REST API for Leaks.ai - monitor credential exposures across your organization's domains. Access leaks, infected endpoints, compromised resources, and exposed users. All list endpoints support pagination and filtering. Authentication via API key.
Leaks.ai API (1.0.0)
Download OpenAPI description
Languages
Servers
Mock server
https://docs.leaks.ai/_mock/openapi
API base path
https://api.leaks.ai/api/v1
Request
Returns paginated users — leaks grouped by login. Each user represents a unique identity (email or username) with an aggregated risk level across all associated leaks. Scope by domain(s).
Security
ApiKeyAuth
- Mock serverhttps://docs.leaks.ai/_mock/openapi/users
- API base pathhttps://api.leaks.ai/api/v1/users
- curl
- JavaScript
- Node.js
- Python
- Java
- C#
- PHP
- Go
- Ruby
- R
- Payload
curl -i -X GET \
'https://docs.leaks.ai/_mock/openapi/users?domain_id=a1b2c3d4-e5f6-7890-abcd-ef1234567890&page=1&per_page=25&risk_level=string&login=string&sort=string' \
-H 'Authorization: Bearer <YOUR_API Key_HERE>'Response
application/json
{ "data": [ { … } ], "pagination": { "page": 1, "per_page": 25, "total_pages": 3, "total_results": 67 } }
- Mock serverhttps://docs.leaks.ai/_mock/openapi/users/count
- API base pathhttps://api.leaks.ai/api/v1/users/count
- curl
- JavaScript
- Node.js
- Python
- Java
- C#
- PHP
- Go
- Ruby
- R
- Payload
curl -i -X GET \
'https://docs.leaks.ai/_mock/openapi/users/count?domain_id=a1b2c3d4-e5f6-7890-abcd-ef1234567890&risk_level=string&login=string' \
-H 'Authorization: Bearer <YOUR_API Key_HERE>'- Mock serverhttps://docs.leaks.ai/_mock/openapi/users/{user_id}
- API base pathhttps://api.leaks.ai/api/v1/users/{user_id}
- curl
- JavaScript
- Node.js
- Python
- Java
- C#
- PHP
- Go
- Ruby
- R
- Payload
curl -i -X GET \
'https://docs.leaks.ai/_mock/openapi/users/{user_id}?domain_id=a1b2c3d4-e5f6-7890-abcd-ef1234567890' \
-H 'Authorization: Bearer <YOUR_API Key_HERE>'Response
application/json
{ "data": { "id": "c3d4e5f6-a7b8-9012-cdef-345678901234", "login": "user@example.com", "identity_type": "email", "first_seen": "2025-12-01T08:00:00.000Z", "risk_level": 5, "risk_level_name": "medium", "connections": { … } } }