Threat Hunting w/ Google Dorking [Python]
This Python script creates a **desktop GUI application** using `Tkinter` that helps you quickly generate **search engine dorks**. It supports popular engines like **Google** and **DuckDuckGo**, and even includes **dark web search engines** like **Ahmia** and **Haystak**. Users can select a dork type, input relevant parameters, generate a dork string, and open the results directly in their browser (or Tor browser for `.onion` links).
π΅οΈββοΈ Threat Intelligence Dorking Tool
π¨βπ» Coded with curiosity by
cybercur@
π What is Google Dorking?
Google Dorking (also known as Google hacking) is a technique that uses advanced search operators to find information that isnβt easily discoverable through normal queries. It leverages Googleβs indexing power to uncover hidden or sensitive data such as:
- π οΈ Misconfigured servers
- π Exposed files (e.g.
.pdf,.xls,.env) - π Login pages or admin portals
- ποΈ Directories not meant for public access
- π Vulnerable devices or software versions
These searches are made possible using operators like:
site:β search within a specific domainfiletype:β search for specific file typesintitle:β find pages with certain words in the titleinurl:β locate keywords in the URLintext:β search for specific text within page content
π§ Why is Google Dorking Important?
π 1. Security Testing
Pentesters and ethical hackers use dorking to simulate what a malicious actor might find β helping organizations identify and fix exposed assets.
π 2. Open Source Intelligence (OSINT)
Investigators and analysts use it to uncover public data across websites, social platforms, and forums.
π§ͺ 3. Vulnerability Discovery
Discovering misconfigurations, outdated software, or unprotected directories can help prevent real-world exploits.
π§° How can this script help you?
Manually writing dorks over and over is inefficient and error-prone. A tool like Threat Intelligence Dorking Tool solves that by:
β Automating the Dork Creation
- No need to memorize syntax.
- Just select the type, fill in the fields, and it builds the query for you.
π Multi-Engine Support
- Use Google, Bing, DuckDuckGo β or even dark web engines like Ahmia
βοΈ Features
- π§ Multiple dorking options:
site:example.com keywordfiletype:pdf confidentialintitle:logininurl:adminintext:passwordsite:twitter.com breach
- π Supports 20+ search engines
- π Supports dark web (.onion) search engines
- π₯οΈ Built with a simple graphical interface using Tkinter
- π€ Opens search in user's default browser (or warns if it's a
.onionsearch)
π§ Logic Breakdown
1. Initialization
- Creates a main
Tkwindow. - Sets title and size of the GUI.
2. Dropdown Menu (Dork Type Selector)
- Lets users pick from predefined dork types (e.g.
intitle:,inurl:, etc.).
3. Dynamic Input Fields
- Based on the selected dork type, the app dynamically displays relevant input fields (e.g. website, file type, search terms).
4. Search Engine Selection
- For
site:dorks, users can choose from a long list of search engines, including:- βοΈ Clear web: Google, Bing, DuckDuckGo, etc.
- π Dark web: Ahmia, Haystak, Tor66
5. Generate Dork Button
- Concatenates the userβs input into a formatted dork string.
- Displays it in a scrollable text area.
6. Open in Browser Button
- Detects selected engine and encodes the dork string into a URL.
- Opens it in the default browser.
- π If the selected engine is a Tor-based
.oniondomain, it shows a warning message to ensure the Tor browser is running.
π Use Cases
- πΌ OSINT Investigations
- π§ͺ Penetration Testing
- π Vulnerability Discovery
- π Social Media Intelligence
π Example
If the user selects:
- Dork Type:
Search within a specific site - Site:
example[.]com - Term:
login - Engine:
Google
The tool will generate: site:example[.]com login And open: hxxps[:]//www[.]google[.]com/search?q=site%3Aexample[.]com+login
yaml Copy Edit
π§° Requirements
- Python 3.x
- Tkinter (comes with most Python installs)
π§ͺ Want More?
You could easily extend this with:
- π Export to file
- π Import dork presets
- π€ Scrape and analyze results
- π Tor integration via SOCKS proxy
import tkinter as tk
from tkinter import ttk, scrolledtext, messagebox
import webbrowser
import urllib.parse
class DorkGUI:
def __init__(self, master):
self.master = master
master.title("Threat Intelligence Dorking Tool")
master.geometry("900x700")
self.create_widgets()
def create_widgets(self):
# Dork type dropdown
ttk.Label(self.master, text="Select Dork Type:").pack(pady=5)
self.dork_type = tk.StringVar()
self.dork_choices = [
"Search within a specific site",
"Search for specific file types",
"Search for pages with specific words in the title",
"Search for pages with specific words in the URL",
"Search for pages containing specific text",
"Search social media platforms"
]
self.dork_menu = ttk.Combobox(self.master, textvariable=self.dork_type, values=self.dork_choices, state="readonly", width=50)
self.dork_menu.pack(pady=5)
self.dork_menu.bind("<<ComboboxSelected>>", self.on_dork_select)
# Frame for dynamic input fields
self.input_frame = ttk.Frame(self.master)
self.input_frame.pack(pady=10)
# Text area for displaying generated dork
self.result_text = scrolledtext.ScrolledText(self.master, wrap=tk.WORD, width=80, height=10)
self.result_text.pack(pady=10)
# Generate and Open buttons
ttk.Button(self.master, text="Generate Dork", command=self.generate_dork).pack(pady=5)
ttk.Button(self.master, text="Open in Browser", command=self.open_in_browser).pack(pady=5)
def on_dork_select(self, event):
# Clear previous input fields
for widget in self.input_frame.winfo_children():
widget.destroy()
dork_type = self.dork_type.get()
# Render inputs based on selected dork type
if dork_type == "Search within a specific site":
ttk.Label(self.input_frame, text="Website:").grid(row=0, column=0, sticky=tk.W)
self.site_entry = ttk.Entry(self.input_frame, width=40)
self.site_entry.grid(row=0, column=1, padx=5)
ttk.Label(self.input_frame, text="Search term:").grid(row=1, column=0, sticky=tk.W)
self.term_entry = ttk.Entry(self.input_frame, width=40)
self.term_entry.grid(row=1, column=1, padx=5)
ttk.Label(self.input_frame, text="Search Engine:").grid(row=2, column=0, sticky=tk.W)
self.engine_var = tk.StringVar()
engines = [
"Google", "Bing", "Yahoo", "DuckDuckGo", "Baidu", "Yandex",
"Ask", "Naver", "AOL", "Ecosia", "Startpage", "Qwant",
"Swisscows", "Mojeek", "Gigablast", "MetaGer", "Oscobo",
"Lukol", "Disconnect Search", "Searx",
"Ahmia (Tor)", "Haystak (Tor)", "Tor66 (Tor)"
]
self.engine_menu = ttk.Combobox(self.input_frame, textvariable=self.engine_var, values=engines, state="readonly", width=37)
self.engine_menu.grid(row=2, column=1, padx=5)
self.engine_menu.set("Google")
elif dork_type == "Search for specific file types":
ttk.Label(self.input_frame, text="File type:").grid(row=0, column=0, sticky=tk.W)
self.filetype_entry = ttk.Entry(self.input_frame, width=40)
self.filetype_entry.grid(row=0, column=1, padx=5)
ttk.Label(self.input_frame, text="Search term:").grid(row=1, column=0, sticky=tk.W)
self.term_entry = ttk.Entry(self.input_frame, width=40)
self.term_entry.grid(row=1, column=1, padx=5)
elif dork_type in [
"Search for pages with specific words in the title",
"Search for pages with specific words in the URL",
"Search for pages containing specific text"]:
ttk.Label(self.input_frame, text="Search term:").grid(row=0, column=0, sticky=tk.W)
self.term_entry = ttk.Entry(self.input_frame, width=40)
self.term_entry.grid(row=0, column=1, padx=5)
elif dork_type == "Search social media platforms":
ttk.Label(self.input_frame, text="Platform:").grid(row=0, column=0, sticky=tk.W)
self.platform_var = tk.StringVar()
platforms = ["Twitter", "Facebook", "LinkedIn", "Instagram", "Reddit"]
self.platform_menu = ttk.Combobox(self.input_frame, textvariable=self.platform_var, values=platforms, state="readonly", width=37)
self.platform_menu.grid(row=0, column=1, padx=5)
self.platform_menu.set("Twitter")
ttk.Label(self.input_frame, text="Search term:").grid(row=1, column=0, sticky=tk.W)
self.social_term_entry = ttk.Entry(self.input_frame, width=40)
self.social_term_entry.grid(row=1, column=1, padx=5)
def generate_dork(self):
# Build dork string based on input
dork_type = self.dork_type.get()
dork = ""
if dork_type == "Search within a specific site":
site = self.site_entry.get()
term = self.term_entry.get()
engine = self.engine_var.get()
dork = f"site:{site} {term}"
self.result_text.delete("1.0", tk.END)
self.result_text.insert(tk.END, f"Your {engine} dork is:\n{dork}")
return
elif dork_type == "Search for specific file types":
filetype = self.filetype_entry.get()
term = self.term_entry.get()
dork = f"filetype:{filetype} {term}"
elif dork_type == "Search for pages with specific words in the title":
term = self.term_entry.get()
dork = f"intitle:{term}"
elif dork_type == "Search for pages with specific words in the URL":
term = self.term_entry.get()
dork = f"inurl:{term}"
elif dork_type == "Search for pages containing specific text":
term = self.term_entry.get()
dork = f"intext:{term}"
elif dork_type == "Search social media platforms":
platform = self.platform_var.get()
term = self.social_term_entry.get()
dork = f"site:{platform.lower()}.com {term}"
self.result_text.delete("1.0", tk.END)
self.result_text.insert(tk.END, f"Your dork is:\n{dork}")
def open_in_browser(self):
# Get final dork string from result box
dork = self.result_text.get("1.0", tk.END).strip().split("\n")[-1]
engine = self.engine_var.get() if hasattr(self, 'engine_var') else "Google"
# If engine is .onion, warn the user
if "(Tor)" in engine:
warning = (
"You're trying to use a .onion search engine.\n"
"Please make sure the Tor Browser is installed and running.\n"
"Would you like to proceed?"
)
if not messagebox.askyesno("Tor Required", warning):
return
# Define search URLs
search_urls = {
"Google": "https://www.google.com/search?q={}",
"Bing": "https://www.bing.com/search?q={}",
"Yahoo": "https://search.yahoo.com/search?p={}",
"DuckDuckGo": "https://duckduckgo.com/?q={}",
"Baidu": "https://www.baidu.com/s?wd={}",
"Yandex": "https://yandex.com/search/?text={}",
"Ask": "https://www.ask.com/web?q={}",
"Naver": "https://search.naver.com/search.naver?query={}",
"AOL": "https://search.aol.com/aol/search?q={}",
"Ecosia": "https://www.ecosia.org/search?q={}",
"Startpage": "https://www.startpage.com/do/search?q={}",
"Qwant": "https://www.qwant.com/?q={}",
"Swisscows": "https://swisscows.com/web?query={}",
"Mojeek": "https://www.mojeek.com/search?q={}",
"Gigablast": "https://www.gigablast.com/search?q={}",
"MetaGer": "https://metager.org/meta/meta.ger3?eingabe={}",
"Oscobo": "https://www.oscobo.com/search.php?q={}",
"Lukol": "https://www.lukol.com/s.php?q={}",
"Disconnect Search": "https://search.disconnect.me/searchTerms/search?query={}",
"Searx": "https://searx.me/?q={}",
"Ahmia (Tor)": "http://msydqstlz2kzerdg.onion/search/?q={}",
"Haystak (Tor)": "http://haystakvxad7wbk5n.onion/search?q={}",
"Tor66 (Tor)": "http://tor66sezptuu2nta.onion/search.php?q={}"
}
# Open in browser (Tor or normal)
search_url = search_urls.get(engine, search_urls["Google"]).format(urllib.parse.quote(dork))
webbrowser.open(search_url)
# Launch GUI
def main():
root = tk.Tk()
app = DorkGUI(root)
root.mainloop()
if __name__ == "__main__":
main()