feat(08-04): add 10 FOFA + 10 GitLab + 5 Bing dorks

- 10 FOFA queries using title=/body=/port=/cert= syntax (8 infrastructure
  + 2 frontier: Azure OpenAI cert, OpenAI proxy api_key leak)
- 10 GitLab code search dorks across frontier/specialized/infrastructure/
  emerging categories (OpenAI, Anthropic, Google AI, Groq, Cohere, HF,
  OpenRouter, Perplexity, DeepSeek, Pinecone)
- 5 Bing dorks using site:/filetype:/intitle:/inbody: operators
  (3 frontier + 1 specialized + 1 infrastructure)
- Brings grand total across all 8 sources to 150 dorks, satisfying DORK-02
- Dual-located under pkg/dorks/definitions/ and dorks/

dorks/bing/all.yaml

@@ -0,0 +1,39 @@
+- id: bing-openai-pastebin
+  name: "OpenAI project keys on Pastebin (Bing)"
+  source: bing
+  category: frontier
+  query: 'site:pastebin.com "sk-proj-"'
+  description: "Finds OpenAI project keys pasted on pastebin.com via Bing site: search."
+  tags: [openai, pastebin, bing, frontier, tier1]
+
+- id: bing-anthropic-pastebin
+  name: "Anthropic keys on Pastebin (Bing)"
+  source: bing
+  category: frontier
+  query: 'site:pastebin.com "sk-ant-api03-"'
+  description: "Finds Anthropic API keys pasted on pastebin.com via Bing site: search."
+  tags: [anthropic, pastebin, bing, frontier, tier1]
+
+- id: bing-ollama-exposed
+  name: "Exposed Ollama via Bing"
+  source: bing
+  category: infrastructure
+  query: 'intitle:"Ollama" inbody:"/api/tags"'
+  description: "Finds exposed Ollama servers indexed by Bing via title + body operators."
+  tags: [ollama, bing, infrastructure]
+
+- id: bing-openai-env
+  name: "OPENAI_API_KEY in .env (Bing)"
+  source: bing
+  category: frontier
+  query: 'filetype:env "OPENAI_API_KEY=sk-proj-"'
+  description: "Finds .env files indexed by Bing containing OpenAI project keys."
+  tags: [openai, env, bing, frontier]
+
+- id: bing-hf-pastebin
+  name: "Hugging Face tokens on Pastebin (Bing)"
+  source: bing
+  category: specialized
+  query: 'site:pastebin.com "hf_"'
+  description: "Finds Hugging Face tokens pasted on pastebin.com via Bing site: search."
+  tags: [huggingface, pastebin, bing, specialized]

dorks/fofa/all.yaml

@@ -0,0 +1,79 @@
+- id: fofa-ollama
+  name: "Ollama on :11434 (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'port="11434" && body="Ollama"'
+  description: "Finds exposed Ollama servers via FOFA body match on their default port."
+  tags: [ollama, fofa, infrastructure, tier1]
+
+- id: fofa-vllm
+  name: "vLLM title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="vLLM"'
+  description: "Finds vLLM servers by HTML title via FOFA."
+  tags: [vllm, fofa, infrastructure]
+
+- id: fofa-localai
+  name: "LocalAI title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LocalAI"'
+  description: "Finds LocalAI self-hosted OpenAI-compatible servers via FOFA."
+  tags: [localai, fofa, infrastructure]
+
+- id: fofa-openwebui
+  name: "Open WebUI title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="Open WebUI"'
+  description: "Finds exposed Open WebUI dashboards via FOFA."
+  tags: [openwebui, fofa, infrastructure]
+
+- id: fofa-litellm
+  name: "LiteLLM :4000 (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LiteLLM" && port="4000"'
+  description: "Finds LiteLLM proxies on their default admin port via FOFA."
+  tags: [litellm, fofa, infrastructure]
+
+- id: fofa-openai-azure
+  name: "Azure OpenAI cert (FOFA)"
+  source: fofa
+  category: frontier
+  query: 'cert="openai.azure.com"'
+  description: "Finds hosts presenting certificates referencing openai.azure.com via FOFA."
+  tags: [openai, azure, fofa, frontier, tls]
+
+- id: fofa-triton
+  name: "NVIDIA Triton models (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'body="NVIDIA Triton" && body="/v2/models"'
+  description: "Finds NVIDIA Triton inference servers exposing their v2 model catalog."
+  tags: [triton, nvidia, fofa, infrastructure]
+
+- id: fofa-langserve
+  name: "LangServe title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LangServe"'
+  description: "Finds LangServe (LangChain) API servers via FOFA."
+  tags: [langserve, langchain, fofa, infrastructure]
+
+- id: fofa-tgi-hf
+  name: "Hugging Face TGI (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'body="text-generation-inference"'
+  description: "Finds Hugging Face text-generation-inference (TGI) servers via FOFA."
+  tags: [tgi, huggingface, fofa, infrastructure]
+
+- id: fofa-openai-proxy
+  name: "OpenAI-compatible proxy leaking key (FOFA)"
+  source: fofa
+  category: frontier
+  query: 'body="/v1/chat/completions" && body="api_key"'
+  description: "Finds OpenAI-compatible proxies whose response body mentions an api_key field."
+  tags: [openai, proxy, fofa, frontier]

dorks/gitlab/all.yaml

@@ -0,0 +1,79 @@
+- id: gitlab-openai-envfile
+  name: "OpenAI project key in .env (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'sk-proj- extension:env'
+  description: "Finds OpenAI project keys committed to .env files in GitLab public repos."
+  tags: [openai, gitlab, env, frontier, tier1]
+
+- id: gitlab-anthropic-envfile
+  name: "Anthropic key in .env (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'sk-ant-api03- extension:env'
+  description: "Finds Anthropic API keys committed to .env files in GitLab code."
+  tags: [anthropic, gitlab, env, frontier, tier1]
+
+- id: gitlab-google-ai-json
+  name: "Google Generative Language key in JSON (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'AIzaSy extension:json "generativelanguage"'
+  description: "Finds Google Generative AI keys in JSON configs referencing generativelanguage."
+  tags: [google, gemini, gitlab, json, frontier]
+
+- id: gitlab-groq-envfile
+  name: "Groq API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'gsk_ extension:env'
+  description: "Finds Groq API keys committed to .env files in GitLab."
+  tags: [groq, gitlab, env, specialized]
+
+- id: gitlab-cohere-envfile
+  name: "Cohere API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'COHERE_API_KEY extension:env'
+  description: "Finds Cohere API keys referenced in .env files on GitLab."
+  tags: [cohere, gitlab, env, specialized]
+
+- id: gitlab-hf-pyfile
+  name: "Hugging Face token in .py (GitLab)"
+  source: gitlab
+  category: infrastructure
+  query: 'hf_ extension:py'
+  description: "Finds Hugging Face tokens hardcoded in Python source files on GitLab."
+  tags: [huggingface, gitlab, python, infrastructure]
+
+- id: gitlab-openrouter-env
+  name: "OpenRouter key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'sk-or-v1- extension:env'
+  description: "Finds OpenRouter API keys in .env files on GitLab."
+  tags: [openrouter, gitlab, env, emerging]
+
+- id: gitlab-perplexity-env
+  name: "Perplexity key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'pplx- extension:env'
+  description: "Finds Perplexity API keys committed to .env files on GitLab."
+  tags: [perplexity, gitlab, env, emerging]
+
+- id: gitlab-deepseek-env
+  name: "DeepSeek API key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'DEEPSEEK_API_KEY extension:env'
+  description: "Finds DeepSeek API keys referenced in .env files on GitLab."
+  tags: [deepseek, gitlab, env, emerging]
+
+- id: gitlab-pinecone-env
+  name: "Pinecone API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'PINECONE_API_KEY extension:env'
+  description: "Finds Pinecone vector DB API keys referenced in .env files on GitLab."
+  tags: [pinecone, vectordb, gitlab, env, specialized]

pkg/dorks/definitions/bing/all.yaml

@@ -0,0 +1,39 @@
+- id: bing-openai-pastebin
+  name: "OpenAI project keys on Pastebin (Bing)"
+  source: bing
+  category: frontier
+  query: 'site:pastebin.com "sk-proj-"'
+  description: "Finds OpenAI project keys pasted on pastebin.com via Bing site: search."
+  tags: [openai, pastebin, bing, frontier, tier1]
+
+- id: bing-anthropic-pastebin
+  name: "Anthropic keys on Pastebin (Bing)"
+  source: bing
+  category: frontier
+  query: 'site:pastebin.com "sk-ant-api03-"'
+  description: "Finds Anthropic API keys pasted on pastebin.com via Bing site: search."
+  tags: [anthropic, pastebin, bing, frontier, tier1]
+
+- id: bing-ollama-exposed
+  name: "Exposed Ollama via Bing"
+  source: bing
+  category: infrastructure
+  query: 'intitle:"Ollama" inbody:"/api/tags"'
+  description: "Finds exposed Ollama servers indexed by Bing via title + body operators."
+  tags: [ollama, bing, infrastructure]
+
+- id: bing-openai-env
+  name: "OPENAI_API_KEY in .env (Bing)"
+  source: bing
+  category: frontier
+  query: 'filetype:env "OPENAI_API_KEY=sk-proj-"'
+  description: "Finds .env files indexed by Bing containing OpenAI project keys."
+  tags: [openai, env, bing, frontier]
+
+- id: bing-hf-pastebin
+  name: "Hugging Face tokens on Pastebin (Bing)"
+  source: bing
+  category: specialized
+  query: 'site:pastebin.com "hf_"'
+  description: "Finds Hugging Face tokens pasted on pastebin.com via Bing site: search."
+  tags: [huggingface, pastebin, bing, specialized]

pkg/dorks/definitions/fofa/all.yaml

@@ -0,0 +1,79 @@
+- id: fofa-ollama
+  name: "Ollama on :11434 (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'port="11434" && body="Ollama"'
+  description: "Finds exposed Ollama servers via FOFA body match on their default port."
+  tags: [ollama, fofa, infrastructure, tier1]
+
+- id: fofa-vllm
+  name: "vLLM title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="vLLM"'
+  description: "Finds vLLM servers by HTML title via FOFA."
+  tags: [vllm, fofa, infrastructure]
+
+- id: fofa-localai
+  name: "LocalAI title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LocalAI"'
+  description: "Finds LocalAI self-hosted OpenAI-compatible servers via FOFA."
+  tags: [localai, fofa, infrastructure]
+
+- id: fofa-openwebui
+  name: "Open WebUI title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="Open WebUI"'
+  description: "Finds exposed Open WebUI dashboards via FOFA."
+  tags: [openwebui, fofa, infrastructure]
+
+- id: fofa-litellm
+  name: "LiteLLM :4000 (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LiteLLM" && port="4000"'
+  description: "Finds LiteLLM proxies on their default admin port via FOFA."
+  tags: [litellm, fofa, infrastructure]
+
+- id: fofa-openai-azure
+  name: "Azure OpenAI cert (FOFA)"
+  source: fofa
+  category: frontier
+  query: 'cert="openai.azure.com"'
+  description: "Finds hosts presenting certificates referencing openai.azure.com via FOFA."
+  tags: [openai, azure, fofa, frontier, tls]
+
+- id: fofa-triton
+  name: "NVIDIA Triton models (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'body="NVIDIA Triton" && body="/v2/models"'
+  description: "Finds NVIDIA Triton inference servers exposing their v2 model catalog."
+  tags: [triton, nvidia, fofa, infrastructure]
+
+- id: fofa-langserve
+  name: "LangServe title (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'title="LangServe"'
+  description: "Finds LangServe (LangChain) API servers via FOFA."
+  tags: [langserve, langchain, fofa, infrastructure]
+
+- id: fofa-tgi-hf
+  name: "Hugging Face TGI (FOFA)"
+  source: fofa
+  category: infrastructure
+  query: 'body="text-generation-inference"'
+  description: "Finds Hugging Face text-generation-inference (TGI) servers via FOFA."
+  tags: [tgi, huggingface, fofa, infrastructure]
+
+- id: fofa-openai-proxy
+  name: "OpenAI-compatible proxy leaking key (FOFA)"
+  source: fofa
+  category: frontier
+  query: 'body="/v1/chat/completions" && body="api_key"'
+  description: "Finds OpenAI-compatible proxies whose response body mentions an api_key field."
+  tags: [openai, proxy, fofa, frontier]

pkg/dorks/definitions/gitlab/all.yaml

@@ -0,0 +1,79 @@
+- id: gitlab-openai-envfile
+  name: "OpenAI project key in .env (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'sk-proj- extension:env'
+  description: "Finds OpenAI project keys committed to .env files in GitLab public repos."
+  tags: [openai, gitlab, env, frontier, tier1]
+
+- id: gitlab-anthropic-envfile
+  name: "Anthropic key in .env (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'sk-ant-api03- extension:env'
+  description: "Finds Anthropic API keys committed to .env files in GitLab code."
+  tags: [anthropic, gitlab, env, frontier, tier1]
+
+- id: gitlab-google-ai-json
+  name: "Google Generative Language key in JSON (GitLab)"
+  source: gitlab
+  category: frontier
+  query: 'AIzaSy extension:json "generativelanguage"'
+  description: "Finds Google Generative AI keys in JSON configs referencing generativelanguage."
+  tags: [google, gemini, gitlab, json, frontier]
+
+- id: gitlab-groq-envfile
+  name: "Groq API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'gsk_ extension:env'
+  description: "Finds Groq API keys committed to .env files in GitLab."
+  tags: [groq, gitlab, env, specialized]
+
+- id: gitlab-cohere-envfile
+  name: "Cohere API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'COHERE_API_KEY extension:env'
+  description: "Finds Cohere API keys referenced in .env files on GitLab."
+  tags: [cohere, gitlab, env, specialized]
+
+- id: gitlab-hf-pyfile
+  name: "Hugging Face token in .py (GitLab)"
+  source: gitlab
+  category: infrastructure
+  query: 'hf_ extension:py'
+  description: "Finds Hugging Face tokens hardcoded in Python source files on GitLab."
+  tags: [huggingface, gitlab, python, infrastructure]
+
+- id: gitlab-openrouter-env
+  name: "OpenRouter key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'sk-or-v1- extension:env'
+  description: "Finds OpenRouter API keys in .env files on GitLab."
+  tags: [openrouter, gitlab, env, emerging]
+
+- id: gitlab-perplexity-env
+  name: "Perplexity key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'pplx- extension:env'
+  description: "Finds Perplexity API keys committed to .env files on GitLab."
+  tags: [perplexity, gitlab, env, emerging]
+
+- id: gitlab-deepseek-env
+  name: "DeepSeek API key in .env (GitLab)"
+  source: gitlab
+  category: emerging
+  query: 'DEEPSEEK_API_KEY extension:env'
+  description: "Finds DeepSeek API keys referenced in .env files on GitLab."
+  tags: [deepseek, gitlab, env, emerging]
+
+- id: gitlab-pinecone-env
+  name: "Pinecone API key in .env (GitLab)"
+  source: gitlab
+  category: specialized
+  query: 'PINECONE_API_KEY extension:env'
+  description: "Finds Pinecone vector DB API keys referenced in .env files on GitLab."
+  tags: [pinecone, vectordb, gitlab, env, specialized]