XMRBazaar (beta)

Description

What Does the Script Do?
The script is a search tool for Linux that helps you automate Google Dorking—a technique used to find specific types of information on the internet using search engines like Google
It requires beautifulsoup4 to function, so make sure beautifulsoup4 is installed on your system.
( sudo apt update
sudo apt install python3-pip
pip install beautifulsoup4 )

It generates special search queries (called "dorks") that can find things like:
Exposed documents (PDFs, Word files)
Login pages (admin panels, CMS logins)
Open cameras (security cameras accessible online)
Database files (SQL dumps, backups)
Config files (with passwords or sensitive data)
API keys (exposed credentials in text files)
Other sensitive information

Can I find all this info without your script ?
Yes , of course you can , but the tool makes it faster and easier to generate these search queries by providing a menu-based interface where you can:

Choose a search engine Google (works best ), Bing, DuckDuckGo
Select a dork category (e.g., "Find exposed admin panels").
Add extra keywords to refine the search (optional).
Generate multiple search pages (so you don’t have to click "Next Page" manually).
Automatically open search results in your browser (so you don’t have to copy-paste).

Key Features
User-friendly menu: You select options using numbers (no need to type complicated commands).
Colored interface: Different colors help you read results easily.
Multiple search engines: You can use Google, Bing, or DuckDuckGo.
Pagination: It can generate multiple search pages automatically.
Previews: It can fetch a preview (title and snippet) from the first result.
Proxy support: You can route traffic through a proxy for anonymity.
Saves results: Optionally, you can save results to a file (text, CSV, or JSON).

Will I get amazing results with all queries ?
No .
The script relies on search engines (Google, Bing, DuckDuckGo) to fetch results, so if the search engine blocks automated queries, no results will appear. Some queries may also return no data if the targeted information is not publicly available or if the dork syntax is outdated or incorrect.
You still need to understand how Google Dorks work to use it effectively .

How It Works (Step-by-Step)
It asks you to choose a search engine.
It shows a list of dork categories (like "Find exposed databases").
You select a category and optionally add extra keywords.
It generates search URLs and displays them.
You can preview search results directly from the script.
You can save the results for later.

What This Script Does NOT Do
It does NOT hack anything. It only automates search engine queries.
It does NOT break passwords or bypass logins. It just finds public info.
It does NOT collect data from hacked databases. It only uses Google/Bing.

Why Would Someone Use This?
Cybersecurity professionals → To check if their company’s sensitive data is exposed online.
Researchers → To find public databases, academic papers, or company records.
Penetration testers → To audit websites and servers for misconfiguration.
Curious users → To learn how search engines can reveal hidden information.

Contact me for the app link .
Session : 056808fc92b3602299a68febd271b223cf2898795e05924da33ff5f33b47470242

Tags: dorks, cybersecurity, pentesting

Published on: February 22, 2025

Views: 2