codingo/dorky

Stars
217
Rank 176,775 (Top 4 %)
Language
Go
License
GNU General Publi...
Created almost 5 years ago
Updated 7 months ago

codingo/dorky

codingo

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon

Dorky

Dorky is a command-line tool that searches GitHub and GitLab for matches in organization names, repository names, and usernames based on a list of input words. This tool can be helpful in identifying potential targets for security assessments, finding interesting projects, and discovering new organizations and users on GitHub and GitLab.

Example

echo "codingo\ncodingo dot com" | dorky -o -r -u -c

This will search for organization names, repository names, and usernames on both GitHub and GitLab based on the cleaned input words:

codingo
codingodotcom
codingo-dot-com

Installation

Clone the repository:

git clone https://github.com/codingo/dorky.git

Set your GitHub and/or GitLab access tokens as environment variables:

export GITHUB_ACCESS_TOKEN=your-github-access-token
export GITLAB_ACCESS_TOKEN=your-gitlab-access-token

Pull the dependencies:

go get

Build the Dorky tool:

go build -o dorky

Docker Instructions

Requirements

Docker
GITHUB_ACCESS_TOKEN and GITLAB_ACCESS_TOKEN environment variables

Build the Docker image:
```
docker build -t dorky .
```
Run the Docker container:
```
docker run --rm -it -e GITHUB_ACCESS_TOKEN=your-github-token -e GITLAB_ACCESS_TOKEN=your-gitlab-token dorky
```
Replace your-github-token and your-gitlab-token with your GitHub and GitLab access tokens, respectively.

Usage

Pipe a list of words to the Dorky tool and use the appropriate flags to specify the search categories and platforms:

cat wordlist.txt | ./dorky -uro -gh

Available flags:

-o: Search for organization names (or groups in GitLab)
-r: Search for repository names (or projects in GitLab)
-u: Search for username matches
-max: Set the maximum number of search results per category (default: 10)
-c: Clean input URLs, turning them into words before performing searches
-gh: Search only GitHub
-gl: Search only GitLab
-s: Simple output style for piping to another tool
-v: Enable verbose mode for more detailed output

By default, the tool searches both GitHub and GitLab based on the provided access tokens. If both tokens are set, both platforms will be searched. If only one token is set, only that platform will be searched.

Dependencies

google/go-github/v38
xanzy/go-gitlab
golang.org/x/oauth2
golang.org/x/time/rate

NoSQLMap

Automated NoSQL database enumeration and web application exploitation tool.

Reconnoitre

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Interlace

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

DNSCewl

A DNS Bruteforcing Wordlist Generator

BibWord

Microsoft Word and Bibliography Styles extender.

bbr

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

crithit

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Minesweeper

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Retrieve-Windows-Wifi-Passwords

Retreives the SSID names and passwords in cleartext for each Wifi network stored on the computer running this powershell script and output to JSON.

microsubs

A collection of code for interacting with API sources directly to improve your understanding of those services.

dooked

DNS and Target HTTP History Local Storage and Search

Ransomware-Json-Dataset

Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.

fastsub

A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.

SharePoint-Security

A Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.

simple

A collection of one off hacks and simple scripts

cracknet

A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.

Bugcrowd-Talks

Slide Decks and Supporting Content of talks given for Bugcrowd

guides

A companion repo to accompany detailed guides and YouTube content to allow users to follow along

succinct

A tool to create a text summary of a provided list of websites

codingo

DNSCewl-go

A DNS Bruteforcing Wordlist Generator

RaiderOfTheLostBrowsers

Command line utility to extract passwords from the major browsers (Chrome, Firefox, Edge). Useful in demonstrating to users the importance of using proper password managers instead of saving credentials in browser based accounts which synchronize settings locally.

security-through-obscurity

A reversing challenge made for CrikeyCon 2018

blog

Repository housing codingo-com hugo project

Google-Phonelib-SQL-CLR

A SQL CLR implementation of GooglePhoneLib allowing it to be used as a Microsoft SQL Function.

CTFs

Code and writeups for a variety of CTF challenges. Links to writeups included where available.

coffee

A repository for snippets of code that make my life easier.

Simple-Substitution

A CTF challenge for CrikeyCon 2018

2ndOrder

Chrome extension to inspect and find domains that don't resolve or have expired

blog-live

codingo.github.io

pyreal

Python scraper for realestate

test2

dooks-air-conditioning

A CTF web challenge built for CrikeyCon 2018

Hash-Checker

A Powershell script to check a hash against a file script