Breach Directory allows you to search over 18 billion publicly leaked records. Similar to Have I Been Pwned, this website will show results of data breaches that your email may have been involved in. But the results will not only show what breach your email was involved in, but for some, it will show leaked passwords associated with the account the email was registered to.

For example, let’s say you used a google email to register for Auto-Zone rewards. Auto-Zone then suffers a data breach months later and you get a notification via your email. The account you created for Auto-Zone one their website required you to create a password to track orders, purchases, etc. Part of the data that is leaked are those passwords stored on Auto-Zone’s servers. Conducting the search on Breach Directory will show the Auto-Zone data breach and the leaked password associated with the account. Only partial of the password is shown in plain text while the whole md5 hash is shown. If that md5 hash is entered into a website, like crackstation.net, then that hash can be cracked, allowing the whole password to be revealed in plain text. This could then allow hackers to use this information to make efforts in gaining access to that account. Never use the same password for your accounts.

You can visit these websites by clicking on the tabs below.