WIP: dorking :)

Author: clouedoc

.gitmodules

@@ -4,3 +4,12 @@
 [submodule "sqlmap"]
 	path = sqlmap
 	url = https://github.com/sqlmapproject/sqlmap
+[submodule "dorks"]
+	path = dorks
+	url = https://github.com/USSCltd/dorks
+[submodule "googler"]
+	path = googler
+	url = https://github.com/jarun/googler
+[submodule "ddgr"]
+	path = ddgr
+	url = https://github.com/jarun/ddgr

ddgr

@@ -5,6 +5,7 @@
 # And also chmod things up
 pip install -r DorkNet/requirements.txt
 pip install -r WhatWaf/requirements.txt
+pip install -r requirements.txt
 
 echo ""
 echo "----------------------------"
@@ -18,13 +19,3 @@ echo "running chmod +x on *.py ..."
 chmod +x DorkNet/dorknet.py
 chmod +x WhatWaf/WhatWaf.py
 chmod +x sqlmap/sqlmap.py
-
-# installation of geckodriver
-
-echo "installing geckodriver..."
-# since we are pretty dumb as a shell programmer, just bulkly launch install commands with sudo privileges
-echo "Don't mind if there are errors, that's ok. You should get two of them"
-echo "If you're on macOS make sure that brew is in your PATH"
-sudo pacman -S geckodriver
-sudo apt-get install geckodriver
-brew install geckodriver

googler

@@ -1,13 +1,25 @@
 #!/usr/bin/env python3
+import argparse
+
 from src import log
+from src import findDorks
+
+def search_dork(dork):
+    return findDorks.dorkLines(([dork]))
 
-def DorkNet(dork):
-    
+def define_arguments():
+    parser = argparse.ArgumentParser(
+            usage="python autosqli.py [-d DORK] [-f DORKFILE]"
+            )
+    f = parser.add_argument_group("Files", "parameters relative to file manipulation")
 
+    f.add_argument("-f", "--dork-file", metavar="dorkfile.txt", dest=dorkfile, help="if you already dorked, set a file where your dorks are contained ( one dork per line )")
 
 def main():
-    log.debug("Test to get some urls out of DorkNet")
-    log.info(DorkNet("chaton mignon"))
+    log.info("Welcome into AutoSQLi !")
+    log.info("Enter a dork:")
+    dork = input("dork: ")
+    url_to_test = search_dork(dork)
 
 if __name__ == "__main__":
     main()

install.sh

@@ -0,0 +1 @@
+argparse

main.py

@@ -0,0 +1,105 @@
+#!/usr/bin/env python3
+
+# From jesuiscamille, and a part of the AutoSQLi project
+# Not the best piece of code I ever made, but do the job pretty well
+# I should do some adjustement on the ddgr and googler path thing
+# you should see a dorkoutput.txt file sitting on your $(pwd) after running this :)
+import subprocess
+import json
+import time
+
+# here is the path thing
+ddgr_path = "ddgr/ddgr"
+googler_path = "googler/googler"
+
+def main():
+    filename = input("Enter your dork file name: ")
+    print("Reading " + filename + " ...")
+    # filename = "testdorks.txt"
+    dorkFromFile(filename)
+
+def dorkFromFile(filename):
+    f = open(filename, 'r')
+    lines = f.readlines() # read all the lines of the file into 'lines'
+    f.close()
+    dorkLines(lines)
+
+def dorkLines(lines):
+    # remove annoying trailing characters
+    google_ban = False
+    duck_ban = False
+
+    index = 0
+    for i in lines:
+        lines[index] = lines[index].rstrip()
+        index += 1
+
+    results = []
+    # dorking !
+    for dork in lines:
+        if google_ban == True and duck_ban == True:
+            break
+
+        print(" |__ dork: " + dork)
+        # dorking with google and writing to file
+        if not google_ban:
+            print("   |__ googly dorking...")
+            result = googleSearch(dork)
+            try:
+                result_clean = json.loads(result)
+            except:
+                google_ban = True
+                print("Google banned us, but don't worry, it's temporary")
+            for x in result_clean:
+                url = x['url']
+                writeToFile(url)
+                results.append(url)
+
+        if not duck_ban:
+            print("   |__ ducky dorking...")
+            result = duckSearch(dork)
+            try:
+                result_clean = json.loads(result)
+            except:
+                duck_ban = True
+                print("DuckduckGo banned us, but don't worry, it's temporary")
+
+            for x in result_clean:
+                url = x['url']
+                writeToFile(url)
+                results.append(url)
+
+        # waiting 15 seconds to not get caught
+        print(" -- waiting 15 seconds --")
+        time.sleep(15)
+
+    print("check out ./dorkoutput.txt :3")
+    print("Thx 4 d0rk1ng ! Have fun")
+    return results
+
+
+def execute(command):
+    """ command shall be an array """
+    """ returns the stdout of command """
+    result = subprocess.run(command, stdout=subprocess.PIPE)
+    return result.stdout.decode('utf-8')
+
+def googleSearch(dork):
+    """ dork shall be a string which contains... a dork. """
+    """ returns the google json response for the specified dork """
+    return execute([googler_path, "-n", "100", dork, "--noprompt", "--json"])
+
+def duckSearch(dork):
+    """ dork shall be a string which contains... a dork. """
+    """ returns the duckduckgo json response for the specified dork """
+    return execute([ddgr_path, dork, "--unsafe", "--json", "--np", "--num", "25"])
+
+def writeToFile(text):
+    """ write text to dorkoutput.txt """
+    output = open("dorkoutput.txt", 'a')
+    output.write(text)
+    output.write('\n')
+    output.close()
+
+if __name__ == "__main__":
+    main()