Instant visibility into underground credential leaks

Search over 431B+ plain text credentials collected from malware logs, combolists, database breaches and dark-web dumps, and get alerted before attackers act.

Start free in 1 click

or sign up with

· no credit card

431B+ credentials indexed · live

431B+ records

Millisecond lookup

Real-time alerts

Unlimited searches

API access included

Pay by card or crypto

No hidden fees

WHY LEAKRADAR

What you actually get

Three things you can do today, in one product.

See what's already leaked

Search any email, domain or raw string. Get a clean breakdown of compromised employees, third-parties and customers — in seconds.

Catch new leaks the day they drop

Set continuous monitoring on your domains and emails. Get notified via Email, Slack, Discord, Telegram or Webhook the moment new credentials surface.

Get the data, not just the alert

Unlock plain-text credentials, URLs, infected hosts and timestamps. Pipe into your SOC or pivot your investigation via our REST API and Python wrapper.

Also in the box

Live indexing pipeline

Boolean + wildcard search

REST API + Python SDK

GDPR-compliant, EU-hosted

Pricing Plans

Choose the plan that fits

Instant access, same-day upgrades, cancel anytime.

Unlock equals number of plain-text records you can reveal per day across all searches. Searches are free and unlimited.

We accept all major credit cards and cryptocurrencies.
Cancel anytime, with no fees or questions.

Livesynced 0s ago

The platform's pulse, in real time

These numbers come straight from our indexing pipeline. They refresh every couple of minutes.

431,877,307,936 credentials indexedcredentials indexed

13,485,209,630

credentials this week

2,697

new leak files this week

100,776

total leak files

3,589,692

credentials per minute

Recent ingestion

FileCredentialsWhen

@Xavier_Log - { 239 } @Xavier_Group Premium.rar

Stealer Logs

1,037,872

27s ago

@Xavier_Log - { 237 } @Xavier_Group Premium.rar

Stealer Logs

1,100,635

1m ago

@Xavier_Log - { 237 } @Xavier_Group Premium (2).rar

Stealer Logs

1,127,926

1m ago

@Xavier_Log - { 236 } @Xavier_Group Premium.rar

Stealer Logs

1,127,375

2m ago

@Xavier_Log - { 235 } @Xavier_Group Premium.rar

Stealer Logs

836,229

3m ago

@Xavier_Log - { 235 } @Xavier_Group Premium (2).rar

Stealer Logs

1,231,307

4m ago

Auto-refreshed every ~2 min

FAQ

Frequently asked questions

Browse through these FAQs to find answers to commonly asked questions.

Is LeakRadar free to try?

Yes. Searching is free and unlimited — no credit card required. You only pay if you want to:

• Unlock plain-text credentials (one credit per leak revealed)
• Set up continuous monitoring with email, Slack, Discord, Telegram or webhook alerts
• Use the REST API in your stack

Create a free account and explore.

Can I cancel anytime?

Yes. All paid plans can be cancelled at any time — no fees, no questions. Your access stays active until the end of your current billing period.

Is my data protected? Where are you hosted?

Yes. LeakRadar is GDPR-compliant and operated by Radar Forge SAS (Paris, France).

• Hosting: OVH (France) + Cloudflare for DNS and WAF
• Payments: Stripe for cards, NowPayments for crypto
• We never share your account information or your search history with third parties
• Your account data is kept separate from the public leak index

Full details in our Privacy Policy.

How does LeakRadar compare to HaveIBeenPwned, Hudson Rock or DeHashed?

Different services cover different angles of the same problem:

• HaveIBeenPwned tells you that an email appeared in a breach — not the password or the source.
• Hudson Rock focuses on stealer-log infections of individual machines.
• DeHashed and LeakCheck offer wide lookup coverage but limited monitoring and team features.

LeakRadar combines plain-text reveal, continuous monitoring, an API and team workflow in one product, with unlock-based pricing so you don't pay for queries you don't run.

See side-by-side comparisons.

Is it legal to use LeakRadar?

Searching for credentials tied to your own email, domain or organization is legal everywhere we know of. It's the standard use case for security teams, IT admins and individuals checking their own exposure.

For searches involving third parties (pentesters, bug bounty hunters, threat intel researchers, MSP and MSSP teams), legality depends on your jurisdiction and your contractual scope. We require every user to confirm legitimate use at sign-up, and we don't grant access for malicious purposes. If you're unsure whether your specific use case is allowed, check with your legal counsel.

We also offer free lifetime access to verified law enforcement and military teams.

Where does the data come from?

We index leaks exclusively from public forums and Telegram channels. We never buy data, never alter it, and we avoid any involvement in creating, reselling, or trafficking stolen material.

Can a victim request removal of their leaked data?

Yes. If your credentials appear in our database and you want them removed, send a removal request to privacy@leakradar.io (or via the contact page) with proof of ownership. We process verified requests within a few working days and remove matching records from search results. This is your right under GDPR Article 17.

Note: removing your records from our index doesn't erase the underlying leak from the internet. The data is already public on multiple forums and channels. It just means it won't show up in LeakRadar searches anymore.

Looking for more details on payments, API limits or search syntax? The complete FAQ is available right after sign-up, in your dashboard.

Ready to try LeakRadar?

Run your first leak search in seconds - no credit card required.

Start free in 1 click

or sign up with

· no credit card

Blog

Latest articles & tutorials

Fresh insights on breach-hunting, malware and threat intel.

See all articles