uDork - Google Hacking Tool

Author: M3n0sD0n4ld

Twitter: @David_Uton

News

11/06/2022

I have some bad news to give, last week Facebook withdrew the service by which the tool made the requests, unfortunately the tool no longer works.

Sorry, thank you very much to all the users who have been using it, reporting bugs and contributing with new ideas.

Note: I am working on another tool, Say hello to GooFuzz!

23/02/2022

• Adapting uDork to the programming changes from Facebook to Meta.
• Removed the Perl library "libany-uri-escape-perl".
• Speed has been improved, gaining 2 seconds between requests.

Description:

uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.

uDork does NOT make attacks against any server, it only uses predefined dorks and/or official lists from exploit-db.com (Google Hacking Database: https://www.exploit-db.com/google-hacking-database).

Download and install:

$ git clone https://github.com/m3n0sd0n4ld/uDork
$ cd uDork
$ chmod +x uDork.sh
- Open the file "uDork.sh" and write inside this line:

$ ./uDork.sh -h

Steps to obtain the cookie and configure the cookie

1. Login to facebook.com
2. Now we will access www.messenger.com (It is the Facebook messaging app) and click on the "Continue as..." button.
3. Once we're in, all we have to do is get the two cookies we need to make uDork work.

3.1 - With firefox:

-- Right mouse button and click on "Inspect".

-- Click on the "Network" tab and select any line that is in the domain "www.messenger.com".
-- Now click on the "Cookies" tab, copy and paste the cookies "c_user" and "xs" into the "uDork.sh" file.

Thus: cookies="c_user=XXXXXX; xs=XXXXXX;"

3.2 - With Google Chrome

-- Right mouse button and click on "Inspect".

-- Click on the tab "Application", in the left column, look for the section "Cookies", copy and paste the cookies "c_user" and "xs" with their value to the file "uDork.sh".

Thus: cookies="c_user=XXXXXX; xs=XXXXXX;"

Docker version:

Acknowledgement

Twitter: @interh4ck GitHub:(https://github.com/interhack86)

$ git clone https://github.com/m3n0sd0n4ld/uDork
$ cd uDork
$ docker build -t udork .
$ docker run --rm -it -e c_user=XXXXXXXXX -e xs=XXXXXXXXX udork -h

Use:

Menu

Example of searching pdf files

Example of a search for a list of default extensions.

Example of searching routes with the word "password"

Dorks listing

Example of use Dorks Massive

Example of use All Dorks Massive (Recommend for pentesting/audit)

Disclaimer

This tool requires session cookies from a Facebook account to work. I am NOT responsible for any problems with your account and/or computer.