SkillAgentSearch skills...

Leaky

Leaky is a powerful toolkit designed to import, manage, search, and visualize massive data leaks including stealer logs, credential dumps, and miscellaneous leak data within a streamlined web interface powered by MongoDB.

GenerateConvertImprove

Install / Use

/learn @saladandonionrings/Leaky
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

leaky :key:

Python 3.5|3.6 License

Leaky is an arsenal of tools designed for parsing and visualizing colossal text files laden with credentials and stealer logs (in the ULP format). Built to aid penetration testers and redteamers in OSINT, credential gathering, and credential stuffing attacks, this suite delivers an efficient way to manage and investigate leaked data at scale.

⚠️ Disclaimer

This project is intended for educational and professional use only. It is designed for penetration testers, red team / blue team members, and cybersecurity professionals working in legal and authorized contexts (OSINT, security assessments, leak analysis, etc.).
No illegal or unethical activity is encouraged, promoted, or supported by the authors of this project. Use responsibly and within the bounds of applicable laws.

:star2: Credits

This project is built upon the foundational work of ACCEIS' LeakScraper.

Installation

You can install Leaky and its prerequisites using the following commands:

# install mongodb
sudo apt-get install gnupg
curl -fsSL https://pgp.mongodb.com/server-6.0.asc | \
   sudo gpg -o /usr/share/keyrings/mongodb-server-6.0.gpg \
   --dearmor
echo "deb [ signed-by=/usr/share/keyrings/mongodb-server-6.0.gpg] http://repo.mongodb.org/apt/debian bullseye/mongodb-org/6.0 main" | sudo tee /etc/apt/sources.list.d/mongodb-org-6.0.list
sudo apt-get update
sudo apt-get install -y mongodb-org

# start mongodb
sudo systemctl enable mongod
sudo systemctl start mongod
# if failed :
sudo systemctl daemon-reload
sudo systemctl status mongod

# install project
git clone https://github.com/saladandonionrings/leaky.git
cd leaky
sudo ./install.sh

Usage

File types supported

  • TXT
    • Stealer Logs (URL:Login:Password)
    • Combos list (Login:Password)
    • Phone numbers
  • SQL
  • CSV
  • JSON

Importing data

# change creds for users in init.py
python3 init.py 

# import the file into mongodb
python3 import.py -t {creds,phone,misc} -f <file> -n <leak_name> -d <leak_date>

# start web instance on port 9999 ; default pass -> leaky123
python3 scraper.py

Functionalities

Leaky provides the following capabilities:

  • Search : As it says.
  • Inventory : Inventory of your breach files.
  • Upload : Add your own breach files.
  • Links : Useful links for data leaks.

Search

Credentials/ULP

search

Phone

phones

Misc

csv

Inventory

list

Upload

upload

Links

links

saladandonionrings

View profile

View on GitHub
GitHub Stars49
CategoryData
Updated6d ago
Forks9
saladandonionrings/leaky

Languages

Go Template

Security Score

95/100

Audited on Mar 30, 2026

No findings