July 9, 2026
AtDork 1.3.9.6? 180,000 Dorks free open source
AtDork 1.3.9.6 — Google Dorking Otomatis untuk Bug Hunter & Security Researcher Capek Google Dorking manual satu-satu? AtDork hadir…
By Dzone
5 min read
🚀 AtDork 1.3.9.6: The Ultimate OSINT Dorking Tool with 180K+ Built-in Dorks
Revolutionizing Google Dorking for Security Researchers
📌 Introduction
In the ever-evolving landscape of cybersecurity, information gathering remains the cornerstone of effective security testing. AtDork 1.3.9.6 emerges as a game-changing OSINT (Open Source Intelligence) tool that's setting new standards in the dorking community.
With its latest release, AtDork now ships with over 180,000 pre-built, categorized dork queries - making it the most comprehensive dorking toolkit available today.
🔍 What is AtDork?
AtDork is a professional-grade OSINT tool that performs advanced search queries (Google Dorks) across multiple search engines simultaneously. It's specifically engineered for:
· 🔐 Security Researchers · 🎯 Penetration Testers · 🏆 Bug Bounty Hunters · 🛡️ Red Team Operations
"AtDork transforms hours of manual dorking into seconds of automated intelligence gathering."
⚡ Key Features
- 🚀 Blazing Fast Multi-Threading
· Configurable concurrency (1-10 threads) · Batch processing capabilities · Optimized for large-scale operations
- 🔍 Multi-Engine Support
Engine Status Specialty Google ✅ Full Advanced operators DuckDuckGo ✅ Full Privacy-first results Bing ✅ Full Microsoft ecosystem Startpage ✅ Full Google results, privacy-focused Yandex ✅ Full Russian/EU results Yahoo ✅ Full Legacy support
- 🛡️ Military-Grade Anonymity
· Automatic proxy rotation · Tor integration (--tor) · IP leak detection (--ip-guard) · Strict mode (--strict) - fails immediately if IP is exposed · Proxy credential redaction - automatic protection against leaks
- 🧹 Intelligent Result Filtering
· Automatic spam detection · URL validation · Deduplication engine · Vulnerability signature detection for: · WordPress · Joomla · SQL Injection · And more...
- 📊 Professional Output Formats
Format Best For JSON API integration, data processing CSV Excel/Spreadsheet analysis (v1.3.8+ injection protected) TXT Human-readable reports SQLite Historical analysis, resume operations
🗄️ The 180K+ Dork Database - What's Inside?
This is what makes AtDork 1.3.9.6 truly special. The bundled database is organized into 8 major categories:
📁 Database Structure
database/
├── bing-and-ddg/ # 20K+ Bing & DuckDuckGo specific dorks
├── cms-dorks/ # 35K+ WordPress, Joomla, Magento, Laravel dorks
├── lfi-dorks/ # 15K+ Local File Inclusion patterns
├── rfi-dorks/ # 12K+ Remote File Inclusion patterns
├── bug-bounty-dorks/ # 30K+ Bug bounty program discovery
├── common-dorks/ # 40K+ SQLi, XSS, IDOR, and common vulns
├── censys-dorks/ # 18K+ Censys network asset scanning
└── github-dorks/ # 10K+ GitHub dorks (audit own repos only!)database/
├── bing-and-ddg/ # 20K+ Bing & DuckDuckGo specific dorks
├── cms-dorks/ # 35K+ WordPress, Joomla, Magento, Laravel dorks
├── lfi-dorks/ # 15K+ Local File Inclusion patterns
├── rfi-dorks/ # 12K+ Remote File Inclusion patterns
├── bug-bounty-dorks/ # 30K+ Bug bounty program discovery
├── common-dorks/ # 40K+ SQLi, XSS, IDOR, and common vulns
├── censys-dorks/ # 18K+ Censys network asset scanning
└── github-dorks/ # 10K+ GitHub dorks (audit own repos only!)🔥 Hot Categories
🎯 Bug Bounty Dorks
Discover active bug bounty programs with dorks like:
· "vulnerability disclosure" "reward" · "security.txt" "bug bounty" · "responsible disclosure" "program"
🏗️ CMS Fingerprinting
Identify and exploit CMS vulnerabilities:
# WordPress vulnerability detection
atdork --filter-vuln wordpress -q "inurl:wp-content site:target.com"# WordPress vulnerability detection
atdork --filter-vuln wordpress -q "inurl:wp-content site:target.com"🔐 GitHub Dorks
Find exposed credentials and sensitive data:
# Example (only for your own repositories!)
atdork --database-dork github-dorks --target your-repo# Example (only for your own repositories!)
atdork --database-dork github-dorks --target your-repo🚀 Quick Start Guide
Installation
# Install from PyPI
```text
(recommended)
pip install atdork
# Verify installation
atdork --version
# Output: atdork 1.3.9.6# Install from PyPI
```text
(recommended)
pip install atdork
# Verify installation
atdork --version
# Output: atdork 1.3.9.6
Your First Search
```bash
# Find PDFs on government websites
atdork -q "site:gov filetype:pdf" -r 10
# Save results as JSON
atdork -q "intitle:index.of mp3" -r 20 --format json -o results.json
Your First Search
```bash
# Find PDFs on government websites
atdork -q "site:gov filetype:pdf" -r 10
# Save results as JSON
atdork -q "intitle:index.of mp3" -r 20 --format json -o results.jsonBatch Processing
Create dorks.txt:
site:edu filetype:xls
inurl:admin login
intitle:"index of" "backup"site:edu filetype:xls
inurl:admin login
intitle:"index of" "backup"Run them all:
atdork --batch-file dorks.txt -r 30 --format csv -o results.csvatdork --batch-file dorks.txt -r 30 --format csv -o results.csvUse Pre-Built Templates
# List all templates
atdork --list-templates
# Run SQL injection template
atdork --template sqli --target example.com -r 30
# Combine multiple templates
atdork --template sqli,wordpress,exposed_config -q "site:gov" -r 25# List all templates
atdork --list-templates
# Run SQL injection template
atdork --template sqli --target example.com -r 30
# Combine multiple templates
atdork --template sqli,wordpress,exposed_config -q "site:gov" -r 25🛠️ Advanced Features
- Intelligent Resilience System
The --resilient flag activates a sophisticated protection system:
atdork --batch-file dorks.txt --resilient --adaptive-delayatdork --batch-file dorks.txt --resilient --adaptive-delayWhat it does:
· 🔄 Circuit Breaker: Prevents hammering dead backends · ⏱️ Adaptive Delay: Adjusts request timing based on response · 📉 Exponential Backoff: Intelligently retries failed requests · 🎯 Error Classification: Identifies and responds to specific errors · 🚦 Rate Limit Handling: Automatically switches engines on 429 errors
- Proxy Management
# Single proxy
atdork -q "target" --proxy "http://user:pass@host:8080"
# Multiple proxies with rotation
atdork -q "target" --proxy "http://p1:8080,socks5://p2:1080"
# From file with cooldown management
atdork -q "target" --proxy-file proxies.txt --proxy-cooldown 120 --max-failures 3# Single proxy
atdork -q "target" --proxy "http://user:pass@host:8080"
# Multiple proxies with rotation
atdork -q "target" --proxy "http://p1:8080,socks5://p2:1080"
# From file with cooldown management
atdork -q "target" --proxy-file proxies.txt --proxy-cooldown 120 --max-failures 3- Post-Processing Hooks
Pipe results directly to other tools:
# Run custom commands on each URL
atdork -q "inurl:admin" -r 10 --exec "curl -I {} | grep Server"
# Automatic WPScan integration
atdork -q "inurl:wp-content" -r 30 --filter-vuln wordpress \
--exec-on-vuln "wpscan --url {} --enumerate p"# Run custom commands on each URL
atdork -q "inurl:admin" -r 10 --exec "curl -I {} | grep Server"
# Automatic WPScan integration
atdork -q "inurl:wp-content" -r 30 --filter-vuln wordpress \
--exec-on-vuln "wpscan --url {} --enumerate p"- Notifications System
Get batch summaries via webhooks:
# Discord
atdork --batch-file dorks.txt -r 20 \
--notify "discord:https://discord.com/api/webhooks/YOUR_ID/YOUR_TOKEN"
# Slack
atdork --batch-file dorks.txt -r 20 \
--notify "slack:https://hooks.slack.com/services/YOUR/WEBHOOK/URL"
# Telegram
atdork --batch-file dorks.txt -r 20 \
--notify "telegram:123456789:ABCDefGH/987654321"# Discord
atdork --batch-file dorks.txt -r 20 \
--notify "discord:https://discord.com/api/webhooks/YOUR_ID/YOUR_TOKEN"
# Slack
atdork --batch-file dorks.txt -r 20 \
--notify "slack:https://hooks.slack.com/services/YOUR/WEBHOOK/URL"
# Telegram
atdork --batch-file dorks.txt -r 20 \
--notify "telegram:123456789:ABCDefGH/987654321"- Caching System
Avoid redundant requests:
# Enable caching (24-hour TTL by default)
atdork -q "site:gov filetype:pdf" -r 20 --cache
# Offline mode (use cache only)
atdork -q "site:gov filetype:pdf" -r 20 --cache-only
# Clear all cached data
atdork --clear-cache# Enable caching (24-hour TTL by default)
atdork -q "site:gov filetype:pdf" -r 20 --cache
# Offline mode (use cache only)
atdork -q "site:gov filetype:pdf" -r 20 --cache-only
# Clear all cached data
atdork --clear-cache🎯 Real-World Use Cases
- Bug Bounty Reconnaissance
atdork --template sqli,xss,lfi --target target.com \
--proxy-file proxies.txt --strict --resilient --ip-guard \
--format json -o recon.json
atdork --template sqli,xss,lfi --target target.com \
--proxy-file proxies.txt --strict --resilient --ip-guard \
--format json -o recon.json- Admin Panel Discovery
atdork -q 'intitle:"admin panel" inurl:login' -r 30 --backend google --region uk-en
atdork -q 'intitle:"admin panel" inurl:login' -r 30 --backend google --region uk-en- WordPress Vulnerability Scanning
atdork -q "inurl:wp-content site:example.com" -r 40 \
--filter-vuln wordpress \
--exec-on-vuln "wpscan --url {} --enumerate p" \
--exec-parallel 2
atdork -q "inurl:wp-content site:example.com" -r 40 \
--filter-vuln wordpress \
--exec-on-vuln "wpscan --url {} --enumerate p" \
--exec-parallel 2- Automated Weekly Monitoring
# Add to crontab
0 6 * * 1 cd /path/to/atdork && atdork --batch-file weekly_dorks.txt \
--format csv --output-dir /reports/$(date +\%Y-\%W)/ \
--notify "slack:https://hooks.slack.com/services/YOUR/WEBHOOK/URL"# Add to crontab
0 6 * * 1 cd /path/to/atdork && atdork --batch-file weekly_dorks.txt \
--format csv --output-dir /reports/$(date +\%Y-\%W)/ \
--notify "slack:https://hooks.slack.com/services/YOUR/WEBHOOK/URL"📊 Performance Metrics
According to the latest code quality analysis:
Metric Score Status Cyclomatic Complexity 5.67 avg ✅ Good Maintainability Index 63.9 ✅ Good Test Coverage 31.3% ⚠️ Fair Pylint Score 8.75/10 ✅ Good
🔐 Important Legal & Ethical Disclaimer
⚠️ WARNING: AtDork is intended for LEGAL, AUTHORIZED security testing only.
🚫 Prohibited Uses:
· Unauthorized access to systems or data · Information harvesting in violation of laws · Any activity infringing on privacy or intellectual property rights
✅ Legitimate Use Cases:
· Penetration testing with written authorization · Bug bounty programs (authorized by the target) · Auditing your own applications and infrastructure · Security research in controlled environments
📜 Legal Reference:
The documentation explicitly references Indonesia's UU ITE law as an example of relevant legislation.
🛠️ Troubleshooting Common Issues
Problem Solution Rate limited (429) Add --delay 3,
use --proxy-file, or enable --adaptive-delay No results Try different --backend (startpage, yandex) or --region Proxy fails Check format:
scheme://user:pass@host:port Batch stuck Reduce --concurrency, add --timeout 15, enable --resilient Installation error Use pip install -e . for development mode IP leak with --strict Enable --ip-guard; use SOCKS5h proxies All backends exhausted Enable --resilient for backend fallback chain
CSV formula injection Update to v1.3.8+ (fixed)
Proxy credentials in logs Update to v1.3.8+ (now redacted)
📦 Installation Options
From PyPI (Recommended)
pip install atdork
From Source
git clone https://github.com/amnottdevv/atdork.git
cd atdork
pip install .
pip install atdork
From Source
git clone https://github.com/amnottdevv/atdork.git
cd atdork
pip install .
Development Mode
pip install -e .
pip install -e .
🔗 Resources & Support
· GitHub Repository: Github · PyPI Page: https://pypi.org/project/atdork · Documentation: https://amnottdevv.github.io/AtDork
🏆 Conclusion
AtDork 1.3.9.6 represents a significant leap forward in OSINT dorking capabilities. With its
180K+ pre-built dorks, intelligent resilience system, military-grade anonymity features, and
professional output formats, it's an indispensable tool for modern security professionals.
The combination of multi-engine support, automatic vulnerability detection, and powerful post-processing hooks makes AtDork the Swiss Army knife of
information gathering.
✅ Key Takeaways:
· ✅ 180K+ pre-built dorks ready to use
· ✅ 6+ search engines simultaneously
· ✅ anonymity with Tor and proxy rotation
· ✅ Intelligent resilience against rate limiting
· ✅ Professional output formats
· ✅ Legal and ethical by design
✍️ Final Thoughts
"In the world of cybersecurity, intelligence is the ultimate weapon. AtDork 1.3.9.6 gives you that weapon with unprecedented power and precision."
Whether you're a seasoned penetration tester, a bug bounty hunter, or a security researcher, AtDork 1.3.9.6 will dramatically accelerate your reconnaissance
workflow while maintaining the highest standards of operational security.
Remember: Great power comes with great responsibility. Always ensure you have explicit authorization before scanning any target.
📌 Tags
#OSINT #GoogleDorks #CyberSecurity #BugBounty #Pentesting #AtDork #InfoSec #SecurityResearch #Reconnaissance #Dorking
Last Updated: July 2026 | Version:
1.3.9.6