Dora - Find Exposed API Keys Based On RegEx And Get Exploitation Methods For Some Of Keys That Are Found

Features

• Blazing fast as we are using ripgrep in backend
• Exploit/PoC steps for many of the API key, allowing to write a good report for bug bounty hunting
• Unlike many other API key finders, dora also shows the path to the file and the line with context for easier analysis
• Can easily be implemented into scripts. See Example Use Cases

Installation

Make sure to install ripgrep

directory to sherlock $ cd dora # install dora $ python3 setup.py install --user"> …

api api keys bugbounty bugcrowd dora ethical hacking exploitation exploits exposed hackerone infosec keys python regex