This should give you a general overview of what the tool is all about and how to go about using it. This is a the result of a project of mine to come up with better solution for gathering mass links for research and I tweaked it to align with my hacking needs. I also decided I was going to do everything in bash to make things difficult on myself, well cause thats how I am :p
BinGoo is a version of an all-in-one dorking tool written in pure bash. It leverages Google AND Bing main search pages to scrape a large amount of links based on provided search terms. You can choose to search a single dork at a time or you can make lists with one dork per line and perform mass scans. Once your done with that, or maybe you have links gathered from other means, you can move to the Analyzing tools to test for common signs of vulnerabilities. The results are neatly sorted into their own respective files basedon findings. If you want to take further you can run them through the SQL or LFI tools which are some semi working homebrewed creations I made in bash or you can use the SQLMAP and FIMAP wrapper tools I wrote which work much better and with greater accuracy and results. I have also included a few neat features to make life easy, such as Geo dorking based on domain type or domain country codes or shared hosting checker which uses preconfigured Bing search and a dork list to find possible vulns on other sites on same server. I also included a simple admin page finder which simply works based on a provided list and server response codes for confirmation of existance. Together I think it all works as a nice little package!
– LYNX & CURL required for core functionality
– LYNX/CURL Install: apt-get install lynx; apt-get install curl
– NMAP, FIMAP & SQLMAP required for plugins and testing functionality (digger, fimap & sqlmap wrappers). Install with SVN from where you want to store them:
– FIMAP install: svn checkout http://fimap.googlecode.com/svn/trunk/ fimap – cd fimap/; chmod +x fimap.py; ./fimap.py –help – SQLMAP install: svn checkout https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlmap – cd sqlmap/; chmod +x sqlmap.py; ./sqlmap.py –help
– NMAP install: svn co https://svn.nmap.org/nmap nmap – cd nmap/; ./configure; make; sudo make install; nmap –help NOTE: The FIMAP instance needs to be the SVN version as it contains features used which are not included in the standard version (or that which is included with BackTrack by default, –bmin, –bmax, -D + options….) so delete your old copy or just install it side by side, whatever floats your boat… You can enter all path info in the BinGoo file on lines 14-21 in the config section to adjust as needed.