Have I Been Pwned

Have I Been Pwned MCP Connector for Claude

A+

Check if your accounts or passwords have been compromised in data breaches using the HIBP service.

5 tools Official Updated Jun 28, 2026 Official Vinkius Partner

Connect your AI agent to Have I Been Pwned, the internet's most trusted resource for tracking data breaches. Protect yourself by staying informed about where your sensitive information may have been leaked.

What you can do

  • Account Search — Instantly check if an email or username has been involved in any of the thousands of tracked data breaches
  • Paste Search — Discover if your information is circulating on public paste sites (like Pastebin)
  • Password Safety — Safely verify if a password has ever appeared in a breach using the secure K-Anonymity model (your full password is never sent to the server)
  • Breach Catalog — Explore the full history of major internet data breaches, including what types of data were stolen (passwords, emails, phone numbers, etc.)

How it works

  1. Subscribe to this server
  2. Enter your HIBP API Key (available at haveibeenpwned.com/API/Key)
  3. Start auditing your digital safety through chat

Who is this for?

  • Security-Conscious Users — monitor personal or family accounts for leaks
  • IT Professionals — check for corporate domain or account compromises
  • Researchers — analyze trends and impact of major data breaches
data-breachcybersecurityidentity-protectionpassword-securitythreat-intelligenceaccount-safety

5 tools expose this connector's capabilities to your AI agent.

check_password_safety

Uses k-anonymity; your full password is never sent to the server. Check if a password has ever appeared in a data breach (safe, k-anonymity search)

get_breach_details

Get details for a specific data breach by name

list_all_breaches

List all data breaches currently recorded in the system

search_account_breaches

Search for all data breaches an email or account has been involved in

search_account_pastes

Search for all public pastes (like Pastebin) containing the email or account

See how to talk to your AI agent using Have I Been Pwned.

Has my email 'test@example.com' been involved in any breaches?

Checking breaches for 'test@example.com'... I found 3 breaches: Adobe (2013), LinkedIn (2016), and Canva (2019). Leaked data includes: Email addresses, Passwords, Usernames.

Is the password 'P@ssword123' safe to use?

⚠️ **DANGER!** This password has appeared in **45,210** data breaches. You should **NEVER** use this password as it is easily guessable and publicly known.

Yes. This agent uses the K-Anonymity model. Only the first 5 characters of your password's SHA-1 hash are sent to the HIBP server. The full password or full hash never leaves your local environment, making it cryptographically safe.

Related Connectors