Dork – The Fastest Scanner Written In Go

Share Your Love

Hello friends, In this post discuss the fastest scanner written in go. There are also various search engines supported by go-dork, including Google, Shodan, Bing, Duck, Yahoo and Ask.

111008561 f22f9c80 83c3 11eb 8500 fb63456a4614

Install:

  • Download a prebuilt binary from releases page, unpack and run! or
  • If you have Go 1.15+ compiler installed and configured:
> GO111MODULE=on go get -v -u dw1.io/go-dork

Usage:

Basic Usage:

It’s fairly simple, go-dork can be run with:

> go-dork -q "inurl:'...'"

Flags:

> go-dork -h

This will display help for the tool. Here are all the switches it supports.

FlagDescription
-q/–querySearch query (required)
-e/–engineProvide search engine (default: Google)
(options: Google, Shodan, Bing, Duck, Yahoo, Ask)
-p/–pageSpecify the number of pages (default: 1)
-H/–headerPass custom header to search engine
-x/–proxyUse proxy to surfing
-s/–silentSilent mode, prints only results in output

Querying:

> go-dork -q "inurl:..."

Queries can also be input with stdin

> cat dorks.txt | go-dork -p 5

Defining engine:

Search engine can be changed from the available engines: Google, Shodan, Bing, Duck, Yahoo, Ask. However, if the -e flag is not defined, it will use the Google search engine by default.

> go-dork -e bing -q ".php?id="

This will do a search by the Bing engine.

Pagination:

By default, go-dork scrapes the first page, you can customize using the -p flag.

> go-dork -q "intext:'jira'" -p 5

It will search sequentially from pages 1 to 5.

Adding custom headers:

Maybe you want to use a search filter on the Shodan engine, you can use custom headers to add cookies or other header parts.

> go-dork -q "org:'Target' http.favicon.hash:116323821" \
  --engine shodan -H "Cookie: ..." -H "User-Agent: ..."

Using proxy:

Using a proxy, this can also be useful if Google or other engines meet Captcha.

> go-dork -q "intitle:'BigIP'" -p 2 -x http://127.0.0.1:8989

Chained with other tools:

If you want to chain the go-dork results with another tool, use the -s flag.

> cat dorks.txt | go-dork | pwntools
> go-dork -q "inurl:'/secure' intext:'jira' site:org" -s | nuclei -t workflows/jira-exploitaiton-workflow.yaml

Supporting Materials:

Help & Bugs:

If you are still confused or found a bug, please open the issue. All bug reports are appreciated, some features have not been tested yet due to lack of free time.

TODOs:

  •  Fixes Yahoo regexes
  •  Fixes Google regexes if using custom User-Agent
  •  Stopping if there’s no results & page flag was set
  •  DuckDuckGo next page

License:

MIT. See LICENSE for more details.

Source: GitHub This article is based on the GitHub repository if you found anything misspelt or error please contact us.

Share Your Love
Avatar photo
Lingaraj Senapati

Hey There! I am Lingaraj Senapati, the Founder of lingarajtechhub.com My skills are Freelance, Web Developer & Designer, Corporate Trainer, Digital Marketer & Youtuber.

Articles: 429

Newsletter Updates

Enter your email address below to subscribe to our newsletter