HIBP Domain Search.

Have I Been Pwned is a great resource for tech and non-tech folks alike. In fact it’s generally the first resource I point friends and family to when trying to help them understand why the use of common passwords is a security sin!

You may be aware that Troy Hunt expanded his awesome platform to allow IT Admins the ability to perform searches for pwned accounts falling under the umbrella of their company domain.

Setup is really simple and, as you’d imagine, the first and only stage is to prove that you own the domain in question.

To do this head along to the HIBP Domain Search page and enter your domain name.

It’s then time to prove you own and have control over the specified domain. Verification can be achieved by completing one of four options;

1. Email (use one of the supplied email addresses)
2. Meta tag (add to the heading of the page on the root domain)
3. File upload (upload a file with the supplied filename and content to the root of the domain)
4. Create a DNS TXT record

Once verified, that’s it, you’re setup and the data can be downloaded in a few different formats. Simple eh!

Assuming you previously entered an email address, you should now be notified of breaches that include addresses from your domain. This not only allows you to act immediately to protect your assets, but also provides a great opportunity to help your staff understand and tackle the cyber risks that we’re becoming accustomed to in modern day life.

• From File Deletion to Domination: Exploiting Cisco’s VPN Clients for Privilege Escalation
• Detecting AD CS subjectAltName (SAN) Abuse Using KQL
• KQL & LOLBAS Detection Ideas
• The PATH to PWNAGE
• OneRuleToRuleThemStill: New and Improved