Raging the web since 2010.

DorkFind is a tool that searches Google for vulnerable pages based on a set of criteria you provide.

Example usage: To find all forums running vBulletin v3.5.4, enter “forum.php” in the first text box, “Powered by vBulletin Version 3.5.4″ in the second text box, choose where to write the URLs to and click ‘Begin’. The program will save all URLs to the file, one per line.

Options: You can fake HTTP_X_FORWARDED_FOR and HTTP_CLIENT_IP by checking the appropriate boxes. You can also add random jargon to the query (that doesn’t affect the result) in order to make recognition of bad queries harder.

Known limitation: If you try using this tool too often, Google will blacklist your IP address for automated queries. This will result in a message box showing in the program, telling you about a 503 error. You can sometimes resolve this by searching for similar terms in your browser and completing the CAPTCHA check, but other times you just have to wait an hour and retry.

Source: Since this application contains some bits of code I’ve written for personal use only, it will remain closed source for the foreseeable future. Don’t bother trying to reverse engineer any of the source, I used a decent obfuscator.

Disclaimer: This is for educational purposes only. Its use is your responsibility, and as such you agree not to hold the maker of the software liable for any loss, damage or other consequences of the use of this software. If for some insane reason this code blows your PC up, it’s your fault for running it and not mine for writing it.

Enjoy!

Download