted values are 1 or 0.

page

No

1

Page number for pagination. Starts from 1.

Response Fields

Response Key

Response Values

success

true or false

remaining_daily_calls

Integer

results

Full Sample Result

Sample Request

curl --location 'https://api.whiteintel.io/get_consumer_leaks.php' \
--header 'Content-Type: application/json' \
--data '{
           "apikey": "YOUR API KEY",
           "query": "TARGETDOMAIN(ex. xyz.com)",
           "limit": 1000,
	   "include_system_info": 1,
           "type": "all",
	   "page": 1   
}'

Notes

  • Make sure to replace "YOUR API KEY" with your actual API key.

  • The query field should be a valid domain like example.com.

PreviousSignature ValidationNextCorporate Leaks API

Last updated 1 month ago

Array of returned results. See below for example "results": [ { "data_type": "stealer", "url": "application_login_url, "log_id": 13371337, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-29", "hostname": "compromised_computer_name", "ip": "compromised_ip", "malware_path": "malware_path", "anti_virus": null }, { "data_type": "combolist", "url": "application_login_url, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-27" } ]

{ "success": true, "remaining_daily_calls": 1974, "results": [ { "data_type": "stealer", "url": "application_login_url, "log_id": 13371337, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-29", "hostname": "compromised_computer_name", "ip": "compromised_ip", "malware_path": "malware_path", "anti_virus": null }, { "data_type": "combolist", "url": "application_login_url, "username": "leaked_user", "password": "leaked_password", "log_date": "2025-04-27" } ] }

"
"
"
"