Search

Google Hacking Basics

Loading...

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

1 comments

Comments 1 - 1 of 1 previous next Post a comment

Post a comment
Embed Video
Edit your comment Cancel

Notes on slide 1

Favorites, Groups & Events

Google Hacking Basics - Presentation Transcript

  1. Google Hacking - The Basics Maniac
  2. Hacking - The Basics • What exactly is Google Hacking? • Google Hacking involves using the Google search engine to identify vulnerabilities in websites.
  3. Hacking - The Basics • Ok, so you use Google to find all of this stuff, but how do you? • Google supports a multitude of operators and modifiers that add a ton of power to google searching.
  4. Hacking - The Basics • Mmmmmm....operators and modifiers! I want them!
  5. Hacking - The Basics • cache: • Syntax: cache:URL [highlight] • The cache operator will search through google’s cache and return the results based on those documents. You can alternatively tell cache to highlight a word or phrase by adding it after the operator and URL.
  6. Hacking - The Basics • link: • Syntax: link:URL • Sites that have a hyperlink to the URL specified will be returned in the search results.
  7. Hacking - The Basics • related: • Syntax: related:URL • The related operator will return results that are “similar” to the page that was specified.
  8. Hacking - The Basics • info: • Syntax: info:URL • This tag will give you the information that Google has on the given URL.
  9. Hacking - The Basics • site: • Syntax: site:Domain • This modifier will restrict results to those sites within the domain given.
  10. Hacking - The Basics • allintitle: • Syntax: allintitle: oper1 [oper2] [oper3] [etc..] • Google will restrict the results to those that have all of the words entered after the modifier within the title. NOTE: This modifier does not play well with others.
  11. Hacking - The Basics • intitle: • Syntax: intitle:operator • Google will return only results that match the word or phrase entered after the modifier within the title of the page.
  12. Hacking - The Basics • allinurl: • Syntax: allinurl: oper1 [oper2] [oper3] [etc...] • This modifier is similar to allintitle: in that it will use the rest of the query and look for all the words or phrases in the URL that was specified. NOTE: Also like allintitle:, this modifier doesn’t play well with others.
  13. Hacking - The Basics • inurl: • Syntax: inurl:operator • Here is the single operator version of allinurl:. Will return anything that has the operator in the URL.
  14. Hacking - The Basics • allintext: • Syntax: allintext: oper1 [oper2] [oper3] [etc...] • Just like not using any operators....
  15. Hacking - The Basics • intext: • Syntax: intext:operator • Ok, ok, I’ll let you guess on this one.
  16. Hacking - The Basics • Are you done yet? That seemed like a lot, and what the hell was with all the apple stuff? • Almost there. Now its time to start mixing and matching these modifiers and operators. • The four most commonly used will be intitle:, intext:, inurl:, and filetype: • Also note, you can use OR and + and - signs.
  17. Hacking - The Basics • mixing in intext:, inurl:, and intitle: and looking for default drupal sites that haven’t been configured yet. • -inurl:drupal.org intext:\"Welcome to your new Drupal-powered website.\" intitle:drupal
  18. Hacking - The Basics • \"display printer status\" intitle:\"Home\"
  19. Hacking - The Basics • Whoa! a Xerox printer!
  20. Hacking - The Basics • \"#mysql dump\" filetype:sql 21232f297a57a5a743894a0e4a801fc3 21232f297a57a5a743894a0e4a801fc3 is the MD5sum for admin
  21. Hacking - The Basics • \"Certificate Practice Statement\" inurl:(PDF | DOC) CAs are the formal requests that are made to get a Digital Certificate.
  22. Hacking - The Basics • \"Network Vulnerability Assessment Report\"
  23. Hacking - The Basics • \"Thank you for your order\" +receipt filetype:pdf
  24. Hacking - The Basics • \"robots.txt\" + \"Disallow:\" filetype:txt
  25. Hacking - The Basics • \"phpMyAdmin\" \"running on\" inurl:\"main.php\"
  26. Hacking - The Basics • \"phone * * *\" \"address *\" \"e-mail\" intitle:\"curriculum vitae\"
  27. Hacking - The Basics • \"social security number\" \"phone * * *“ \"address *\" \"e-mail *\" intitle:\"curriculum vitae\" filetype:pdf site:.edu
  28. Hacking - The Basics • ext:vmx vmx
  29. Hacking - The Basics • filetype:QBW qbw
  30. Hacking - The Basics • filetype:xls inurl:\"email.xls\"
  31. Hacking - The Basics • intitle:\"Index of\" finances.xls
  32. Hacking - The Basics • WOW! That was a lot of good finds! Where can I find more info on googlehacking? • http://johnny.ihackstuff.com

+ amiable_indianamiable_indian, 2 years ago

custom

5252 views, 0 favs, 2 embeds more stats

More info about this document

© All Rights Reserved

Go to text version

  • Total Views 5252
    • 5237 on SlideShare
    • 15 from embeds
  • Comments 1
  • Favorites 0
  • Downloads 193
Most viewed embeds
  • 12 views on http://bukuhitam007.blogspot.com
  • 3 views on http://www.arcanesecurity.net

more

All embeds
  • 12 views on http://bukuhitam007.blogspot.com
  • 3 views on http://www.arcanesecurity.net

less

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate. If needed, use the feedback form to let us know more details.

Cancel
File a copyright complaint
Having problems? Go to our helpdesk?

Categories

Tags

-->
Search
RSS Feed
What's new?

© 2009 SlideShare Inc. All Rights Reserved