Get your server issues fixed by our experts for a price starting at just 25 USD/Hour. Click here to register and open a ticket with us now!

Author Topic: Google Hacking: An Overview  (Read 2436 times)

0 Members and 1 Guest are viewing this topic.

Vineesh K P

  • Guest
Google Hacking: An Overview
« on: February 03, 2018, 05:22:46 pm »
Google hacking, sometimes, referred to as Google dorking, is an information gathering technique used by an attacker leveraging advanced Google searching techniques. Google hacking search queries can be used to identify security vulnerabilities in web applications, gather information for arbitrary or individual targets, discover error messages disclosing sensitive information, discover files containing credentials and other sensitive data.

By utilizing this technique the attacker can create a very specific query to get to the information faster and more efficiently. Let us take a look at some of the examples.

Eg: intitle:"index of" filetype:sql - This search query will list SQL files (filetype:sql) available that have been indexed by Google on websites where directory listing is enabled (intitle:"index of").

Here are some more examples,
Code: [Select]
site:           Limit the search query to a specific domain or web site. - site:example.com
filetype:       Limit the search to text found in a specific file type - mysqldump filetype:sql
link:           Search for pages that link to the requested URL - link:www.example.com
inurl:          Search for a string within a URL - inurl:passwords.txt