Plugins

turbot/hibp

GitHub
Overview
4Tables
Versions
GitHub
steampipe plugin install hibpsteampipe plugin install hibp
On This Page
Documentation
Get started
Get involved
Get Involved
Edit on GitHub
Discuss on Slack
Source Code
turbot/steampipe-plugin-hibp
License
Apache License 2.0
Version
v0.3.0
Published
10 Apr 2023

Have I Been Pwned + Steampipe

Steampipe is an open source CLI to instantly query cloud APIs using SQL.

Have I Been Pwned (HIBP) is an online searchable index of data breaches where anyone can quickly assess if they may have been put at risk due to an online account of theirs having been compromised or "pwned" in a data breach.

For example:

select
  name,
  pwn_count as compromised_count,
  is_verified as verified,
  breach_date
from
  hibp_breach
where
  breach_date > '2022-01-01';
+----------------+-------------------+----------+---------------------------+
| name           | compromised_count | verified | breach_date               |
+----------------+-------------------+----------+---------------------------+
| AmartFurniture | 108940            | true     | 2022-05-16T05:30:00+05:30 |
| BlackBerryFans | 174168            | true     | 2022-05-06T05:30:00+05:30 |
| Fanpass        | 112251            | true     | 2022-04-30T05:30:00+05:30 |
| GiveSendGo     | 89966             | true     | 2022-02-07T05:30:00+05:30 |
| CDEK           | 19218203          | false    | 2022-03-09T05:30:00+05:30 |
| Doxbin         | 370794            | true     | 2022-01-05T05:30:00+05:30 |
| NVIDIA         | 71335             | true     | 2022-02-23T05:30:00+05:30 |
| MacGeneration  | 101004            | true     | 2022-01-29T05:30:00+05:30 |
| PayHere        | 1580249           | true     | 2022-03-27T05:30:00+05:30 |
+----------------+-------------------+----------+---------------------------+

Documentation

Get started

Install

Download and install the latest HIBP plugin:

steampipe plugin install hibp

Configuration

Installing the latest hibp plugin will create a config file (~/.steampipe/config/hibp.spc) with a single connection named hibp:

connection "hibp" {
  plugin  = "hibp"


  # `api_key` - The API key to access the HIBP API. 
  # This is only required while querying `hibp_breached_account` and `hibp_paste` tables. 
  # This can also be set with the 'HIBP_API_KEY' environment variable
  # See https://haveibeenpwned.com/API/Key for more information on how to generate one
  # api_key = "03ef6bfxxxxxxxxxxxxxxx8ad568286b"
}
  • api_key - The API key to access the HIBP API. Can also be set with the HIBP_API_KEY environment variable. This is only required while querying hibp_breached_account and hibp_paste tables.

Get involved