dorkatorv0.3

An interactive OSINT dork library. Set a target, copy a query, or open it in Google / DuckDuckGo / Bing.

98 dorks · 8 categories · built 2026-04-22 15:06:32
Legal notice. These queries hit public search indexes only. Run them against assets you own or are explicitly authorized to test.
Type a domain — every query and search-engine link below updates live. Saved locally for next visit.
all critical high medium low info
identities/ Identities & Contacts 8
medium Domain emails (text)
site:{target} intext:"@{target}"
Google DuckDuckGo Bing
medium Emails in documents
site:{target} (filetype:pdf OR filetype:docx OR filetype:xlsx) intext:"@{target}"
Google DuckDuckGo Bing
low Contact / team pages
site:{target} (inurl:contact OR inurl:team OR inurl:about OR inurl:staff OR inurl:equipe)
Google DuckDuckGo Bing
low Phone numbers (FR)
site:{target} (intext:"+33" OR intext:"06." OR intext:"07.")
Google DuckDuckGo Bing
medium Internal directories
site:{target} (inurl:annuaire OR inurl:directory OR inurl:employees)
Google DuckDuckGo Bing
low Whois / DNS exposure
(site:whois.com OR site:dnsdumpster.com OR site:viewdns.info) "{target}"
Google DuckDuckGo Bing
low Gravatar profiles linked to target
site:gravatar.com "{target}"
Google DuckDuckGo Bing
info Disqus comments mentioning target
site:disqus.com "{target}"
Google DuckDuckGo Bing
documents/ Exposed Documents 18
high PDFs flagged confidential
site:{target} filetype:pdf (intext:confidential OR intext:confidentiel OR intext:internal OR intext:"do not distribute" OR intext:"usage interne")
Google DuckDuckGo Bing
high Spreadsheets (XLS/XLSX/CSV)
site:{target} (filetype:xls OR filetype:xlsx OR filetype:csv)
Google DuckDuckGo Bing
medium Word documents
site:{target} (filetype:doc OR filetype:docx)
Google DuckDuckGo Bing
medium PowerPoint presentations
site:{target} (filetype:ppt OR filetype:pptx)
Google DuckDuckGo Bing
medium Text / log files
site:{target} (filetype:txt OR filetype:log)
Google DuckDuckGo Bing
critical SQL dumps
site:{target} filetype:sql
Google DuckDuckGo Bing
high Backup files
site:{target} (ext:bak OR ext:backup OR ext:old OR ext:save OR ext:swp)
Google DuckDuckGo Bing
high Compressed archives
site:{target} (ext:zip OR ext:rar OR ext:7z OR ext:tar OR ext:gz OR ext:tgz)
Google DuckDuckGo Bing
high Office macro-enabled files
site:{target} (ext:xlsm OR ext:docm OR ext:pptm)
Google DuckDuckGo Bing
medium Visio diagrams (architecture leaks)
site:{target} (ext:vsd OR ext:vsdx)
Google DuckDuckGo Bing
critical KeePass databases
site:{target} ext:kdbx
Google DuckDuckGo Bing
critical Email containers (PST/MBOX/MSG/EML)
site:{target} (ext:pst OR ext:mbox OR ext:msg OR ext:eml)
Google DuckDuckGo Bing
critical VPN / remote-access profiles
site:{target} (ext:ovpn OR ext:rdp OR ext:pcf)
Google DuckDuckGo Bing
low All PDFs (broad enumeration)
site:{target} filetype:pdf
Google DuckDuckGo Bing
low All Office files (broad enumeration)
site:{target} (filetype:doc OR filetype:docx OR filetype:xls OR filetype:xlsx OR filetype:ppt OR filetype:pptx)
Google DuckDuckGo Bing
info All images (potential EXIF metadata)
site:{target} (filetype:jpg OR filetype:jpeg OR filetype:png OR filetype:tiff)
Google DuckDuckGo Bing
critical SQL dumps containing credentials
site:{target} filetype:sql ("INSERT INTO" "password" OR "INSERT INTO" "user" OR "CREATE USER")
Google DuckDuckGo Bing
high Log files with admin/root activity
site:{target} filetype:log (intext:"root" OR intext:"sudo" OR intext:"admin login")
Google DuckDuckGo Bing
technical/ Technical Exposure 28
high Admin panels
site:{target} (inurl:admin OR inurl:administrator OR inurl:backend OR inurl:dashboard)
Google DuckDuckGo Bing
medium Login pages
site:{target} (inurl:login OR inurl:signin OR inurl:auth OR intitle:"login")
Google DuckDuckGo Bing
high Open directory listings
site:{target} intitle:"index of"
Google DuckDuckGo Bing
critical phpinfo() exposure
site:{target} ext:php intitle:phpinfo "PHP Version"
Google DuckDuckGo Bing
high Apache server-status / server-info
site:{target} (inurl:server-status OR inurl:server-info)
Google DuckDuckGo Bing
critical Version control leaks (.git/.svn/.env)
site:{target} (inurl:".git" OR inurl:".svn" OR inurl:".env")
Google DuckDuckGo Bing
medium Swagger / API docs exposed
site:{target} (inurl:swagger OR inurl:api-docs OR inurl:redoc OR inurl:graphql)
Google DuckDuckGo Bing
high Verbose error messages
site:{target} (intext:"SQL syntax" OR intext:"fatal error" OR intext:"stack trace" OR intext:"warning: include")
Google DuckDuckGo Bing
critical Config files
site:{target} (ext:htaccess OR ext:conf OR ext:config OR ext:ini OR ext:yaml OR ext:yml)
Google DuckDuckGo Bing
critical Exposed DB admin interfaces
site:{target} (inurl:phpmyadmin OR inurl:adminer OR inurl:pgadmin)
Google DuckDuckGo Bing
medium WordPress wp-admin / wp-config
site:{target} (inurl:wp-admin OR inurl:wp-config OR inurl:wp-content/uploads)
Google DuckDuckGo Bing
high Jenkins / CI dashboards
site:{target} (inurl:jenkins OR inurl:jobs/build OR intitle:"Dashboard [Jenkins]")
Google DuckDuckGo Bing
high Monitoring stacks (Grafana/Kibana/Prometheus)
site:{target} (inurl:grafana OR inurl:kibana OR inurl:prometheus OR inurl:9090 OR intitle:"Grafana")
Google DuckDuckGo Bing
high Webcam / IoT panels
site:{target} (inurl:axis-cgi OR intitle:"camera" OR intitle:"webcam" OR inurl:viewerframe)
Google DuckDuckGo Bing
medium Webmail interfaces (Roundcube/Zimbra/OWA)
site:{target} (inurl:roundcube OR inurl:webmail OR inurl:owa OR inurl:zimbra)
Google DuckDuckGo Bing
critical Open Elasticsearch / cluster endpoints
site:{target} (inurl:_cluster OR inurl:_cat OR inurl:9200)
Google DuckDuckGo Bing
critical Date of birth in documents
site:{target} (filetype:pdf OR filetype:xlsx OR filetype:docx) (intext:"date of birth" OR intext:"date de naissance" OR intext:"DOB" OR intext:"ne le" OR intext:"née le")
Google DuckDuckGo Bing
critical ID / passport numbers in documents
site:{target} (filetype:pdf OR filetype:xlsx) (intext:"passport" OR intext:"passeport" OR intext:"carte d'identite" OR intext:"national ID" OR intext:"CNI")
Google DuckDuckGo Bing
critical Social security / NIR / SSN exposure
site:{target} (filetype:pdf OR filetype:xlsx) (intext:"SSN" OR intext:"social security" OR intext:"numero de securite sociale" OR intext:"NIR")
Google DuckDuckGo Bing
critical Banking info (IBAN / RIB / SWIFT)
site:{target} (filetype:pdf OR filetype:xlsx) (intext:"IBAN" OR intext:"BIC" OR intext:"RIB" OR intext:"SWIFT")
Google DuckDuckGo Bing
high Customer records (invoices / orders / clients)
site:{target} (filetype:pdf OR filetype:xlsx) (intext:"facture" OR intext:"invoice" OR intext:"n° client" OR intext:"customer ID" OR intext:"order #")
Google DuckDuckGo Bing
critical Medical / health data exposure
site:{target} (filetype:pdf OR filetype:xlsx) (intext:"diagnostic" OR intext:"patient" OR intext:"prescription" OR intext:"ordonnance")
Google DuckDuckGo Bing
high Sequential download endpoints (IDOR-prone)
site:{target} inurl:download (inurl:"id=" OR inurl:"file=" OR inurl:"doc=")
Google DuckDuckGo Bing
high Documents served by path ID (IDOR-prone)
site:{target} (inurl:"/files/" OR inurl:"/documents/" OR inurl:"/uploads/" OR inurl:"/getfile/") filetype:pdf
Google DuckDuckGo Bing
high Object IDs in query strings
site:{target} (inurl:"customer_id=" OR inurl:"invoice_id=" OR inurl:"order_id=" OR inurl:"user_id=" OR inurl:"client_id=")
Google DuckDuckGo Bing
high FTP servers / endpoints exposed
site:{target} (inurl:ftp OR inurl:"/ftp/" OR inurl:":21")
Google DuckDuckGo Bing
medium Default webserver welcome pages (fresh/abandoned installs)
site:{target} (intitle:"Apache2 Ubuntu Default Page" OR intitle:"Welcome to nginx" OR intitle:"IIS Windows Server" OR intitle:"Test Page for the Apache HTTP Server")
Google DuckDuckGo Bing
medium PHP IDOR pattern (?id=)
site:{target} inurl:".php?id="
Google DuckDuckGo Bing
credentials/ Credentials & Secrets 12
critical Environment files
site:{target} ext:env
Google DuckDuckGo Bing
high Passwords in text
site:{target} (intext:"password" OR intext:"passwd" OR intext:"motdepasse" OR intext:"mot de passe")
Google DuckDuckGo Bing
critical API keys / tokens
site:{target} (intext:"api_key" OR intext:"api_token" OR intext:"access_token" OR intext:"bearer ")
Google DuckDuckGo Bing
critical AWS keys
site:{target} (intext:"AKIA" OR intext:"aws_secret" OR intext:"aws_access_key")
Google DuckDuckGo Bing
critical Private keys (RSA/SSH/PGP)
site:{target} (intext:"BEGIN RSA PRIVATE KEY" OR intext:"BEGIN OPENSSH PRIVATE KEY" OR intext:"BEGIN PRIVATE KEY" OR intext:"BEGIN PGP PRIVATE")
Google DuckDuckGo Bing
critical DB connection strings
site:{target} (intext:"jdbc:" OR intext:"mongodb://" OR intext:"postgres://" OR intext:"mysql://")
Google DuckDuckGo Bing
critical Slack tokens
site:{target} (intext:"xoxb-" OR intext:"xoxa-" OR intext:"xoxp-" OR intext:"xoxs-")
Google DuckDuckGo Bing
critical Stripe live keys
site:{target} intext:"sk_live_"
Google DuckDuckGo Bing
critical GitHub PAT / fine-grained tokens
site:{target} (intext:"ghp_" OR intext:"github_pat_" OR intext:"ghs_" OR intext:"gho_")
Google DuckDuckGo Bing
high JWT tokens visible in pages
site:{target} intext:"eyJhbGciOi"
Google DuckDuckGo Bing
critical Google OAuth client secrets
site:{target} (intext:"GOCSPX-" OR intext:"client_secret")
Google DuckDuckGo Bing
high Generic secret leakage patterns
site:{target} (intext:"private_token" OR intext:"refresh_token" OR intext:"auth_token" OR intext:"session_secret")
Google DuckDuckGo Bing
subdomains/ Subdomains & Assets 6
low All subdomains (excl. www)
site:*.{target} -site:www.{target}
Google DuckDuckGo Bing
medium Dev / staging / preprod
site:*.{target} (inurl:dev OR inurl:staging OR inurl:test OR inurl:preprod OR inurl:uat OR inurl:recette)
Google DuckDuckGo Bing
medium Internal-looking paths
site:{target} (inurl:internal OR inurl:intranet OR inurl:private)
Google DuckDuckGo Bing
low crt.sh certificate transparency
site:crt.sh "{target}"
Google DuckDuckGo Bing
medium Censys exposed assets
site:censys.io "{target}"
Google DuckDuckGo Bing
medium Shodan exposed assets
site:shodan.io "{target}"
Google DuckDuckGo Bing
cloud/ Cloud Storage Exposure 6
high Google Cloud Storage buckets
site:storage.googleapis.com "{target}"
Google DuckDuckGo Bing
high DigitalOcean Spaces
site:digitaloceanspaces.com "{target}"
Google DuckDuckGo Bing
high Backblaze B2 buckets
site:backblazeb2.com "{target}"
Google DuckDuckGo Bing
high Wasabi storage
site:wasabisys.com "{target}"
Google DuckDuckGo Bing
high Firebase databases / hosting
(site:firebaseio.com OR site:firebaseapp.com OR site:web.app) "{target}"
Google DuckDuckGo Bing
high Supabase exposed projects
site:supabase.co "{target}"
Google DuckDuckGo Bing
external/ External Leaks 14
high Pastebin leaks
site:pastebin.com "{target}"
Google DuckDuckGo Bing
critical GitHub - secrets
site:github.com "{target}" (password OR api_key OR token OR secret)
Google DuckDuckGo Bing
high GitLab mentions
site:gitlab.com "{target}"
Google DuckDuckGo Bing
low StackOverflow mentions
site:stackoverflow.com "{target}"
Google DuckDuckGo Bing
medium Public Trello boards
site:trello.com "{target}"
Google DuckDuckGo Bing
high S3 buckets
site:s3.amazonaws.com "{target}"
Google DuckDuckGo Bing
high Azure blob storage
site:blob.core.windows.net "{target}"
Google DuckDuckGo Bing
medium Public Google Docs
site:docs.google.com "{target}"
Google DuckDuckGo Bing
info Archive.org snapshots
site:web.archive.org "{target}"
Google DuckDuckGo Bing
high BitBucket repositories
site:bitbucket.org "{target}"
Google DuckDuckGo Bing
high GitHub gists (often leak snippets)
site:gist.github.com "{target}"
Google DuckDuckGo Bing
medium npm packages / READMEs
site:npmjs.com "{target}"
Google DuckDuckGo Bing
medium PyPI packages / READMEs
site:pypi.org "{target}"
Google DuckDuckGo Bing
medium Docker Hub images / descriptions
site:hub.docker.com "{target}"
Google DuckDuckGo Bing
personnel/ Personnel Intelligence 6
low LinkedIn profiles mentioning target
site:linkedin.com/in "{target}"
Google DuckDuckGo Bing
low CVs / resumes mentioning target
("CV" OR "resume" OR "curriculum vitae") "{target}" filetype:pdf
Google DuckDuckGo Bing
info Twitter / X mentions
(site:twitter.com OR site:x.com) "{target}"
Google DuckDuckGo Bing
low Viadeo profiles
site:viadeo.com "{target}"
Google DuckDuckGo Bing
info Mastodon / Fediverse mentions
(site:mastodon.social OR site:mastodon.online OR site:piaille.fr) "{target}"
Google DuckDuckGo Bing
info Reddit mentions
site:reddit.com "{target}"
Google DuckDuckGo Bing
No dorks match your filters.