Dark Web Leak API Documentation

Dark Web Data API Search

Utilize the leaked data API to search through a wide collection of breached, stolen, and leaked databases from popular websites which have recently suffered data breaches. Lookup email addresses, phone numbers, usernames, or passwords. Perform on-demand leaked data searches using our dark web data API.

Search Leaked Databases

The IPQS leaked data API searches dark web sources for compromised user data including emails, usernames, and passwords. Identify the breach source where the personal information was first exposed, such as "Experian", "T-Mobile", etc. New leaks are automatically found and uploaded into our database everyday.

Benefits of Using a Leaked Data Breach Search API

Digital impersonation is on the rise and cybercriminals are always getting smarter with new fraud tactics. Fraudsters typically use stolen data from online data breaches to impersonate their victims. This behavior is common for account origination fraud as well as account takeover attacks. Our breach detection API can detect leaked personal information, compromised passwords, and other data available on dark web sites that can be used for malicious identity theft.

This service is excellent at preventing compromised accounts and ensure your users are utilizing secure passwords. A secure real-time lookup can verify if the user's personally identifiable information (PII) has been exposed to any dark web activity. The API can also be used as a dark web monitoring service to routinely check your existing user or customer base for data breaches. Dark web monitoring can be used across any industry including financial fraud, new account screening, and login verification.

Example Dark Web API URLs

The URLs below can be used to fetch the result using cURL or another utility in most languages. Please replace "TYPE", "YOUR_API_KEY_HERE", and "DATA" in the example below.

"TYPE" can be the following options:

email
password
username

JSON:

XML:

NOTE: Do not share this key with anyone. It's like a password and can be used to make queries using our API.

Dark Web API Example Email Address Lookup

JSON:

Dark Web API JSON Success Response Example


    {
    "success": true,
    "message": "Success",
    "source": [
    "example.com",
    "example.com"
    ],
    "exposed": true,
    "request_id": "DXdRw3mvSm"
    }

JSON Error Response Example


    {
    "success": false,
    "message": "Invalid email address. Please check the email and try again.",
    "request_id": "DXekLpAHZF"
    }

Response Field Definitions

Below is a list of expected result fields for your query.

Field	Description	Possible Values
success	Was the request successful?	boolean
message	Potential error message.	string
source	Name of merchant or website which was breached.	string or array of strings
exposed	Was this data detected in a data breach?	boolean
request_id	A unique identifier for this request.	string

<?php
$input = $_GET['email'];
$key = 'YOUR_API_KEY_HERE';
$type = "email";
$timeout = 5;

$url = sprintf("%25s-3.html",type,key,input);

$curl = curl_init();
curl_setopt($curl, CURLOPT_URL,$url);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($curl, CURLOPT_CONNECTTIMEOUT, $timeout);
$json = curl_exec($curl);
curl_close($curl);

$result = json_decode($json, true);
if ($result['exposed'] === true){
    echo "Leaked email was detected";
    print_r($result['source']);
}else {
    echo "Email is not leaked";
}

# THIS SHOULD NEVER BE USED IN PRODUCTION AS IS!

# You may need to install Requests pip
# python -m pip install requests

import requests

input = input("enter a email to look up")
key = "YOUR_API_KEY_HERE"
type = "email"
url = "https://www.ipqualityscore.com/api/json/leaked/%s/%s/%s" % (type,key,input)

x = requests.get(url).json()
if x["exposed"] == true:
    print("email was detected in leaked data")
else:
    print("email is not leaked")