Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/m3n0sd0n4ld/uDork

uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.
https://github.com/m3n0sd0n4ld/uDork

google-hacking osint

Last synced: 3 months ago
JSON representation

Host: GitHub
URL: https://github.com/m3n0sd0n4ld/uDork
Owner: m3n0sd0n4ld
Created: 2019-09-09T09:41:50.000Z (about 5 years ago)
Default Branch: master
Last Pushed: 2022-06-20T05:57:23.000Z (over 2 years ago)
Last Synced: 2024-05-15T13:40:19.207Z (6 months ago)
Topics: google-hacking, osint
Language: Shell
Homepage:
Size: 1.75 MB
Stars: 773
Watchers: 31
Forks: 150
Open Issues: 1
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - m3n0sd0n4ld/uDork - uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, (Shell)
stars - m3n0sd0n4ld/uDork - uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, (Shell)
stars - m3n0sd0n4ld/uDork - uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, (Shell)

README

# uDork - Google Hacking Tool

###### Author: M3n0sD0n4ld
###### Twitter: [@David_Uton](https://twitter.com/David_Uton)

## News
### 11/06/2022
I have some bad news to give, last week Facebook withdrew the service by which the tool made the requests, unfortunately the tool no longer works.

Sorry, thank you very much to all the users who have been using it, reporting bugs and contributing with new ideas.

Note: [I am working on another tool, Say hello to **GooFuzz**!](https://github.com/m3n0sd0n4ld/GooFuzz)

### 23/02/2022
- Adapting uDork to the programming changes from Facebook to Meta.
- Removed the Perl library "libany-uri-escape-perl".
- Speed has been improved, gaining 2 seconds between requests.

# Description:

uDork does NOT make attacks against any server, it only uses predefined dorks and/or official lists from exploit-db.com (Google Hacking Database: https://www.exploit-db.com/google-hacking-database).

# Download and install:
```
$ git clone https://github.com/m3n0sd0n4ld/uDork
$ cd uDork
$ chmod +x uDork.sh
- Open the file "uDork.sh" and write inside this line:
```
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/1.png)
```
$ ./uDork.sh -h
```

## Steps to obtain the cookie and configure the cookie
1. Login to facebook.com
2. Now we will access www.messenger.com (It is the Facebook messaging app) and click on the "Continue as..." button.
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/2.png)
3. Once we're in, all we have to do is get the two cookies we need to make uDork work.

### 3.1 - With firefox:
-- Right mouse button and click on "Inspect".

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/3.png)

-- Click on the "Network" tab and select any line that is in the domain "www.messenger.com".

-- Now click on the "Cookies" tab, copy and paste the cookies "c_user" and "xs" into the "uDork.sh" file.

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/4.png)

Thus: cookies="c_user=XXXXXX; xs=XXXXXX;"

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/1.png)

### 3.2 - With Google Chrome
-- Right mouse button and click on "Inspect".

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/5.png)

-- Click on the tab "Application", in the left column, look for the section "Cookies", copy and paste the cookies "c_user" and "xs" with their value to the file "uDork.sh".

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/6.png)

Thus: cookies="c_user=XXXXXX; xs=XXXXXX;"

![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/1.png)

# Docker version:
## Acknowledgement
Twitter: [@interh4ck](https://twitter.com/interh4ck)
GitHub:(https://github.com/interhack86)
```
$ git clone https://github.com/m3n0sd0n4ld/uDork
$ cd uDork
$ docker build -t udork .
$ docker run --rm -it -e c_user=XXXXXXXXX -e xs=XXXXXXXXX udork -h
```

# Use:

## Menu
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/7.png)

## Example of searching pdf files
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/8.png)

## Example of a search for a list of default extensions.
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/12.png)
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/13.png)

## Example of searching routes with the word "password"
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/9.png)

## Dorks listing
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/10.png)

## Example of use Dorks Massive
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/11.png)

## Example of use All Dorks Massive (Recommend for pentesting/audit)
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/14.png)
![Screenshot](https://github.com/m3n0sd0n4ld/uDork/blob/master/images/15.png)

# Disclaimer
This tool requires session cookies from a Facebook account to work. I am NOT responsible for any problems with your account and/or computer.