https://github.com/yee-yore/DorkAgent

🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.
https://github.com/yee-yore/DorkAgent

agent aiagent bugbounty dorks google-dorking google-hacking hacking llm osint pentest pentesting

Last synced: 5 months ago
JSON representation

🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.

• Host: GitHub
• URL: https://github.com/yee-yore/DorkAgent
• Owner: yee-yore
• License: mit
• Created: 2025-02-26T04:56:34.000Z (7 months ago)
• Default Branch: main
• Last Pushed: 2025-04-17T05:09:48.000Z (6 months ago)
• Last Synced: 2025-04-17T19:46:40.642Z (6 months ago)
• Topics: agent, aiagent, bugbounty, dorks, google-dorking, google-hacking, hacking, llm, osint, pentest, pentesting
• Language: Python
• Homepage:
• Size: 114 KB
• Stars: 25
• Watchers: 1
• Forks: 3
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# DorkAgent

🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.

                   

                                                                                                    

## Usage

1. Git clone

```bash

> git clone https://github.com/yee-yore/DorkAgent.git

```

2. Install packages

```bash

# python version = 3.11.9

> pip install -r requirements.txt # for macOS

> pip install -r requirements_windows.txt # for Windows

```

3. Configure API keys in the `.env` file  

- `SERPER_API_KEY` is **required**  

- You must set at least **one** LLM API key (e.g., OpenAI, Anthropic, or Gemini) depending on your preference  

- You can also integrate other LLMs: https://docs.crewai.com/concepts/llms

```bash

SERPER_API_KEY=        # Required - https://serper.dev/

OPENAI_API_KEY=        # Optional - set if using OpenAI

ANTHROPIC_API_KEY=     # Optional - set if using Anthropic

GEMINI_API_KEY=        # Optional - set if using Gemini

```

4. Run `dorkagent.py`

```bash

> python dorkagent.py

```

## Customize

1. The number of google results (`serper_dev_tool.py` inside `site-packages/crewai_tools/tools/serper_dev_tool/`)

```bash

class SerperDevTool(BaseTool):

    ...

    args_schema: Type[BaseModel] = SerperDevToolSchema

    base_url: str = "https://google.serper.dev"

    n_results: int = 10 # min: 10, max: 100

    ...

```

2. Duration of google search results (`serper_dev_tool.py`)

```bash

# https://serper.dev/playground

def _make_api_request(self, search_query: str, search_type: str) -> dict:

    ...

    payload = json.dumps({"q": search_query, "num": self.n_results, "qdr:m"}) # Past week: "qdr:w", Past month: "qdr:m"

    ...

```

3. Google dorks (`task()`)

```bash

# Reference https://github.com/TakSec/google-dorks-bug-bounty

```

4. Agents (`agents()`)

```bash

# https://docs.crewai.com/concepts/agents

```

## TODO

- Support for Telegram bot

- Customizable Google Dorks set

- Other Dorks (Github, DuckDuckGo ...)

- Task/Agent for Validation

## Update Log

- **2025-04-01**: Added hybrid LLM option (GPT & Claude); Added dork `intitle:"IIS Windows Server"`; Applied prompt engineering to tasks.py; Added default depth consideration for subdomain inputs; Added `requirements.txt` for Windows/MacOS compatibility

- **2025-04-17**: Removed tasks(old).py, the version prior to prompt engineering; Deleted Google Dork for finding “Confidential” documents (most results were merely informative); Removed Google Dork targeting login panels; Added settings to help avoid LLM provider rate limits; Integrated Gemini Flash 2.0 (free to use and currently considered the best value LLM); Merged tasks.py and agents.py into dorkagent.py for simplified maintenance