Published in


Individual background check using SerpApi

Automate background checks to the next level.

What does a Background check mean? —

A background check is a process that a person or company uses to verify that an individual is who they claim to be, and this provides an opportunity to check and confirm the validity of someone’s criminal record, education, employment history, and other activities from their past.

Today I’m going to talk about how to do a quick background check, and how to automate it.

So sometimes we might wonder, how the big companies doing the background checks for the people who are applying for a job for them.

Some governments and news agencies are using search engines as well for faster tracking for the events in a specific country or worldwide, just by searching for the keywords, from Twitter or other social media trends.

So you might ask me — how this could be useful to us?

This research just to give you a general idea about how useful is SerpApi, also let’s say that you’re a company CEO and you want to make a perfect system to help your HR team to make a good background check, so you can make sure that the person who applied for the job is truly skilled and everything mentioned in his CV is legit.

So we will use the normal search engines that available at SerpApi to achieve the best result we need.

Since its beginning, dorks, have been used by more advanced users, to get more accurate results. Specifically, hackers use it to find sensitive information and documents about their target, find usernames and passwords, email lists, financial information, and more confidential data.

Let’s try some of these dorks.

This dork searches for online resumes of a person. You can search within the URL of a website, or within the text of a site:

inurl:resume “john doe”
intext:resume “john doe”
allintext:resume "john doe"

Another search touching Amazon buckets that might show some confidential login information within XLS files:

s3 site: filetype:xls "john doe"

that searches for login information on a Trello board. Since a lot of people forget to tighten the security settings on their Trello board, loads of them are exposed and indexed by Google:

site: password + john doe

that search for social media accounts

site: "john doe"
site: "john doe"
site: "john doe"
site: "john doe" // this is for Telegram "john doe"
site: "john doe"
site: "john doe"

We can also search for the personal information in the pasting sites if exist | | | | | | | | | | | | | | | | | | | | | | | | |  | | "john doe"
SERP API playground- search using pasting sites.

We can search in the public exposed documents :

site:john doe ext:doc | ext:docx | ext:odt | ext:rtf | ext:sxw | ext:psw | ext:ppt | ext:pptx | ext:pps | ext:csv

To go further we can automate the whole process using our latest tool SerpScan

by changing the dorks in the conf.php file and applying some changes to the structure of the tool.

Serpscan is a powerful PHP script designed to allow you to leverage the power of dorking straight from the comfort of your command line.

By automating the process, we could achieve a huge amount of results in a very short period of time.

SerpApi is providing an API with about 5,000 searches as a free trial in the first month not only google but for most of the known famous search engines like Yahoo, Baidu, Yandex, and more...

1- You can perform a background check on multiple targets at the same time.

2- You can search using different engines, for different regions.

3- SerpApi is fast and using advanced Captcha solving solutions which makes you avoid the annoying of solving captcha every couple of minutes.


In this blog post, we present a quick overview of Individual background check. It is obviously possible to go deeper and find other information by using SerpApi with my automated tools.

Check out SerpApi website for more details:

Also, you can check the other use-cases for the SerpApi:




Fast, complete, and easy API to scrape and extract search results

Recommended from Medium


HMS Core Safety Detect Kit Helps Developers Build Trustworthy Apps

OverTheWire — Bandit Walkthrough (14–21)

OSCD: Threat Detection Sprint #1, results (EN)

Figures for 6 of December 2019, when final PR from OSCD to Sigma master branch has been created

Web 3.0 Is The Future: How Will It Be Different From Web 2.0?

{UPDATE} Endless Combat Hack Free Resources Generator

MetaCity1.0 Land Compensation

Moving from WanWallet Mobile to MetaMask Mobile

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alaa Abdulridha

Alaa Abdulridha

Cybersecurity Engineer and #OSWE certified

More from Medium

bodyParser.json() vs express.json() & express.urlencoded() vs express.json()

My experience with creating a Solid application


UiPath Conversion Tool to Resolve Browser Compatibility issues.

Publish WSO2 logs into JMS Queue through Log appender