IvanGlinkin/Fast-Google-Dorks-Scan

Stars
1,128
Rank 41,247 (Top 0.9 %)
Language
Shell
Created over 4 years ago
Updated about 1 year ago

IvanGlinkin/Fast-Google-Dorks-Scan

IvanGlinkin

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

Fast Google Dorks Scan

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

Usage example:

chmod +x FGDS.sh
./FGDS.sh megacorp.one

or

bash ./FGDS.sh megacorp.one

This will work beatifully on Kali but an ultimately universal way is through Docker. Just run

docker build -t FOO .

and then run it with your argument for the URL such as this:

docker run -it --rm FOO mysite.com

An original article:

https://www.ivanglinkin.com/fast-google-dorks-scan/

Video example:

Screenshots:

CCTV

Close-Circuit Telegram Vision revolutionizes location tracking with its open-source design and Telegram API integration. Offering precise tracking within 50-100 meters, users can monitor others in real-time for logistics or safety, redefining how we navigate our surroundings

AutoSUID

AutoSUID application is the Open-Source project, the main idea of which is to automate harvesting the SUID executable files and to find a way for further escalating the privileges.

Domain_checker

Domain_checker application is the trial/demo version for the new EASM (External Attack Surface Management) system called HydrAttack (hydrattack.com), the main idea of which is, based only on the domain name, find almost all of the subdomains and their top 100 open ports

Host-enumeration

Have you ever faced with the lack of possibility of using NMap? For instance if you have reverse shell as an unprivileged user and there are no useful tools preinstalled? This is a small script which will help you to scan a network for live hosts and top 24 ports if you have nothing.

Port-enumeration

Have you ever faced with the lack of possibility of using NMap? For instance if you have reverse shell as an unprivileged user and there are no useful tools preinstalled? This is a small script which will help you to scan a network if you have nothing.

shellDAVpass

shellDAVpass application is the Open-Source project, the main idea of which is to bypass the defender and AntiVirus detections to conduct a non interactive reverse shell to execute the Windows commands

CVE-2006-3392

This small script helps to avoid using MetaSploit (msfconsole) during the Enterprise pentests and OSCP-like exams. Grep included function will help you to get only the important information.

Useful_bashrc

When I'm doing my job I'm trying to set my working place as efficient and useful as it's possible. Bash terminal is my main everyday program I'm using that's why I decided to improve it a little. Time displaying, inter- and intranet ip-addresses, working directory, listing files due changing dirs, splitting the outputs and other stuff which can make your work easier and faster.

Dics-for-Russian-AD

The first thing every penetration tester performs getting into a controller domain subnet is to brute force discovery of users which is called a Kerbrute attack. There are plenty of articles about that type of exploitation but in every source an author uses a preset dictionary for his purposes which is no so perfectly related to the real life. I tried to fill this gap by creating a universal working dictionary for Kerbrute attack in the Russian AD.

media_support

The folder with support media to reposirories