@blaudoom thanks for responding. I found the api page so I’m now submitting the requests to the right url I think (getting Response [403] "Bad Credentials now… progress? haha). Unfortunately my test usernames and the r*****u list has given me nothing but 403…
I’m under the impression that the “Bad Characters” nudge refers to the cve exploit and not the c******* creds?