Loading…

Launching SquareBreach

Most breach-search tools were built around a single corpus: a forum dump, an infostealer feed, or a hand-curated combo list. That's fine when you're chasing one lead, but security teams investigating an incident end up bouncing between five different tabs, paying five different vendors, and copying results into a spreadsheet by hand.

We built SquareBreach because that workflow had to die.

What we ship today

Breach search — billions of leaked records across emails, usernames, passwords, hashes and IPs. Auto-detects the query type so you don't have to pick.

Stealer logs — combined infostealer dumps, normalised so the same victim id resolves across feeds. Click any row to see the device's full file tree.

Victims & file search — OSINT-style pivots from a single piece of PII to every artifact we have on that subject.

OSINT lookups — Discord, Roblox, Steam, Xbox, IP/geo, holehe and more, behind one search bar.

Saved searches and history — bookmark the queries you re-run weekly, and never forget what you've already looked for.

What's different

Pay only for what you query. Credits, not seats. A one-person research firm doesn't subsidise a 50-person SOC, and vice versa.

No SDK or API key needed for the dashboard. Login, search, get a result. We have an API too — but you don't need it just to triage one alert.

Crypto-only payments. No KYC pressure, no chargeback theatre. Top up with BTC, ETH, USDT, LTC, USDC or any of NOWPayments' supported chains.

Launching SquareBreach

We built SquareBreach because that workflow had to die.

What we ship today

Breach search — billions of leaked records across emails, usernames, passwords, hashes and IPs. Auto-detects the query type so you don't have to pick.
Stealer logs — combined infostealer dumps, normalised so the same victim id resolves across feeds. Click any row to see the device's full file tree.
Victims & file search — OSINT-style pivots from a single piece of PII to every artifact we have on that subject.
OSINT lookups — Discord, Roblox, Steam, Xbox, IP/geo, holehe and more, behind one search bar.
Saved searches and history — bookmark the queries you re-run weekly, and never forget what you've already looked for.

What's different

Pay only for what you query. Credits, not seats. A one-person research firm doesn't subsidise a 50-person SOC, and vice versa.
No SDK or API key needed for the dashboard. Login, search, get a result. We have an API too — but you don't need it just to triage one alert.
Crypto-only payments. No KYC pressure, no chargeback theatre. Top up with BTC, ETH, USDT, LTC, USDC or any of NOWPayments' supported chains.

What's coming

Workspace sharing of saved searches.
A first-party CLI for batch lookups.
Subscriptions for teams that prefer monthly billing over top-ups.
Hosted webhooks: push new breach matches into your SIEM.

If you've got a workflow we should support, tell us.