Pastebin is a very helpful tool to store or rather share ascii encoded data online. In the world of OSINT, pastebin is being used by researchers all around the world to retreive e.g. leaked account data, in order to find indicators about security breaches.
Pastepwn is a framework to scrape pastes and scan them for certain indicators. There are several analyzers and actions to be used out-of-the-box, but it is also easily extensible - you can create your own analyzers and actions on the fly.
Please note: This framework is not to be used for illegal actions. It can be used for querying public Pastebin pastes for e.g. your username or email address in order to increase your own security.
In April 2020 Pastebin disabled access to their scraping API for a short period of time. At first people weren't able to access the scraping API in any way, but later on they re-enabled access to the API setup page. But since then it isn't possible to scrape "text" pastes. Only pastes with any kind of syntax set. That reduces the amount of pastes to a minimum, which reduced the usefulness of this tool.
To use the pastepwn framework you need to follow these simple steps:
pip3 install pastepwn)¹
main.py) in your project root, where you put your code in²
¹ Note that pastepwn only works with python3.5 or above (so better use pip3)
² (If you want to store all pastes, make sure to setup a
There are 2 ways to use this tool behind a proxy:
proxiesis a dict as defined in requests' documentation.
Check the bug tracker on GitHub to get an up-to-date status about features and ToDos.