Skip to main content

Base URL

All API requests are made to: 
https://oathnet.org/api

Authentication

Every request requires an API key in the x-api-key header: 
curl -H "x-api-key: YOUR_API_KEY" https://oathnet.org/api/service/search-breach?q=test

Get Your API Key

Generate an API key from your dashboard

Interactive Playground

Each endpoint page includes an interactive playground where you can test API requests directly in your browser.
1

Enter Your API Key

Click the “Authorization” section in the playground and enter your API key
2

Set Parameters

Fill in the required parameters for the endpoint
3

Send Request

Click “Send” to execute the request and see the response
Your API key is stored locally in your browser and is only sent directly to the API server.

Response Format

All responses follow a consistent envelope: 
{
  "success": true,
  "message": "Operation completed successfully",
  "data": {
    // Response data here
    "_meta": {
      "user": { "plan": "Pro", "plan_type": "pro", "is_plan_active": true },
      "lookups": { "used_today": 5, "left_today": 995, "daily_limit": 1000 },
      "service": { "name": "Service Name", "id": "service-id" },
      "performance": { "duration_ms": 123.45, "timestamp": "2024-01-15T10:30:00Z" }
    }
  }
}

Endpoints by Category

Search & Session

EndpointDescription
POST /service/search/initInitialize a search session
GET /service/search-breachSearch breach database
GET /service/search-stealerSearch stealer logs (legacy)
GET /service/v2/stealer/searchEnhanced V2 stealer search
GET /service/v2/stealer/subdomainExtract subdomains from stealer data

Victims & Files

EndpointDescription
GET /service/v2/victims/searchSearch victim profiles
GET /service/v2/victims/Get victim manifest
GET /service/v2/victims//files/Get file content
GET /service/v2/victims//archiveDownload victim archive
POST /service/v2/file-searchCreate file search job
GET /service/v2/file-search/Get file search status

Exports

EndpointDescription
POST /service/v2/exportsCreate export job
GET /service/v2/exports/Get export status
GET /service/v2/exports//downloadDownload export file

Discord OSINT

EndpointDescription
GET /service/discord-userinfoDiscord user profile
GET /service/discord-username-historyDiscord username history
GET /service/discord-to-robloxDiscord to Roblox mapping

Gaming Profiles

EndpointDescription
GET /service/steamSteam profile lookup
GET /service/xboxXbox profile lookup
GET /service/roblox-userinfoRoblox user info
GET /service/mc-historyMinecraft username history

Network & Email OSINT

EndpointDescription
GET /service/ip-infoIP geolocation lookup
GET /service/holeheEmail account check
GET /service/ghuntGoogle account OSINT
GET /service/extract-subdomainSubdomain extraction

Utility

EndpointDescription
GET /service/dbname-autocompleteDatabase name autocomplete

Quotas

Your daily quota resets 24 hours after your first lookup of the day. See Quotas Guide for details.

OpenAPI Specification

Download our complete OpenAPI 3.1.0 specification:

Download OpenAPI Spec

Get the full API specification in YAML format