# Global Search

The **Global Search** page is the central hub for querying our breach intelligence database. It allows users to perform targeted searches across **billions of leaked records** collected from stealer logs, combolist breaches, exposed infrastructure, and more.

With Global Search, you can:

* Search by **domain**, **subdomain**, **APK Package**, **email**, **IP address**, or **device hostname**
* Filter results by **record type**, **breach source**, or **date**
* Instantly view exposed credentials, associated applications, and breach context
* Export results to CSV for further analysis
* Unlock enriched insights with advanced filters (TI-only features)

Global Search is designed to surface relevant breach intelligence quickly, whether you're investigating a potential compromise, monitoring brand exposure, or conducting threat research.

> 📌 Tip: Access to certain filters and data types—such as IPs or computer names—requires an active **Threat Intelligence** license.

{% content-ref url="/pages/oQV612Glb8NgUpcSFMSt" %}
[Corporate Records](/basics/corporate-records.md)
{% endcontent-ref %}

{% content-ref url="/pages/YHtVkaJkKIOwEMxHU4m0" %}
[Consumer Records](/basics/consumer-records.md)
{% endcontent-ref %}

<figure><img src="/files/hkQqCLUCJJkllr2KKNoB" alt=""><figcaption></figcaption></figure>

After performing a search, you can **view the contents of a breach** by clicking the **"View"** button next to a result. If the item hasn't been unlocked yet, you'll be prompted to use one of your **unlock tokens** to access the full breach details.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://knowledge.whiteintel.io/white-intel-usage/global-search.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.