Zer0Byte

Geekiest Techno News

Hand Picked Google Dorks


Google Dorks Hand Picked

Dear Lov3ed one$,I just lov3 Google. Its the coolest thing ever invented by a human. Google is so cool that even the dorks it makes are pieces of Gold for sec g33ks like us :p.

Almost all the security guys out there know little or more about the GOOGLE DORKS.  For some of us who are new to Google dorks l3t me give you guys a lil intro

 Introduction to Google Dorks ( i have tried not to make it long boring cuz i know we all got ADD :lol: )

Google dorks can be defined as keywords that dig out juicy information like usernames , passwords , documents files , databases etc. from websites (simple and to the point). These google dorks can also be used in Intelligence Gathering.


Some Basics

 
No. Google Special Keywords    Description Example
1 cache: If you include other words in the query, Google will highlight those words within the cached document. [cache:www.google.com] will show Google’s cache of the Google homepage. Note there can be no space between the “cache:” and the web page url.
2 link:         The query [link:] will list webpages that have links to the specified webpage [link:www.google.com] will list webpages that have links pointing to the Google homepage. Note there can be no space between the “link:” and the web page url.
3 related:
The query [related:] will list web pages that are “similar” to a specified web page.
[related:www.google.com] will list web pages that are similar to the Google homepage. Note there can be no space between the “related:” and the web page url.
4
info:
The query [info:] will present some information that Google has about that web page.
[info:www.google.com] will show information about the Google homepage. Note there can be no space between the “info:” and the web page url.
5 define:
The query [define:] will provide a definition of the words you enter after it, gathered from various online sources. The definition will be for the entire phrase entered (i.e., it will include all the words in the exact order you typed them).
[define:geek]
6 stocks:
If you begin a query with the [stocks:] operator, Google will treat the rest of the query terms as stock ticker symbols, and will link to a page showing stock information for those symbols.
[stocks: intc yhoo] will show information about Intel and Yahoo. (Note you must type the ticker symbols, not the company name.)
7
site:
If you include [site:] in your query, Google will restrict the results to those websites in the given domain.
[help site:www.google.com] will find pages about help within www.google.com. [help site:com] will find pages about help within .com urls. Note there can be no space between the “site:” and the domain.
8 allintitle:
If you start a query with [allintitle:], Google will restrict the results to those with all of the query words in the title.
[allintitle: google search] will return only documents that have both “google” and “search” in the title.
9 intitle:
If you include [intitle:] in your query, Google will restrict the results to documents containing that word in the title. For instance,

Putting [intitle:] in front of every word in your query is equivalent to putting [allintitle:] at the front of your query: [intitle:google intitle:search] is the same as [allintitle: google search].

[intitle:google search] will return documents that mention the word “google” in their title, and mention the word “search” anywhere in the document (title or no). Note there can be no space between the “intitle:” and the following word.
10 allinurl:
If you start a query with [allinurl:], Google will restrict the results to those with all of the query words in the url.

Note that [allinurl:] works on words, not url components. In particular, it ignores punctuation. Thus, [allinurl: foo/bar] will restrict the results to page with the words “foo” and “bar” in the url, but won’t require that they be separated by a slash within that url, that they be adjacent, or that they be in that particular word order. There is currently no way to enforce these constraints.

[allinurl: google search] will return only documents that have both “google” and “search” in the url.
11 info:
The query [info:] will present some information that Google has about that web page.
[info:www.google.com] will show information about the Google homepage. Note there can be no space between the “info:” and the web page url.
12 inurl:
If you include [inurl:] in your query, Google will restrict the results to documents containing that word in the url. For instance,

Putting “inurl:” in front of every word in your query is equivalent to putting “allinurl:” at the front of your query: [inurl:google inurl:search] is the same as [allinurl: google search].

[inurl:google search] will return documents that mention the word “google” in their url, and mention the word “search” anywhere in the document (url or no). Note there can be no space between the “inurl:” and the following word.


Now let me Share my Favorite Hand-Picked Google Dorks
(
you can also share cuz sharing is f0xy. Love to see ur favs )

 
No. Google Dork    Description No. of Google Results
1 “index of cgi-bin”     CGI directories contain scripts which can often be exploited by attackers. About 241,000 results
2  -inurl:htm -inurl:html -inurl:php intitle:”index of” (mpg|avi|wmv) “Coldplay” Can be used to discover Videos and Mp3 songs (copy the complete string) All Depends on the Artist name Selected. Results Vary
3
  1. Axis:
    inurl:”view/indexFrame.shtml”inurl:”view/index.shtml”intitle:”Live View / – AXIS”intitle:axis cameraintitle:”axis #Kameramodell#”
  2. Canon:
    inurl:sample/LvAppl/
  3. JVC:
    intitle:”V.Networks [Motion Picture(Java)”

  4. EvoCam:
    intitle:”EvoCam” inurl:”webcam.html”

  5. WebcamXP:
    intitle:”my webcamXP server!”

  6. MOBOTIX:
    inurl:/control/userimage.html

  7. Panasonic:
    inurl:/ViewerFrame?Mode=Motion

  8. FlexWatch:
    inurl:toolam.htmlinurl:viewash.html

  9. Toshiba:
    intitle:”TOSHIBA Network Camera – User Login”

  10. Sony:
    inurl:/home/homeJ.html
Used to Dig In WebCams Results Vary
 4 “Welcome to phpMyAdmin” AND ” Create new database” PhpMyAdmin Dork. phpMyAdmin is a widly spread webfrontend used to mantain sql databases.The default security mechanism is to leave it up to the admin of the website to put a .htaccess file in the directory of the application. About 15,100 results
 5
  1. inurl:-cfg intext:”enable password”
  2. filetype:ini “[FFFTP]” (pass|passwd|password|pwd)
  3. filetype:sql “phpmyAdmin SQL Dump” (pass|password|passwd|pwd)
  4. filetype:sql “PostgreSQL database dump” (pass|password|passwd|pwd)
  5. inurl:htpasswd filetype:htpasswd
Passwords :P  Results Vary
 6
  1. inurl:src/login.php
  2. adminlogin.asp
  3. allinurl:”exchange/logon.asp”
  4. inurl:+:8443/login.php3 
Login Pagesrequires SQLI (hint) or other techniques Results Vary
7 inurl:search.php vbulletin Eheeem Eheeem About 10,900,000
8 intitle:”Uploader – Uploader v6″ -pixloads.com About 56,300 results
9
  1. “Select a database to view” intitle:”filemaker pro”
  2. “set up the administrator user” inurl:pivot
  3. “There are no Administrators Accounts” inurl:admin.php -mysql_fetch_row
  4. “Welcome to Administration” “General” “Local Domains” “SMTP Authentication” inurl:admin
  5. “Welcome to Intranet”
  6. “Welcome to PHP-Nuke” congratulations
  7. “Welcome to the Prestige Web-Based Configurator”
  8. inurl:main.php Welcome to phpMyAdmin
 Just for Fun Results Vary
10
  1. inurl:portscan.php “from Port”|”Port Range”
  2. inurl:proxy | inurl:wpad ext:pac | ext:dat findproxyforurl
 Network Stuff Results Vary

Geeks if you google u can also find a huge list of dorks .

Note: – if you really have a nice dork please share …. ill update this page with ur name …. cheer …

 


Categories: TOP NEWS, Tutorials, Web Apps

Comments

  1. Feedham says:

    This is really very informative…keep it up man…

  2. Currel says:

    I loved reading your submit. I should confess it was the very first article on your website I truly loved and in which I had a sense of understanding, know what exactly I mean? Anyway, keep the posting and I am going to be back once again.

  3. ecasa.pl says:

    As a new user please welcome :)

  4. Nice Article says:

    I am just done reading through your write-up and I fairly enjoyed it. Hand Picked Google Dorks is damn good! I had a few questions in the beginning of the article though, but I kept on reading and I’m delighted I did. Good entertaining article, blogger! Continue publishing and I will definitely be back again shortly. Bless you and take care.

  5. […] Hand Picked Google Dorks […]

  6. […] answers:Go to http://www.techcctv.com or give them a call they can helpPowered by Yahoo! AnswersPaul asks…Anyone want to hack into a security camra's?cant beilive my freinds think this is new to…>cant beilive my freinds think this is new to them…basically …you snoop the security cams this […]

  7. SmokeTooMuch says:

    ext:xml “sitemanager.xml” MODE_DEFAULT

    Saved FTP-Logins from the FileZilla client ;)

  8. wireless dvr says:

    We are a gaggle of volunteers and starting a new scheme in our community. Your web site provided us with helpful information to work on. You have done a formidable job and our entire community can be thankful to you.

  9. Profile photo of Zer0Byte Zer0Byte says:

    *New Google DORK*
    OOVOO CHAT Private Videos

    site:oovoo.com fplayerns.aspx

  10. Natashases says:

    I want download X Rumer 7.0.10 ?
    Send me URL please!!!
    It is the best program for mass posting on forums! XRumer can break most types of captchas!

  11. Natashases says:

    Where free XRumer 7.0.10 Elite?
    Send me URL please!!!
    It is the best program for mass posting on forums! XRumer can break most types of captchas!

  12. This is very interesting, You’re a very skilled blogger. I’ve joined your rss feed and look forward to seeking more of your wonderful post. Also, I’ve shared your web site in my social networks!

  13. Frulurrymot says:

    hi to all

  14. […] 1 cache: Example Hand Picked Google Dorks […]