Use Google 2 Hack.pdf

(679 KB) Pobierz

Use Google to Hack(Googledorks)

Mr_Nakup3nda

1 year ago

hello my dear colleagues, I made a visit to nullbyte and found that there is not a complete tutorial

about the google dorks, so I felt the need for this tutorial, and seeing that there are many newbies

around, so here's a tutorial that will teach you how to use google to hack.

1-HISTORY

The concept of "Google Hacking" dates back to 2002, when Johnny Long began to collect

interesting Google search queries that uncovered vulnerable systems and/or sensitive information

disclosures - labeling them googleDorks. some people call it googlehacking.

Google: If you still do not know what is google, then you need to take a crash course in "how to use

the internet"

Dork:Someone who has odd interests, and is often silly at times.

A dork is also someone who can be themselves and not care what anyone thinks

In my opinion A Google dork is an employee who unknowingly exposes sensitive corporate

information on the Internet.

As a passive attack method, Google dorking can return usernames and passwords, email lists,

sensitive documents, personally identifiable financial information (PIFI) and website

vulnerabilities.

That information can be used for any number of illegal activities, including cyberterrorism,

industrial espionage,identity theft and cyberstalking

2-OPERATORS

as well as programming, google dorks also has its operators, I will not be able to show all operators

but here are the most commonly used Operators.

Lets take a look at the special google search operators that are used to construct those high powered

google hack search terms.

intitle

Specifying intitle, will tell google to show only those pages that have the term in their html title. For

example intitle:"login page" will show those pages which have the term "login page" in the title

text.

allintitle

Similar to intitle, but looks for all the specified terms in the title.

inurl

Searches for the specified term in the url. For example inurl:"login.php".

allinurl

Same as inurl, but searches for all terms in the url.

filetype

Searches for specific file types. filetype:pdf will looks for pdf files in websites. Similarly

filetype:txt looks for files with extension .txt

ext

Similar to filetype. ext:pdf finds pdf extension files.

intext

Searches the content of the page. Somewhat like a plain google search. For example intext:"index of

/".

allintext

Similar to intext, but searches for all terms to be present in the text.

site

Limits the search to a specific site only. site:nullbyte.com

3- THE FORMULA OF GOOGLE DORKS

Dorks : They are like search criteria in which a search engine returns results related to your dork.

The process can be a little time consuming, but the outcome will be worth it after learning on how

to use dorks.

Basic Formula of dork,

"inurl:."domain"/"dorks" "

So you would normally understand it like this:

"inurl" = input URL

"domain" = your desired domain ex. .gov

"dorks" = your dork of your choice

Here is another example of that

You can use following words instead of inurl :

intitle:

inurl:

intext:

define:

site:

phonebook:

maps:

book:

froogle:

info:

movie:

weather:

link:

All these also help yo find other things then vulnerables.

Anyway now I am going to explain you how to use some for finding vulnerability in websites.

INTITLE:

You can use the intitle to find anything in the title of the website. Which also could be usefull to

find downloads or anything else.

intitle: index of mp3

This is an example to download mp3 songs for free.

INURL:

The inurl basicly looks for anything after the : in the site urls.

inurl:index.php?id=

INTEXT:

you can find literally everything using intext, you could even use the inurl dorks whit this.

intext:"Design & Developed By Seawind Solution Pvt.Ltd."

Google will give you all the websites created by IT Masons taht recently has bypass Admin Page

Vulnerability in some websites,

to try just choose a target from google and add this to the url /adminpanel/

And fill username and password like the information below :

Username : '=' 'OR'

Password : '=' 'OR'

and you will get the admin panel of the website some example:

http://www.vulnerablewebsite.com/adminpanel/index.php

DEFINE

Google will define this massage and will look for what had this error for example,

define:"sql syntax error"

SITE:

Obvious, when we will use it, google will looks for a site .

site:wonderhowto.com

Google will look for any site related with wonderhowto.

Plik z chomika:

Manunu

Inne pliki z tego folderu:

STRIKER 2016(1).pdf (152375 KB)
STRIKER 2016.pdf (152375 KB)
Różnice między win10 a win11.pdf (658 KB)
6235 tagów.txt (79 KB)
CD-Action.01.2023.Nr.334.pdf (70950 KB)

Use Google 2 Hack.pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: