dwisiswant0 / Go Dork
Licence: mit
The fastest dork scanner written in Go.
Stars: ✭ 274
Projects that are alternatives of or similar to Go Dork
magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+74.45%)
Mutual labels: infosec, bugbounty, vulnerability-scanners
Gf Secrets
Secret and/ credential patterns used for gf.
Stars: ✭ 96 (-64.96%)
Mutual labels: crawler, infosec, bugbounty
Faraday
Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+1067.15%)
Mutual labels: infosec, vulnerability-scanners
Pinaak
A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
Stars: ✭ 69 (-74.82%)
Mutual labels: bugbounty, vulnerability-scanners
T1tl3
A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title
Stars: ✭ 14 (-94.89%)
Mutual labels: infosec, bugbounty
AttackSurfaceManagement
Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (-83.58%)
Mutual labels: bugbounty, vulnerability-scanners
Subcert
Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
Stars: ✭ 58 (-78.83%)
Mutual labels: infosec, bugbounty
osmedeus-workflow
Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
Stars: ✭ 26 (-90.51%)
Mutual labels: infosec, bugbounty
goverview
goverview - Get an overview of the list of URLs
Stars: ✭ 93 (-66.06%)
Mutual labels: infosec, bugbounty
Pentesting
Misc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-91.24%)
Mutual labels: infosec, bugbounty
targets
A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (-68.98%)
Mutual labels: infosec, bugbounty
Xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+1042.7%)
Mutual labels: infosec, vulnerability-scanners
security-policy-specification-standard
This document proposes a way of standardising the structure, language, and grammar used in security policies.
Stars: ✭ 24 (-91.24%)
Mutual labels: infosec, bugbounty
Astra
Astra is a tool to find URLs and secrets inside a webpage/files
Stars: ✭ 187 (-31.75%)
Mutual labels: infosec, bugbounty
Megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (-2.19%)
Mutual labels: infosec, bugbounty
dora
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Stars: ✭ 229 (-16.42%)
Mutual labels: infosec, bugbounty
lit-bb-hack-tools
Little Bug Bounty & Hacking Tools⚔️
Stars: ✭ 180 (-34.31%)
Mutual labels: infosec, bugbounty
go-dork
The fastest dork scanner written in Go.
There are also various search engines supported by go-dork, including Google, Shodan, Bing, Duck, Yahoo and Ask.
Install
- Download a prebuilt binary from releases page, unpack and run! or
- If you have Go 1.15+ compiler installed and configured:
> GO111MODULE=on go get -v -u dw1.io/go-dork
Usage
Basic Usage
It's fairly simple, go-dork can be run with:
> go-dork -q "inurl:'...'"
Flags
> go-dork -h
This will display help for the tool. Here are all the switches it supports.
| Flag | Description |
|---|---|
| -q/--query | Search query (required) |
| -e/--engine | Provide search engine (default: Google) |
| (options: Google, Shodan, Bing, Duck, Yahoo, Ask) | |
| -p/--page | Specify number of pages (default: 1) |
| -H/--header | Pass custom header to search engine |
| -x/--proxy | Use proxy to surfing |
| -s/--silent | Silent mode, prints only results in output |
Querying
> go-dork -q "inurl:..."
Queries can also be input with stdin
> cat dorks.txt | go-dork -p 5
Defining engine
Search engine can be changed from the available engines: Google, Shodan, Bing, Duck, Yahoo, Ask.
However, if the -e flag is not defined, it will use the Google search engine by default.
> go-dork -e bing -q ".php?id="
This will do a search by the Bing engine.
Pagination
By default, go-dork scrapes the first page, you can customize using the -p flag.
> go-dork -q "intext:'jira'" -p 5
It will search sequentially from pages 1 to 5.
Adding custom headers
Maybe you want to use a search filter on the Shodan engine, you can use custom headers to add cookies or other header parts.
> go-dork -q "org:'Target' http.favicon.hash:116323821" \
--engine shodan -H "Cookie: ..." -H "User-Agent: ..."
Using proxy
Using a proxy, this can also be useful if Google or other engines meet Captcha.
> go-dork -q "intitle:'BigIP'" -p 2 -x http://127.0.0.1:8989
Chained with other tools
If you want to chain the go-dork results with another tool, use the -s flag.
> cat dorks.txt | go-dork | pwntools
> go-dork -q "inurl:'/secure' intext:'jira' site:org" -s | nuclei -t workflows/jira-exploitaiton-workflow.yaml
Supporting Materials
- Hazana. Dorking on Steroids, 11 Mar. 2021, https://hazanasec.github.io/2021-03-11-Dorking-on-Steriods/.
Help & Bugs
If you are still confused or found a bug, please open the issue. All bug reports are appreciated, some features have not been tested yet due to lack of free time.
TODOs
- [ ] Fixes Yahoo regexes
- [ ] Fixes Google regexes if using custom User-Agent
- [x] Stopping if there's no results & page flag was set
- [ ] DuckDuckGo next page
License
MIT. See LICENSE for more details.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].