Loading...
Flash Player 9 (or above) is needed to view slideshows. We have detected that you do not have it on your computer.To install it, go here
 
Post to Twitter Post to Twitter
Myspace Hi5 Friendster Xanga LiveJournal Facebook Blogger Tagged Typepad Freewebs BlackPlanet gigya icons
« Prev Comments 1 - 1 of 1 Next »
Add a comment If you have a SlideShare account, login to comment; otherwise comment as a guest.
    SlideShare is now available on LinkedIn. Add it to your LinkedIn profile.

    Google Hacking Basics

    From amiable_indian, 10 months ago Add as contact

    1705 views | 1 comments | 0 favorites | 99 downloads | 1 embeds (Stats)

    Categories

    Technology

    Groups/Events

    Embed in your blog options close
    Embed (wordpress.com) Exclude related slideshows Embed in your blog

    More Info

    This slideshow is Public
    Total Views: 1705 on Slideshare: 1704 from embeds: 1
    Most viewed embeds (Top 5): More
    All Embeds: Less
    Flagged as inappropriate Flag as inappropriate

    Flag as inappropriate

    Select your reason for flagging this slideshow as inappropriate.

    If needed, use the feedback form to let us know more details.

    Slideshow Transcript

    1. Slide 1: Google Hacking - The Basics Maniac
    2. Slide 2: Hacking - The Basics • What exactly is Google Hacking? • Google Hacking involves using the Google search engine to identify vulnerabilities in websites.
    3. Slide 3: Hacking - The Basics • Ok, so you use Google to find all of this stuff, but how do you? • Google supports a multitude of operators and modifiers that add a ton of power to google searching.
    4. Slide 4: Hacking - The Basics • Mmmmmm....operators and modifiers! I want them!
    5. Slide 5: Hacking - The Basics • cache: • Syntax: cache:URL [highlight] • The cache operator will search through google’s cache and return the results based on those documents. You can alternatively tell cache to highlight a word or phrase by adding it after the operator and URL.
    6. Slide 6: Hacking - The Basics • link: • Syntax: link:URL • Sites that have a hyperlink to the URL specified will be returned in the search results.
    7. Slide 7: Hacking - The Basics • related: • Syntax: related:URL • The related operator will return results that are “similar” to the page that was specified.
    8. Slide 8: Hacking - The Basics • info: • Syntax: info:URL • This tag will give you the information that Google has on the given URL.
    9. Slide 9: Hacking - The Basics • site: • Syntax: site:Domain • This modifier will restrict results to those sites within the domain given.
    10. Slide 10: Hacking - The Basics • allintitle: • Syntax: allintitle: oper1 [oper2] [oper3] [etc..] • Google will restrict the results to those that have all of the words entered after the modifier within the title. NOTE: This modifier does not play well with others.
    11. Slide 11: Hacking - The Basics • intitle: • Syntax: intitle:operator • Google will return only results that match the word or phrase entered after the modifier within the title of the page.
    12. Slide 12: Hacking - The Basics • allinurl: • Syntax: allinurl: oper1 [oper2] [oper3] [etc...] • This modifier is similar to allintitle: in that it will use the rest of the query and look for all the words or phrases in the URL that was specified. NOTE: Also like allintitle:, this modifier doesn’t play well with others.
    13. Slide 13: Hacking - The Basics • inurl: • Syntax: inurl:operator • Here is the single operator version of allinurl:. Will return anything that has the operator in the URL.
    14. Slide 14: Hacking - The Basics • allintext: • Syntax: allintext: oper1 [oper2] [oper3] [etc...] • Just like not using any operators....
    15. Slide 15: Hacking - The Basics • intext: • Syntax: intext:operator • Ok, ok, I’ll let you guess on this one.
    16. Slide 16: Hacking - The Basics • Are you done yet? That seemed like a lot, and what the hell was with all the apple stuff? • Almost there. Now its time to start mixing and matching these modifiers and operators. • The four most commonly used will be intitle:, intext:, inurl:, and filetype: • Also note, you can use OR and + and - signs.
    17. Slide 17: Hacking - The Basics • mixing in intext:, inurl:, and intitle: and looking for default drupal sites that haven’t been configured yet. • -inurl:drupal.org intext:\"Welcome to your new Drupal-powered website.\" intitle:drupal
    18. Slide 18: Hacking - The Basics • \"display printer status\" intitle:\"Home\"
    19. Slide 19: Hacking - The Basics • Whoa! a Xerox printer!
    20. Slide 20: Hacking - The Basics • \"#mysql dump\" filetype:sql 21232f297a57a5a743894a0e4a801fc3 21232f297a57a5a743894a0e4a801fc3 is the MD5sum for admin
    21. Slide 21: Hacking - The Basics • \"Certificate Practice Statement\" inurl:(PDF | DOC) CAs are the formal requests that are made to get a Digital Certificate.
    22. Slide 22: Hacking - The Basics • \"Network Vulnerability Assessment Report\"
    23. Slide 23: Hacking - The Basics • \"Thank you for your order\" +receipt filetype:pdf
    24. Slide 24: Hacking - The Basics • \"robots.txt\" + \"Disallow:\" filetype:txt
    25. Slide 25: Hacking - The Basics • \"phpMyAdmin\" \"running on\" inurl:\"main.php\"
    26. Slide 26: Hacking - The Basics • \"phone * * *\" \"address *\" \"e-mail\" intitle:\"curriculum vitae\"
    27. Slide 27: Hacking - The Basics • \"social security number\" \"phone * * *“ \"address *\" \"e-mail *\" intitle:\"curriculum vitae\" filetype:pdf site:.edu
    28. Slide 28: Hacking - The Basics • ext:vmx vmx
    29. Slide 29: Hacking - The Basics • filetype:QBW qbw
    30. Slide 30: Hacking - The Basics • filetype:xls inurl:\"email.xls\"
    31. Slide 31: Hacking - The Basics • intitle:\"Index of\" finances.xls
    32. Slide 32: Hacking - The Basics • WOW! That was a lot of good finds! Where can I find more info on googlehacking? • http://johnny.ihackstuff.com