DorkPlus Documentation
  • 👋Welcome to DorkPlus
  • Fundamentals
    • 💡Getting set up
    • 📺Video demonstration
    • 💾The modules
    • 📝Task settings
    • 🎯Dumper presets
      • ✏️Presets example
    • 🔧URL Utilites
  • Guides
    • 🌀Dorks to Lines
    • 📕Beginner Guide
  • Pages
    • 🔍Scraper/Parser
    • ⚙️Task management
    • 💉Dumper & DB Explorer
      • ⚙️Settings
    • 🔐Dehasher
      • ⚡Single dehash
      • 🔍Hash identifier
    • 🧠Task history
    • 📊Threads & Timeout
    • 🛠️Global settings
    • 🌐The Client
    • 📚FAQ
  • HOW TO
    • 👑How to: Upgrade
    • 🔗How to: Webhooks
    • 🚨How to: Telegram Alerts
    • ❗How to: Fix errors
  • Knowledge
Powered by GitBook
On this page
  • How to make your Dorks
  • Time to use your Dorks
  • Check for vulnerabilities
  • Exploit vulnerabilities
  • Dehash results
  1. Guides

Beginner Guide

This guide is basically explaining how to use each of our modules to start from zero and reach the final goal: a combo.

PreviousDorks to LinesNextScraper/Parser

Last updated 10 months ago

How to make your Dorks

The goal: First you need to identify your goal, do you plan to get lines around the Gaming theme, Streaming space or something else. Once you've got that in your mind let's get base keywords.

The base keywords: Now it's time to write a bunch of HQ keywords by yourself that are matching your goal, you can use ChatGPT to help you or just follow the good old days by typing on Amazon, Google, YouTube and grab some keywords.

Using the Keyword Scraper: When you've got about 50-100 keywords it's time to grab a LOT of keywords using our Built-in Keyword Scraper, once you've got them move to the next part, the Page Types. 

// Sample file for Gaming theme
GTA V Stunt
GTA V Compilation
GTA V Money Glitch
...

A page type is basically the page extension, most of the time we'll go for "php" or "asp".

// Sample file
php
asp
aspx

A parameter is something after the domain and page type, eg. https://store.com/product here we want to make parameters that match the "product".

// Sample file
product
id
q
search
collection
category

We've made an Utility called "Dork Generator" which can be found on the top right menu next to the "New task" button.

You now can choose the Keywords, Page types and Parameters files, then the amount to generate and the saving location (select cloud if you want to use them right away).

Time to use your Dorks

Make sure you checked Getting set up before creating a new task.

Start a new task and select the module "Scraper/Parser" choose the threads amount (50-100 for low specs machines) and the timeout. Then load your lists Dorks and Proxies (optional).

Once the task has been created you can move to the settings and choose the search engines of your choice.

Then hit start and wait till you see the results.

Check for vulnerabilities

Now that you've scraped a bunch of links it's time to find vulnerabilities.

Go back to "Tasks" or press "New task" top right and choose "Vulnerability scanner", select your settings and load your lists (Links & Proxies).

Once the task has been created move to the settings and choose the vulnerability you're looking for, the common one will be SQL. If you want to select "Full Scan" know that it'll slow down the things up but you might get results you wouldn't get without it.

When the task has finished you can save the results and move to the Dumper.

Great you've got a bunch of links that are vulnerable, now we'll exploit them and see how it goes.

Once you're on the "Dumper" page move to the settings, there is a LOT of settings I know but all of them are useful in some ways. If you want to learn more about all those settings move to Dumper settings if not then just leave them like this and go back to the dumper tab.

Now select your list (make sure to upload it first), your proxies and the machine you want to run the task then hit the start button and wait till it's done.

When the task has finished you can scroll down you'll see all vulnerable links (if you've got any), then hit the [...] button and from there you can either dump it right away (make sure to check on the settings for "Auto-dump preset" and set it up accordingly to what you're looking for, should be Email & Password as default value), or you can explore the database and manually go through it to find what you want, learn more about the DB Explorer on the next tab.

The DB Explorer will allow you to move between the database freely and make sure you're targeting the right one. You can check tables, columns and rows by selecting them.

Database: Most of the time there will be only one database that's selected by default

Tables, Columns and Rows: The tables will group all columns, to explain in simple terms, visualize an Excel or Google Sheet file, a Table will be a page of the file, a column will be the name you give to categorize the rows you'll add and a row will be the actual data inside that column, check the example below to understand.

Now you can move between all those tables, columns and rows by selecting them.

Tables: Select one at a time then scroll down to see if there are columns

Columns: Select as much as you want, it'll return the rows under the columns, so if you select the columns "Email" and "Password" you'll dump only those two and get as results emails and passwords.

I'm a table (eg. users)

I'm a column (eg. email)
I'm an other column (eg. password)

I'm a row (eg. johndoe@gmail.com)

I'm a row (eg. ilovejanedoe)

That's the last step, you've got your combo but it's hashed, well lucky you we've built a dehasher that's working pretty smoothly.

Move to "Dehasher" and load your combo, make sure to upload it first, then select the hash pattern (Item:Hash or Hash:Item), for example this line is the Item:Hash pattern.

(eg. email@gmail.com:781e5e245d69b566979b86e28d23f2c7)

You can now hit start and wait till it's finished, then save your results and that's it, you've got your combo.

Click it then click "Open" next to "Dork Generator"

Exploit vulnerabilities

Dehash results

📕
⚒️
📄
🔍
💉
🔐