I haven’t really done any research into what’s available out there prior to creating PastebinDorks, but now I’m coming across more and more projects with similar ideas in mind. I thought I’d list them here (in no particular order):
I’m sure there’s more out there and I will post links as I find them.
One of my little projects I’ve been working on lately is PastebinDorks. The idea is simple: scan pastebin for potentially interesting information. More specifically, password dumps and releases of current hacking groups such as Anonymous. Writing the tool wasn’t hard (it’s just a few hundred lines of code right now); the actual challenge was and still is in differentiating valid data and junk such as debug logs. So far I’ve been working with just identifying false positives, but have not done anything about finding false negatives. That bit would require quite a bit of effort since I would have to go through each paste to verify it (and there are a lot of pastes).
What are the benefits of such a tool? From a security analyst/researcher perspective, it is important to stay current with user trends to provide valuable, up to date service. A dictionary attack is not very useful if it is not fine tuned. The bad guys already have these real world passwords since they are the ones who did the hacking in the first place. They are a step a head and I feel we need to catch up. Another reason is that one might want to monitor for leaks of their personal information, compromises of websites he is a member of, leaks from one’s organization, etc.
Anyway, just wanted to make this quick note. The tool is fairly stable right now (as in it’s been able to handle errors gracefully), but I’m still getting too many false positives. Also, it seems I’m missing some of the posts and need to play around with timing requests, although pastebin.com gets upset if I make them too frequently.