Search Techniques

Google Dorking is a powerful technique used to silently obtain information on various targets to assist in both research and furthering attack. Some of my favorite operators include:

  1. site
    • The site operator instructs Google to restrict a search to a specific web site or domain. The web site to search must be supplied after the colon.
  2. filetype
    • The filetype operator instructs Google to search only within the text of a particular type of file. The file type to search must be supplied after the colon. Don’t include a period before the file extension.
  3. link
    • The link operator instructs Google to search within hyperlinks for a search term.
  4. cache
    • The cache operator displays the version of a web page as it appeared when Google crawled the site. The URL of the site must be supplied after the colon.
  5. intitle or allintitle
    • The intitle, allintitle operator instructs Google to search for a term within the title of a document.
  6. inurl or allinurl
    • The inurl, allinurl operator instructs Google to search only within the URL (web address) of a document. The search term must follow the colon.

A quick example of how you would construct these in the google search bar are show below. Please substitute the [website] value with an actual website.

site:[website] intitle:index.of .bash_history

  • .bash_history file contains what a user typed at a shell command prompt. This file contains commands and usernames and other information that may have been typed in. .bash_history can also be replaced with .profile, .login, .logout files, .sh_history, etc.

site:[website] inurl:admin inurl:userlist

  • This reveals userlists of administrative importance.

site:[website] inurl:"/root/etc/passwd" intext:"home/*:"
site:[website] intext:"root:x:0:0:root:/root:/bin/bash" inurl:*=/etc/passwd
intitle:index.of.password

  • These techniques above would reveal any present passwd files

Additional References:
https://www.exploit-db.com/google-hacking-database/
https://en.wikipedia.org/wiki/Google_hacking

comments powered by Disqus