Skip to main content

Cyware Threat Intelligence eXchange

Have I Been Pwned

Connector Category: Enrichment Tool

About Integration

Have I Been Pwned enables you to check your email addresses and domains across various data breaches for potential compromises. Intel Exchange integrates with Have I Been Pwned to retrieve breach details of email addresses and domains.

Configure Have I Been Pwned as an Enrichment Tool

Configure Have I Been Pwned to retrieve breach details of email addresses and domains.

Before you Start 

  • Ensure you have the view, update, and create permissions for Enrichment Tools.

  • Ensure you have the base URL and API key of your Have I Been Pwned account.

    Note

    Ensure that the API key includes the permissions to retrieve emails.

Steps 

To configure Have I Been Pwned as an enrichment tool, follow these steps:

  1. Sign in to Intel Exchange, and go to Administration > Enrichment Management > Enrichment Tools.

  2. Search and select the Have I Been Pwned enrichment tool.

  3. Click Add Account and enter the following details:

    • Account Name: Enter a unique account name to identify the instance. For example, Pwned Enrichment.

    • Base URL: Enter the base URL of your instance. The default base URL is https://haveibeenpwned.com/api/v3.

    • API Key: Enter the API key of your Have I Been Pwned account to authenticate communication between the Intel Exchange and  Have I Been Pwned servers.

    • Verify SSL: Select Verify SSL to verify the SSL certificate and secure the connection between Intel Exchange and Have I Been Pwned servers.

      Note

      We recommend you enable Verify SSL. If you disable this option, Intel Exchange may configure an instance for an expired SSL certificate. This may not establish the connection properly and Intel Exchange will not be able to notify you in case of a broken or improper connection.

  4. Click Save.

After adding an account successfully, you can view and enable the IP and domain enrichment types. Additionally, you can configure Quota to restrict the number of enrichment requests sent from Intel Exchange to Have I Been Pwned. After the quota expires, you cannot make enrichment requests until the quota resets for the next quota duration. For more information, see Define Quota in Configure Enrichment Tools.

To understand the number of API calls and quota units consumed by the Have I Been Pwned enrichment tool per polling, refer to the following table.

Enrichment Tool

Feed Enrichment Type

No. of API calls

Quota Consumed

Have I Been Pwned

Retrieve Email Detail

2

2

Retrieve Domain Detail

1

1

You can configure an enrichment policy to automatically enrich email and domain objects using the Have I Been Pwned enrichment tool. For more information, see Configure Enrichment Policy.Configure Enrichment Policy