Dork Fear
#!/bin/bash
figlet -f slant -c "Start Hacking" | lolcat && figlet -f digital -c "Hack to Learn" | lolcat && figlet -f mini -c "Dork Fear" | lolcat
# Set color codes for user prompts (optional, for styling)
GREENBOLD="\e[1;32m"
NC="\e[0m" # No Color
# Ask the user for the website URL or domain
echo -e "${GREENBOLD}Enter the website URL or domain (without protocol, e.g., example.com): ${NC}"
read website_input
# Normalize the input: Add "https://" if the input is just a domain without protocol
if [[ ! $website_input =~ ^https?:// ]]; then
website_url="https://$website_input"
website_without_protocol="$website_input" # No protocol for checking subdomains
else
website_url="$website_input"
website_without_protocol="${website_input#https://}" # Remove https://
website_without_protocol="${website_without_protocol#http://}" # Remove http://
fi
# Define lists of extensions, keywords, and parameters
file_extensions=("xlsx" "xls" "csv" "doc" "docx" "pdf" "txt" "odt" "odf" "ppt" "pptx")
keywords=("confidential" "PRIVATE ASSET" "COMPANY SENSITIVE" "SENSITIVE" "STRICTLY CONFIDENTIAL" "HIGHLY CONFIDENTIAL" "ONLY FOR" "Not for Public Release" "internal use only" "do not distribute" "PRIVATE AND CONFIDENTIAL")
datasite=("drive.google.com" "onedrive.live.com" "docs.google.com" "groups.google.com" "googleapis.com" "dropbox.com/s" "box.com/s" "dev.azure.com" "sharepoint.com" "blob.core.windows.net" "digitaloceanspaces.com" "firebaseio.com" "jfrog.io" "s3.amazonaws.com")
intextkeywords=("choose file" "choose files" "No file chosen" "Submit Content")
inurlkeywords=("uploadform")
web_extensions=("php" "html" "xhtml" "htm" "asp" "aspx" "jsp" "jspx" "jsf" "do" "action")
parameters=("=https" "%2F" "redir=" "redirect=" "return_to=" "redirect_url=" "redirect_uri=" "redirect_to=" "url=" ".=https")
shodan_extensions=("php" "java" "ASP.NET" "perl" "CFML" "Adobe ColdFusion" "Swagger UI")
paths=("phpinfo()" "Swagger UI" "admin" "dashboard" "signin" "login" "panel" "Check Point" "Ivanti Connect" "HugeGraph")
# Output search queries
for ext in "${file_extensions[@]}"; do
echo "site:.$website_without_protocol ext:$ext"
done
echo ""
for ext in "${file_extensions[@]}"; do
echo "site:.$website_without_protocol ext:$ext name @gmail.com phone"
done
echo ""
for data in "${datasite[@]}"; do
echo "site:.$data .$website_without_protocol"
done
echo ""
for words in "${keywords[@]}"; do
for ext in "${file_extensions[@]}"; do
echo "site:.$website_without_protocol intext:$words ext:$ext"
done
done
echo ""
for textkeywords in "${intextkeywords[@]}"; do
echo "site:.$website_without_protocol intext:$textkeywords"
done
echo ""
for urlkeywords in "${inurlkeywords[@]}"; do
echo "site:.$website_without_protocol inurl:$urlkeywords"
done
echo ""
for ext in "${web_extensions[@]}"; do
for urlkeywords in "${inurlkeywords[@]}"; do
echo "site:.$website_without_protocol inurl:$urlkeywords filetype:$ext"
done
done
echo ""
for param in "${parameters[@]}"; do
echo "site:.$website_without_protocol inurl:\"$param\""
done
echo ""
for ext in "${web_extensions[@]}"; do
echo "site:.$website_without_protocol ext:$ext"
done
echo ""
for ext in "${web_extensions[@]}"; do
echo "site:.$website_without_protocol ext:$ext inurl:& | inurl:? | inurl:="
done
echo ""
for ext in "${shodan_extensions[@]}"; do
echo "hostname:.$website_without_protocol http.component:$ext"
done
echo ""
for path in "${paths[@]}"; do
echo "hostname:.$website_without_protocol http.title:\"$path\""
done
Last updated