Google Dork - Dorking Code

Bunch Collection of Google Dork You Might Know
Reset
No Dork
1 intitle:"evoluted directory listing script"
Open Directory Listing, just explore content
Category: Files Containing Juicy Info
2 site:http://dlh.solokkota.go.id/file/*
Load konten file
Category: Files Containing Juicy Info
3 site:pastebin.com "password twitter"
Password yang berceceran di Pastebin
Category: Files Containing Juicy Info
4 "index of/" *.go.id "kartu keluarga"
Menemukan data menarik dari folder tanpa proteksi.
Category: Files Containing Juicy Info
5 intitle:"index of" site:*.go.id "backup"
Temukan file atau folder backup pada web pemerintah
Category: Files Containing Juicy Info
6 filetype:rdp default.rdp

Category: Files Containing Juicy Info
7 filetype:txt "License Key"

Category: Files Containing Juicy Info
8 intitle:"index of" pagefile.sys

Category: Files Containing Juicy Info
9 inurl:/_vti_pvt/service.cnf | inurl:/_vti_inf.html | inurl:/_vti_bin/ | inurl:/_vti_bin/spsdisco.aspx

Category: Files Containing Juicy Info
10 intext:"Resource dumped by" intext:jcr -site:adobe.com

Category: Files Containing Juicy Info
11 ext:env intext:APP_ENV= | intext:APP_DEBUG= | intext:APP_KEY=

Category: Files Containing Juicy Info
12 "[HKEY_CURRENT_USER\Software\SimonTatham\PuTTY\Sessions]" ext:reg
Finds PuTTY session configs, sometimes containing plaintext credentials Dxtroyer
Category: Files Containing Juicy Info
13 filetype:txt line vty 0 4
filetype:txt line vty 0 4 Discover Cisco Running Configuration Discovered By: Kevin Randall
Category: Files Containing Juicy Info
14 intext:Modified files in JOE when it aborted on JOE was aborted because the terminal closed
intext:Modified files in JOE when it aborted on JOE was aborted because the terminal closed This Google Dork discovers servers exposing possible useful information hidden in DEADJOE files. - Gionathan "John" Reale (https://www.exploit-db.com/author/?a=9609)
Category: Files Containing Juicy Info
15 intext:"please find attached" "login" | password ext:pdf
Passwords and information on target's employees/customers. awesome for spear phishing. Replace pdf extension with any other document extension like doc, docx, txt... Bruno Schmid https://ch.linkedin.com/in/schmidbruno
Category: Files Containing Juicy Info
16 configuration> + filetype:config -github.com
web.config file ManhNho
Category: Files Containing Juicy Info
17 inurl:logs/gravityforms
# Exploit Title: WordPress GravityForms Information Leak # Google Dork: inurl:logs/gravityforms # Description: Websites using gravity forms have debug logs that are publicly available. Note that some include information that has some information from paypal: addresses, cookies, email addresses, ip addresses. # Date: Sunday Sept. 23, 2018 # Exploit Author: Dhruv Gramopadhye (dgramop) # Vendor Homepage: https://www.gravityforms.com/ # Version: 2.3.2 # Contact: https://dgramop.xyz Version number estimated, future versions may be affected.
Category: Files Containing Juicy Info
18 inurl:robots.txt intext:Disallow: /web.config
# Google Dork: inurl:robots.txt intext:Disallow: /web.config # Description: Google Dork to find /web.config file in robots.txt # Date: 2018-09-21 # Author: Miguel Santareno # Contact: https://www.linkedin.com/in/miguelsantareno/
Category: Files Containing Juicy Info
19 /var/www/manage/storage/logs/laravel- ext:log
Laravel logs ManhNho
Category: Files Containing Juicy Info
20 inurl:/yum.log | intitle:yum.log + ext:log
inurl:/yum.log | intitle:yum.log + ext:log yum log files ManhNho
Category: Files Containing Juicy Info
21 intitle:"index of" intext:twr.html
intitle:"index of" intext:twr.html This Google Dork discovers badly configured servers exposing sensitive Tripwire reports. - Gionathan "John" Reale (https://www.exploit-db.com/author/?a=9609)
Category: Files Containing Juicy Info
22 inurl:/wp-json/wp/v2/users/ "id":1,"name":" -wordpress.stackexchange.com -stackoverflow.com
Category: Vulnerable file Misconfiguration attack to get information of wordpress users ManhNho
Category: Files Containing Juicy Info
23 intext:"define('DB_NAME'," ext:txt
intext:"define('DB_NAME'," ext:txt This Google Dork discovers badly configured servers exposing sensitive Wordpress database information. - Gionathan "John" Reale (https://www.exploit-db.com/author/?a=9609)
Category: Files Containing Juicy Info
24 intext:"class JConfig {" inurl:configuration.php
intext:"class JConfig {" inurl:configuration.php This Google Dork discovers badly configured servers exposing sensitive Joomla configuaration information. - Gionathan "John" Reale (https://www.exploit-db.com/author/?a=9609)
Category: Files Containing Juicy Info
25 intext:"PHP Version " ext:php intext:"disabled" intext:"Build Date" intext:"System" intext:"allow_url_fopen"
Exploit Title: Finds phpinfo() pages that are not tied to extensions or file types. Google Dork: intext:"PHP Version " ext:php intext:"disabled" intext:"Build Date" intext:"System" intext:"allow_url_fopen" Date: 9-1-2018 Exploit Author: hehnope
Category: Files Containing Juicy Info
26 inurl:/wp-content/ai1wm-backups + wpress
inurl:/wp-content/ai1wm-backups + wpress
Category: Files Containing Juicy Info
27 ext:ppk ssh key -github.com -gitlab
ext:ppk ssh key -github.com -gitlab file contain SSH key ManhNho
Category: Files Containing Juicy Info
28 Ganglia Cluster Reports
These are server cluster reports, great for info gathering. Lesse, what were those server names again?
Category: Files Containing Juicy Info
29 ICQ chat logs, please...
ICQ (http://www.icq.com) allows you to store the contents of your online chats into a file. These folks have their entire ICQ directories online. On purpose?
Category: Files Containing Juicy Info
30 Financial spreadsheets: finance.xls
Hey! I have a great idea! Let\'s put our finances on our website in a secret directory so we can get to it whenever we need to!
Category: Files Containing Juicy Info
31 Financial spreadsheets: finances.xls
Hey! I have a great idea! Let\'s put our finances on our website in a secret directory so we can get to it whenever we need to!
Category: Files Containing Juicy Info
32 sQL data dumps
SQL database dumps. LOTS of data in these. So much data, infact, I\'m pressed to think of what else an ev1l hax0r would like to know about a target database.. What\'s that? Usernames and passwords you say? Patience, grasshopper.....
Category: Files Containing Juicy Info
33 mt-db-pass.cgi files

Category: Files Containing Juicy Info
34 AIM buddy lists

Category: Files Containing Juicy Info
35 phpinfo()

Category: Files Containing Juicy Info
36 robots.txt

Category: Files Containing Juicy Info
37 "This report was generated by WebLog"

Category: Files Containing Juicy Info
38 "produced by getstats"

Category: Files Containing Juicy Info
39 "generated by wwwstat"

Category: Files Containing Juicy Info
40 haccess.ctl (one way)

Category: Files Containing Juicy Info
41 haccess.ctl (VERY reliable)

Category: Files Containing Juicy Info
42 site:edu admin grades

Category: Files Containing Juicy Info
43 mystuff.xml - Trillian data files

Category: Files Containing Juicy Info
44 phpMyAdmin dumps

Category: Files Containing Juicy Info
45 phpMyAdmin dumps

Category: Files Containing Juicy Info
46 cgiirc.conf

Category: Files Containing Juicy Info
47 cgiirc.conf

Category: Files Containing Juicy Info
48 ipsec.secrets

Category: Files Containing Juicy Info
49 ipsec.secrets

Category: Files Containing Juicy Info
50 ipsec.conf

Category: Files Containing Juicy Info
Total Dorks : 576

Tawaran Buat Anda

Total Pengujung 0