Search This Blog

Wednesday, August 3, 2011

Google Hacking





Google queries for locating various Web servers
ā€œApache/1.3.28 Server atā€ intitle:index.of
Apache 1.3.28
ā€œApache/2.0 Server atā€ intitle:index.of
Apache 2.0
ā€œApache/* Server atā€ intitle:index.of
any version of Apache
ā€œMicrosoft-IIS/4.0 Server atā€ intitle:index.of
Microsoft Internet Information Services 4.0
ā€œMicrosoft-IIS/5.0 Server atā€ intitle:index.of
Microsoft Internet Information Services 5.0
ā€œMicrosoft-IIS/6.0 Server atā€ intitle:index.of
Microsoft Internet Information Services 6.0
ā€œMicrosoft-IIS/* Server atā€ intitle:index.of
any version of Microsoft Internet Information Services
ā€œOracle HTTP Server/* Server atā€ intitle:index.of
any version of Oracle HTTP Server
ā€œIBM _ HTTP _ Server/* * Server atā€ intitle:index.of
any version of IBM HTTP Server
ā€œNetscape/* Server atā€ intitle:index.of
any version of Netscape Server
ā€œRed Hat Secure/*ā€ intitle:index.of
any version of the Red Hat Secure server
ā€œHP Apache-based Web Server/*ā€ intitle:index.of
any version of the HP server
Queries for discovering standard post-installation
intitle:ā€Test Page for Apache Installationā€ ā€œYou are freeā€
Apache 1.2.6
intitle:ā€Test Page for Apache Installationā€ ā€œIt worked!ā€ ā€œthis Web site!ā€
Apache 1.3.0 ā€“ 1.3.9
intitle:ā€Test Page for Apache Installationā€ ā€œSeeing this insteadā€
Apache 1.3.11 ā€“ 1.3.33, 2.0
intitle:ā€Test Page for the SSL/TLS-aware Apache Installationā€ ā€œHey, it worked!ā€
Apache SSL/TLS
intitle:ā€Test Page for the Apache Web Server on Red Hat Linuxā€
Apache on Red Hat
intitle:ā€Test Page for the Apache Http Server on Fedora Coreā€
Apache on Fedora
intitle:ā€Welcome to Your New Home Page!ā€
Debian Apache on Debian
intitle:ā€Welcome to IIS 4.0!ā€
IIS 4.0
intitle:ā€Welcome to Windows 2000 Internet Servicesā€
IIS 5.0

intitle:ā€Welcome to Windows XP Server Internet Servicesā€
IIS 6.0
Querying for application-generated system reports
ā€œGenerated by phpSystemā€

operating system type and version, hardware configuration, logged users, open connections, free memory and disk space, mount points
ā€œThis summary was generated by wwwstatā€
web server statistics, system file structure
ā€œThese statistics were produced by getstatsā€
web server statistics, system file structure
ā€œThis report was generated by WebLogā€
web server statistics, system file structure
intext:ā€Tobias Oetikerā€ ā€œtraffic analysisā€
systemperformance statistics as MRTG charts, network configuration
intitle:ā€Apache::Statusā€ (inurl:server-status | inurl:status.html | inurl:apache.html)
server version, operating system type, child process list, current connections
intitle:ā€ASP Stats Generator *.*ā€ ā€œASP Stats Generatorā€ ā€œ2003-2004 wepposā€
web server activity, lots of visitor information
intitle:ā€Multimon UPS status pageā€
UPS device performance statistics
intitle:ā€statistics ofā€ ā€œadvanced web statisticsā€
web server statistics, visitor information
intitle:ā€System Statisticsā€ +ā€System and Network Information Centerā€

system performance statistics as MRTG charts, hardware configuration, running services
intitle:ā€Usage Statistics forā€ ā€œGenerated by Webalizerā€
web server statistics, visitor information, system file structure
intitle:ā€Web Server Statistics for ****ā€
web server statistics, visitor information
nurl:ā€/axs/ax-admin.plā€ -script
web server statistics, visitor information
inurl:ā€/cricket/grapher.cgiā€
MRTG charts of network interface performance
inurl:server-info ā€œApache Server Informationā€
web server version and configuration, operating system type, system file structure
ā€œOutput produced by SysWatch *ā€
operating system type and version, logged users, free memory and disk space, mount points, running processes, system logs



dork for finding admin page
admin1.php
admin1.html
admin2.php
admin2.html
yonetim.php
yonetim.html
yonetici.php
yonetici.html
admin/account.php
admin/account.html
admin/index.php
admin/index.html
admin/login.php
admin/login.html
admin/home.php
admin/controlpanel.html
admin/controlpanel.php
admin.php
admin.html
admin/cp.php
admin/cp.html
cp.php
cp.html
administrator/
administrator/index.html
administrator/index.php
administrator/login.html
administrator/login.php
administrator/account.html
administrator/account.php
administrator.php
administrator.html
login.html
modelsearch/login.php
moderator.php
moderator.html
moderator/login.php
moderator/login.html
moderator/admin.php
moderator/admin.html
account.php
account.html
controlpanel/
controlpanel.php
controlpanel.html
admincontrol.php
admincontrol.html
adminpanel.php
adminpanel.html
admin1.asp
admin2.asp
yonetim.asp
yonetici.asp
admin/account.asp
admin/index.asp
admin/login.asp
admin/home.asp
admin/controlpanel.asp
admin.asp
admin/cp.asp
cp.asp
administrator/index.asp
administrator/login.asp
administrator/account.asp
administrator.asp
login.asp
modelsearch/login.asp
moderator.asp
moderator/login.asp
moderator/admin.asp
account.asp
controlpanel.asp
admincontrol.asp
adminpanel.asp
fileadmin/
fileadmin.php
fileadmin.asp
fileadmin.html
administration/
administration.php
administration.html
sysadmin.php
sysadmin.html
phpmyadmin/
myadmin/
sysadmin.asp
sysadmin/
ur-admin.asp
ur-admin.php
ur-admin.html
ur-admin/
Server.php
Server.html
Server.asp
Server/
wp-admin/
administr8.php
administr8.html
administr8/
administr8.asp
webadmin/
webadmin.php
webadmin.asp
webadmin.html
administratie/
admins/
admins.php
admins.asp
admins.html
administrivia/
Database_Administration/
WebAdmin/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
ServerAdministrator/
SysAdmin/
administer/
LiveUser_Admin/
sys-admin/
typo3/
panel/
cpanel/
cPanel/
cpanel_file/
platz_login/
rcLogin/
blogindex/
formslogin/
autologin/
support_login/
meta_login/
manuallogin/
simpleLogin/
loginflat/
utility_login/
showlogin/
memlogin/
members/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
UserLogin/
login-us/
acct_login/
admin_area/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
Lotus_Domino_Admin/
bbadmin/
vmailadmin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
Super-Admin/
AdminTools/
cmsadmin/
phpSQLiteAdmin/
server_admin_small/
database_administration/
system_administration/


sql injection dorks 
allinurl: \ā€index php go buy\ā€
allinurl: \ā€index.php?go=sell\ā€
allinurl: \ā€index php go linkdir\ā€
allinurl: \ā€index.php?go=resource_center\ā€
allinurl: \ā€resource_center.html\ā€
allinurl: \ā€index.php?go=properties\ā€
allinurl: \ā€index.php?go=register\ā€

Error message queries
ā€œA syntax error has occurredā€filetype:ihtml
Informix database errors, potentially containing function names, filenames, file structure information, pieces of SQL code and passwords
ā€œAccess denied for userā€ ā€œUsing passwordā€
authorisation errors, potentially containing user names, function names, file structure information and pieces of SQL code
ā€œThe script whose uid is ā€ ā€œis not allowed to accessā€

access-related PHP errors, potentially containing filenames, function names and file structure information
ā€œORA-00921: unexpected end of SQL commandā€
Oracle database errors, potentially containing filenames, function names and file structure information
ā€œerror found handling the requestā€ cocoon filetype:xml
Cocoon errors, potentially containing Cocoon version information, filenames, function names and file structure information
ā€œInvision Power Board Database Errorā€

Invision Power Board bulletin board errors, potentially containing function names, filenames, file structure information and piece of SQL code
ā€œWarning: mysql _ query()ā€ ā€œinvalid queryā€
MySQL database errors, potentially containing user names, function names, filenames and file structure information
ā€œError Message : Error loading required libraries.ā€

CGI script errors, potentially containing information about operating system and program versions, user names, filenames and file structure information
ā€œ#mysql dumpā€ filetype:sql
MySQL database errors, potentially containing information about database structure and contents
Dork for locating passwords
http://*:*@wwwā€ site
passwords for site, stored as the string ā€œhttp://username:password@wwwā€¦ā€
filetype:bak inurl:ā€htaccess|passwd|shadow|ht usersā€
file backups, potentially containing user names and passwords
filetype:mdb inurl:ā€account|users|admin|admin istrators|passwd|passwordā€
mdb files, potentially containing password information
intitle:ā€Index ofā€ pwd.db
pwd.db files, potentially containing user names and encrypted passwords
inurl:admin inurl:backup intitle:index.of
directories whose names contain the words admin and backup
ā€œIndex of/ā€ ā€œParent Directoryā€ ā€œWS _ FTP.iniā€
filetype:ini WS _ FTP PWD
WS_FTP configuration files, potentially containing FTP server access passwords
ext:pwd inurl:(service|authors|administrators |users) ā€œ# -FrontPage-ā€
files containing Microsoft FrontPage passwords
filetype:sql (ā€œpasswd values ****ā€ | ā€œpassword values ****ā€ | ā€œpass values ****ā€ )
files containing SQL code and passwords inserted into a database
intitle:index.of trillian.ini
configuration files for the Trillian IM
eggdrop filetype:user

user configuration files for the Eggdrop ircbot
filetype:conf slapd.conf
configuration files for OpenLDAP
inurl:ā€wvdial.confā€ intext:ā€passwordā€
configuration files for WV Dial
ext:ini eudora.ini
configuration files for the Eudora mail client
filetype:mdb inurl:users.mdb
Microsoft Access files, potentially containing user account information
Searching for personal data and confidential documents
filetype:xls inurl:ā€email.xlsā€
email.xls files, potentially containing contact information
ā€œphone * * *ā€ ā€œaddress *ā€ ā€œe-mailā€ intitle: ā€œcurriculum vitaeā€
CVs
ā€œnot for distributionā€

confidential documents containing the confidential clause
buddylist.blt
AIM contacts list
intitle:index.of mystuff.xml
Trillian IM contacts list
filetype:ctt ā€œmsnā€
MSN contacts list
filetype:QDF

QDF database files for the Quicken financial application
intitle:index.of finances.xls
finances.xls files, potentially containing information on bank accounts, financial summaries and credit card numbers
intitle:ā€Index Ofā€ -inurl:maillog maillog size
maillog files, potentially containing e-mail
Network Vulnerability Assessment Reportā€
ā€œHost Vulnerability Summary Reportā€
filetype:pdf ā€œAssessment Reportā€
ā€œThis file was generated by Nessusā€
reports for network security scans, penetration tests etc
dork for locating network devices
ā€œCopyright (c) Tektronix, Inc.ā€ ā€œprinter statusā€
PhaserLink printers
inurl:ā€printer/main.htmlā€ intext:ā€settingsā€
Brother HL printers
intitle:ā€Dell Laser Printerā€ ews
Dell printers with EWS technology
intext:centreware inurl:status
Xerox Phaser 4500/6250/8200/8400 printers
inurl:hp/device/this.LCDispatcher
HP printers
intitle:liveapplet inurl:LvAppl
Canon Webview webcams
intitle:ā€EvoCamā€ inurl:ā€webcam.htmlā€
Evocam webcams
inurl:ā€ViewerFrame?Mode=ā€

Panasonic Network Camera webcams
(intext:ā€MOBOTIX M1ā€³ | intext:ā€MOBOTIX M10ā€³) intext:ā€Open Menuā€ Shift-Reload
Mobotix webcams
inurl:indexFrame.shtml Axis
Axis webcams
intitle:ā€my webcamXP server!ā€ inurl:ā€:8080ā€³
webcams accessible via WebcamXP Server
allintitle:Brains, Corp.
camera webcams accessible via mmEye
intitle:ā€active webcam pageā€

Add To Google BookmarksStumble ThisFav This With TechnoratiAdd To Del.icio.usDigg ThisAdd To RedditTwit ThisAdd To FacebookAdd To Yahoo
Posted by Vishal S Sangwa at 8/03/2011 12:49:00 PM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)