Hello people ! I would like to get some ideas for my edition of the dork generator !
screenshot:
Do you have any ideas for my edition of the gorker ?
Leave your ideas here please
Edited by NotThiplol, 23 March 2018 - 06:39 PM.
inurl:[random number] works good combined with dorks that return too many serps to scrape
The way I generate my best SQLi dorks is I'll scan just with filetype:php and a huge keyword list, then harvest a few million URLs, then do a heuristic scan on them, then with the list of hits I use the Node.js url module to parse out all the filenames and query string vars to generate a list of combinations of those. I can get a 10% heuristic hit ratio off that list, but if you do it with a list that hasn't been scanned you can still get a list that will give you a lot of urls.
Another thing is I use clauses like
(site:com OR site:net OR site:org) (filetype:php OR filetype:asp OR filetype:cfm) [SOME RANDOM KEYWORD HERE]
add intext,allintext,allinurl,inurl,define etc... and generating very HQ dorks
I think its already using many of them but will look into it
if I want 1000 dorks but i have not enough parameter your generator make me anywau 1000 dorks with duplicates.... make a button to deleted them!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
I use it
I'm already planning to make it remove de dupes but when waiting you can use textmechanic.com/text-tools/basic-text-tools/remove-duplicate-lines/
Or just use more keywords so you get less dupes
inurl:[random number] works good combined with dorks that return too many serps to scrape
The way I generate my best SQLi dorks is I'll scan just with filetype:php and a huge keyword list, then harvest a few million URLs, then do a heuristic scan on them, then with the list of hits I use the Node.js url module to parse out all the filenames and query string vars to generate a list of combinations of those. I can get a 10% heuristic hit ratio off that list, but if you do it with a list that hasn't been scanned you can still get a list that will give you a lot of urls.
Another thing is I use clauses like
(site:com OR site:net OR site:org) (filetype:php OR filetype:asp OR filetype:cfm) [SOME RANDOM KEYWORD HERE]
will take a look at it
Users browsing this thread: