CLI Tool

export OATHNET_API_KEY="your-api-key"

oathnet -k "your-api-key" search breach -q "[email protected]"

oathnet search breach -q "[email protected]"

# With database filter
oathnet search breach -q "[email protected]" --dbnames "linkedin_2012"

# Save to file
oathnet search breach -q "[email protected]" -o results.json

# JSON output
oathnet search breach -q "[email protected]" -f json

oathnet search stealer -q "[email protected]"

oathnet search init -q "[email protected]"

# Basic search
oathnet stealer search -q "[email protected]"

# With domain filter
oathnet stealer search -q "[email protected]" --domain "google.com"

# Only results with log IDs
oathnet stealer search -q "[email protected]" --has-log-id

# Wildcard search
oathnet stealer search -q "[email protected]" --wildcard

# Custom page size
oathnet stealer search -q "[email protected]" --page-size 50

# Auto file-search on results
oathnet stealer search -q "[email protected]" --file-search "password" --file-search-mode literal

oathnet stealer subdomain -d "example.com"

# Basic search
oathnet victims search -q "[email protected]"

# With email filter
oathnet victims search --email "[email protected]"

# With IP filter
oathnet victims search --ip "192.168.1.1"

# With Discord ID
oathnet victims search --discord-id "123456789012345678"

# Wildcard mode
oathnet victims search -q "user@example" --wildcard

# Auto file-search on results
oathnet victims search -q "[email protected]" --file-search "password"

oathnet victims manifest <log_id>

oathnet victims archive <log_id> -o ./victim_archive.zip

# Literal search
oathnet file-search create -e "password"

# Regex search
oathnet file-search create -e "pass.*word" --mode regex

# Wildcard search
oathnet file-search create -e "pass*" --mode wildcard

oathnet file-search status <job_id>

# Create job and wait for results
oathnet file-search search -e "password" --mode literal

# With timeout
oathnet file-search search -e "password" --timeout 300000

# Export stealer data
oathnet export create --type stealer --format jsonl --limit 1000

# Export victims data
oathnet export create --type victims --format csv

# With search query
oathnet export create --type stealer -q "example.com"

oathnet export status <job_id>

oathnet export download <job_id> -o ./export.jsonl

oathnet export run --type stealer -o ./export.jsonl --limit 1000

oathnet osint ip 8.8.8.8

oathnet osint steam 76561198012345678

oathnet osint xbox "GamerTag123"

# User info
oathnet osint discord user 123456789012345678

# Username history
oathnet osint discord history 123456789012345678

# Discord to Roblox link
oathnet osint discord roblox 123456789012345678

# By user ID
oathnet osint roblox --user-id 123456789

# By username
oathnet osint roblox --username "PlayerName"

oathnet osint holehe [email protected]

oathnet osint ghunt [email protected]

# All subdomains
oathnet osint subdomain example.com

# Only alive subdomains
oathnet osint subdomain example.com --alive

oathnet osint minecraft PlayerName

oathnet util dbnames -q "link"

oathnet search breach -q "[email protected]"

Found 15 results (showing 15)

━━━ Result 1 ━━━
  email: [email protected]
  password: mypassword123
  dbname: linkedin_2012
  ...

━━━ Result 2 ━━━
  ...

oathnet search breach -q "[email protected]" -f json

{
  "success": true,
  "data": {
    "results_found": 15,
    "results_shown": 15,
    "results": [...]
  }
}

# 1. Search for stealer data with log IDs
oathnet stealer search -q "[email protected]" --has-log-id

# Output shows:
# ═══ LOG IDs (use with file-search/victims) ═══
#   abc123def456
#   xyz789ghi012

# 2. Search within those logs for passwords
oathnet file-search search -e "password" --mode literal

# 3. Get the victim manifest
oathnet victims manifest abc123def456

# 4. Download the full archive
oathnet victims archive abc123def456 -o ./victim.zip

# Create and download export in one command
oathnet export run --type stealer -q "@company.com" --limit 10000 -o ./company_export.jsonl

# Check IP reputation
oathnet osint ip 185.220.101.1

# Look up Discord user
oathnet osint discord user 123456789012345678

# Check if Discord links to Roblox
oathnet osint discord roblox 123456789012345678

# Check email on various services
oathnet osint holehe [email protected]

# Create a file with emails (one per line)
cat > emails.txt << EOF
[email protected]
[email protected]
[email protected]
EOF

# Process with xargs
cat emails.txt | xargs -I {} oathnet search breach -q "{}" -f json >> all_results.json

oathnet search breach -q "[email protected]" -f json | jq .

oathnet stealer search -q "[email protected]" -o "results_$(date +%Y%m%d_%H%M%S).json"

#!/bin/bash
export OATHNET_API_KEY="your-api-key"

result=$(oathnet search breach -q "$1" -f json)
count=$(echo "$result" | jq '.data.results_found')
echo "Found $count results for $1"

# Set API key
export OATHNET_API_KEY="your-api-key"