added additional recon/domains-vulnerabilities/ghdb_* modules for bind/yahoo/ddg #103
Conversation
|
I have tested bing/yahoo/ddg. And only yahoo has the better supports of google search operators (except of |
So does that mean the other modules provide bad responses to dorks that use operators not understood by the engine? I'm not even sure this techniques is worth including anymore considering i haven't been able to update the database in several years. OffSec removed my access. I think it would be better if these modules were designed around providing your own list rather than using a built in one. I will likely remove the built in list at some point. Consider it deprecated. |
|
Actually even Yahoo dont provide good results. It seems it doesn't undrestand strict match |
Yeah, it's a problem that we encounter more and more as resources begin protecting their information. Bottom line is not everything can or should be automated. In the case of dorks, we might just have to resort to doing them manually. This isn't a stable enough module for merging at this point. |
|
It probable will have a bit false positives which can be verified manually. |
I don't disagree, but due to the false positives, I'm certain we will receive a ton of issues about it not working properly and I don't know that I want to take on that technical debt. |
These search systems don't require to solving captcha
Before submitting a pull request, make sure to complete the following:
What kind of PR is this?
Please add an 'x' in the appropriate box, and apply a label to the PR matching the type here.
Checklist For Approval
modules.ymlfilepycodestyleorblack.