No products in the cart.
Katana-ds (ds for dork_scanner) is a simple python tool that automates Google Hacking/Dorking and supports TOR. It becomes a more powerful in combination with GHDB
Installation:
Use the package manager pip to install requirements.
cd Katana
python3 pip install -r requirments
python3 katana-ds.py
Usage:
cd Katana
python3 katana-ds.py -h (for help)
Options :
-g :for google mode
-s :for scada mode
-t :for tor mode
-p :for proxy mode
-b :for bitly mode
Google Mode:
Google mode gives you 2 inputs the "Dork" and the "TLD" (Top Level Domain) that gives you the ability to search in specific countries.
e.g : com for Usa / co.ma for Morocoo / be for Belgium
For more please see the included TLDs.txt file.
Scada Mode:
Scada mode search in google for online PLCs this actually uses multiple requests so your IP will be blocked by Google so changing the TLD will solve the problem and the script provides inputs for that.
Note: this is just an example actually it shows a lot of results:
Example of Allen-Bradley PLC dashboard found using Scada Mode:
Tor Mode:
Tor mode gives you one input which is the search query, but before you should have tor proxy running on port 9050 this time there is no IP blocking the script search in 3 tor search engines Phobos, Tor66 and Tordex (more will be added).
Note: this is just an example actually it shows a lot of results:
What if:
- The script print 'Error too many requests': change the TLD
- Changing the TLD doesn't work: change your IP by disconnecting and reconnecting again
- Tor mode show 'Failed to establish a new connection': make sure that tor proxy up and running on port 9050
Proxy Mode:
Proxy mode finds proxy servers and print them. It will print 25 different Proxy server each time:
Bitly Mode: (In Development)
Find interesting shorted links that sometimes lead to interesting website pages. The scripts print currently 10 bitly links with their responses (script still in development if you got connection error or so many 404,403 just run it again).
Please feel free to open ISSUES or contact me on twitter
Author
- Hakin9 is a monthly magazine dedicated to hacking and cybersecurity. In every edition, we try to focus on different approaches to show various techniques - defensive and offensive. This knowledge will help you understand how most popular attacks are performed and how to protect your data from them. Our tutorials, case studies and online courses will prepare you for the upcoming, potential threats in the cyber security world. We collaborate with many individuals and universities and public institutions, but also with companies such as Xento Systems, CATO Networks, EY, CIPHER Intelligence LAB, redBorder, TSG, and others.
Latest Articles
Blog2022.12.13What are the Common Security Weaknesses of Cloud Based Networks?
Blog2022.10.12Vulnerability management with Wazuh open source XDR
Blog2022.08.29Deception Technologies: Improving Incident Detection and Response by Alex Vakulov
Blog2022.08.25Exploring the Heightened Importance of Cybersecurity in Mobile App Development by Jeff Kalwerisky
Subscribe
0 Comments
