In fact, it should have been released early. I am probably the first batch of people to sort out Google's skills in China. Later, sniper wrote Google hack, which made it even lazy. Now I am helping my wife find a paper, and the keyword matching is so tired. These skills are after I sort them out. If you are interested, you can ask for them directly.
Http: // www.feelids.com
By swap
The intra-site search address is:
Http://www.google.com/custom? Domains = (Here we want to search for the site, such as feelids.com)
You can select WWW and feelids.com to go in. Of course, you can select the website you want to search!
The hacker's dedicated information and data search address are:
Http://www.google.com/custom? Hl = XX-hacker
Here is the Google Keyword usage. To set it to Chinese, it is
Http://www.google.com/custom? Hl = ZH-CN
English is http://www.google.com/custom? Hl = en
Common Google keywords:
Foo1 foo2 (that is, association, such as searching XX Company XX beauty)
Operator: foo
Filetype: 123 type
Site: foo.com is more interesting than directly viewing the website and can get a lot of unexpected information.
Intext: foo
Intitle: fooltitle title
Allinurl: Foo searches for all related connections of XX website. (Required)
Links: Foo. You just need to know its link.
Allintilte: foo.com
We can help "-" "+" to adjust the search Accuracy
Search for a password directly: (quotes indicate exact search)
Of course, we can extend it to the above results for secondary search.
"Index of" htpasswd/passwd
Filetype: xls Username Password email
"Ws_ftp.log"
"Config. php"
Allinurl: Admin MDB
Service filetype: Pwd... or a pcAnywhere password suffix, such as "CIF"
More and more interesting, and more sensitive information
"Robots.txt" "disallow:" filetype: txt
Inurl: _ vti_cnf (the key index of FrontPage, the CGI library of the scanner generally has a location)
Allinurl:/MSADC/samples/selector/Showcode. asp
/../Passwd
/Examples/JSP/SNP/snoop. jsp
Phpsysinfo
Intitle: Index of/admin
Intitle: "documetation"
Inurl: search by multiple keywords such as 5800 (VNC port) or desktop Port
Webmin port 10000
Inurl:/admin/login. asp
Intext: powered by gbook365
Intitle: "php shell *" "enable stderr" filetype: PhP directly searches for phpwebshell
Foo.org filetype: Inc
IPSec filetype: Conf
Intilte: "error occurred" ODBC request where (select | insert) to put it bluntly, that is to say, you can directly look up the database for retrieval, for the current popular SQL injection, it will be developed.
Intitle: "php shell *" "enable stderr" filetype: PHP
"Dumping data for table" Username Password
Intitle: "Error Using hypernews"
"Server software"
Intitle: "http_user_agent = googlebot"
"Http_user_anget = googlebot" ths Admin
Filetype:. Doc site:. Mil classified
Check multiple keywords:
Intitle: config confixx Login Password
"Mydomain.com" Nessus report
"Report generated"
"Ipconfig"
"Winipconfig"
Google cache utilization (Hoho, the most influential thing), we recommend that you search for more "select all websites"
Special Recommendation: administrator users and other related things, such as names and birthdays ...... You can also use it as a dictionary.
Cache: foo.com
View similar results
First look for the website management background address:
Site: xxxx.com intext: Management
Site: xxxx.com inurl: Login
Site: xxxx.com intitle: Management
Site: a2.xxxx.com inurl: File
Site: a3.xxxx.com inurl: Load
Site: a2.xxxx.com intext: ftp ://*:*
Site: a2.xxxx.com filetype: ASP
Site: xxxx.com // obtain N second-level domain names
Site: xxxx.com intext: * @ xxxx.com // get n email addresses and the name of the email owner.
Site: xxxx.com intext: Phone Number // n
Intitle: "index of" etc
Intitle: "index of". sh_history
Intitle: "index of". bash_history
Intitle: "index of" passwd
Intitle: "index of" People. lst
Intitle: "index of" PWD. DB
Intitle: "index of" etc/shadow
Intitle: "index of" spwd
Intitle: "index of" Master. passwd
Intitle: "index of" htpasswd
"#-FrontPage-" inurl: Service. pwd
Allinurl: BBS data
Filetype: MDB inurl: Database
Filetype: Inc Conn
Inurl: Data filetype: MDB
Intitle: "index of" data
......
A collection of tips:
3) "http: // *: * @ www" domainname: Find some ISP sites and check the Virtual Host of the IP address of the other party.
3
4) auth_user_file.txt is not practical. It is too old.
5) the master list
6) intitle: "Welcome. to. squeezebox" is a special management system. Port 90 is enabled by default.
7) passlist.txt (a better way) Dictionary
8) "A syntax error has occurred" filetype: ihtml
9) Ext: PhP program_listing intitle: mythweb. program. Listing
10) intitle: Index. Of abyss. conf
11) Ext: NBE
12) intitle: "sww link" "Please wait ....."
13)
14) intitle: "freifunk. Net-status"-site: commando.de
15) intitle: "WorldClient" intext :"? (2003 | 2004) Alt-N technologies ."
17) intitle: Open-Xchange inurl: Login. pl
20) intitle: "site administration: Please log in" "site designed by emarketsouth"
21) ORA-00921: unexpected end of SQL command
22) intitle: "Yala: yet another LDAP administrator"
23) Welcome. To phpqladmin "Please login"-Cvsweb
24) intitle: "sww link" "Please wait ....."
25) inurl: "port_255"-htm
27) intitle: "WorldClient" intext :"? (2003 | 2004) Alt-N technologies ."
These are some new vulnerability techniques announced in 0days
Ext: PhP program_listing intitle: mythweb. program. Listing
Inurl: preferences. ini "[eMule]"
Intitle: "index of/cfide/" Administrator
"Access denied for user" "Using password"
Ext: PhP intext: "powered by phpnewman version": path/to/news/browse. php? Clang =.../../file/I/want
Inurl: "/becommunity/community/index. php? Pageurl ="
Intitle: "ASP fileman" resend-site: iisworks.com
"Enter IP" inurl: "php-ping.php"
Ext: conf inurl: rsyncd. conf-CVS-man
Intitle: private, protected, secret, secure, winnt
Intitle: "DocuShare" inurl: "DocuShare/dsweb/"-FAQ-gov-edu
"# MySQL dump" filetype: SQL
"Allow_call_time_pass_reference" "path_info"
"Certificate practice statement" inurl :( PDF | DOC)
LeapFTP intitle: "index. Of./" sites. ini modified
Master. passwd
MySQL history files
Nickserv registration passwords
Passlist
Passlist.txt (a better way)
Passwd
Passwd/etc (reliable)
People. lst
Psybnc config files
PWD. DB
Signin filetype: URL
Spwd. DB/passwd
Trillian. ini
WWWBoard WebAdmin inurl: passwd.txt wwwboard | Webadmin
"#-FrontPage-" Ext: Pwd inurl :( service | authors | Administrators | users) "#-FrontPage -"
Inurl: Service. pwd
"Autocreate = true Password = *"
"Http: // *: * @ www" domainname
"Index of/" "ws_ftp.ini" "parent directory"
"Liveice configuration file" Ext: CFG-site: sourceforge.net
"Powered by ducalendar"-site: duware.com
"Powered by duclassified"-site: duware.com
"Powered by duclassified"-site: duware.com "duware All rights reserved"
"Powered by duclassmate"-site: duware.com
"Powered by dudirectory"-site: duware.com
"Powered by dudownload"-site: duware.com
"Powered by elite Forum version *.*"
"Powered by link Department"
"Sets mode: + K"
"Powered by dupaypal"-site: duware.com
Allinurl: Admin MDB
Auth_user_file.txt
Config. php
Eggdrop filetype: User user
Etc (index.)
Ext: ini Eudora. ini
Ext: ini version =... Password
Ext: TXT inurl: unattend.txt
Filetype: Bak inurl: "htaccess | passwd | shadow | htusers"
Filetype: cfg mrtg "target [*]"-Sample-CVS-Example
Filetype: cfm "cfapplication name" Password
Filetype: conf oekakibbs
Filetype: conf SC _serv.conf
Filetype: conf slapd. conf
Filetype: config intext: appsettings "User ID"
Filetype: dat "password. dat"
Filetype: DAT wand. dat
Filetype: Inc dbconn
Filetype: Inc intext: mysql_connect
Filetype: Inc mysql_connect or mysql_pconnect
Filetype: INF sysprep
Filetype: inurl: "serv-u.ini"
Filetype: ini inurl: flashfxp. ini
Filetype: ini servudaemon
Filetype: ini wcx_ftp
Filetype: ini WS_FTP pwd
Filetype: LDB Admin
Filetype: log "see 'ipsec copyright"
Filetype: log inurl: "password. log"
Filetype: MDB inurl: users. MDB
Filetype: MDB wwforum
Filetype: netrc Password
Filetype: Pass pass intext: userid
Filetype: PEM intext: Private
Filetype: Properties inurl: DB intext: Password
Filetype: Pwd Service
Filetype: PWL
Filetype: Reg + intext: "DefaultUserName" + intext: "defaultpassword"
Filetype: Reg HKEY_CURRENT_USER sshhostkeys
Filetype: SQL ("values * MD" | "values * password" | "values * encrypt ")
Filetype: SQL ("passwd values" | "password values" | "Pass values ")
Filetype: SQL + "identified by"-CVS
Filetype: SQL Password
Filetype: URL + inurl: "ftp: //" + inurl :";@"
Filetype: xls Username Password email
Htpasswd
Htpasswd/htgroup
Htpasswd/htpasswd. Bak
Intext: "enable secret $"
Intext: "powered by web wiz journal"
Intitle: "index of" intext: connect. inc
Intitle: "index of" intext: globals. inc
Intitle: "index of" passwords modified
Intitle: dupics inurl :( Add. asp | default. asp | view. asp | voting. asp)-site: duware.com
Bytes ----------------------------------------------------------------------------------------------------------------------
Intitle: Index. Of intext: "secring. SKr" | "secring. PGP" | "secring. Bak"
Inurl: "GRC. dat" intext: "password"
Inurl: "slapd. conf" intext: "credentials"-manpage-"manual page"-MAN:-Sample
Inurl: "slapd. conf" intext: "rootpw"-manpage-"manual page"-MAN:-Sample
Inurl: "wvdial. conf" intext: "password"
Inurl:/DB/Main. MDB
Inurl: chap-secrets-CVS
Inurl: config. php dbuname dbpass
Inurl: filezilla. XML-CVS
Inurl: Lilo. conf filetype: conf password-tatercounter-bootpwd-man
Inurl: nuke filetype: SQL
Inurl: ospfd. conf intext: Password-Sample-test-tutorial-download route Configuration
Inurl: pap-secrets-CVS
Inurl: Perform filetype: ini
Inurl: secring Ext: Skr | Ext: PGP | Ext: Bak
Inurl: vtund. conf intext: Pass-CVS
Inurl: Zebra. conf intext: Password-Sample-test-tutorial-Download
"Generated by phpsystem"
"Generated by wwwstat"
"Host vulnerability Summary Report"]
"Http_from = googlebot" googlebot.com "server_software ="
"Index of"/"chat/logs" chat room
"Installed objects" inurl: Default. asp
"Mecury version" "infastructure group"
"Microsoft (r) Windows * (TM) version * drwtsn copyright (c)" Ext: Log
"Most submitted forms and scripts" "This section"
"Network Vulnerability Assessment Report"
"Not for distribution" Confidential
"Phone ***" "Address *" "E-mail" intitle: "curriculum vitae"
"PhpMyAdmin" "running on" inurl: "Main. php"
"Produced by getstats"
"Request details" "Control tree" "server variables"
"Robots.txt" "disallow:" filetype: txt
"Running in child mode"
"Sets mode: + P"
"Sets mode: + S"
"Thank you for your order" + receept
"This is a zooaza node"
"This report was generated by weblog"
(Filetype: Mail | filetype: EML | filetype: mbox | filetype: mbx) intext: Password | subject
(Inurl: "robot.txt" | inurl: "robots.txt") intext: disallow filetype: txt
-Site: php.net-"the PHP Group" inurl: Source inurl: URL Ext: PHP
FBR "Adobe Photoshop"
AIM Buddy lists
Allinurl:/examples/JSP/SNP/snoop. jsp
Allinurl: Servlet/snoopservlet
Cgiirc. conf
Data filetype: MDB-site: Gov-site: Mil
Exported email addresses
Ext: ASP inurl: pathto. asp
Ext: CGI inurl: editcgi. cgi inurl: file =
Ext: conf inurl: rsyncd. conf-CVS-man
Ext: conf nocatauth-CVS
Ext: dat bpk. dat
Ext: gho
Ext: ini intext: ENV. ini
Ext: ldif
Ext: log "software: Microsoft Internet Information Services *.*"
Bytes ------------------------------------------------------------------------------------------
Ext: MDB inurl: *. mdb inurl: fpdb shop. MDB
Filetype: BKF
Filetype: BLT "buddylist"
Filetype: BLT + intext: screenname
Filetype: CFG auto_inst.cfg
Filetype: conf inurl: firewall-intitle: CVs
Filetype: config web. config-CVS
Filetype: CTT messenger
Filetype: FP fp
Filetype: FP-site: Gov-site: Mil-"CVS log"
Filetype: INF inurl: capolicy. inf
Filetype: LIC intext: Key
Filetype: MYD-CVS
Filetype: NS
Filetype: ora
Filetype: ora tnsnames
Filetype: PDB backup (pilot | pluckerdb)
Filetype: Pot inurl: John. Pot
Bytes ------------------------------------------------------------------------------------------------------------------
Filetype: PST inurl: "Outlook. Pst"
Filetype: PSt-from-to-date
Filetype: qbb
Filetype: RDP
Filetype: Reg "Terminal Server Client"
Filetype: VCs
Filetype: WAB wab
Filetype: xls-site: Gov inurl: Contact
Filetype: xls inurl: "email.xls"
Financial spreadsheets: finance.xls
Financial spreadsheets: finances.xls
Ganglia cluster reports
Haccess. CTL (one way)
Haccess. CTL (very reliable)
ICQ Chat logs, please...
Iletype: log cron. Log
Intext: "session start *****: *: **" filetype: Log
Intext: "Tobias oetiker" "Traffic Analysis"
Intext :( password | passcode) intext :( username | userid | user) filetype: CSV
Intext: Gmail invite intext: http://gmail.google.com/gmail/a
Intext: sqlitemanager inurl: Main. php
Intitle: "Apache: status" (inurl: Server-status | inurl: status.html | inurl: apache.html)
Intitle: "appserv open project"-site: www.appservnetwork.com
Intitle: "ASP stats Generator *. *" "ASP stats generator" "-weppos"
Intitle: "FTP root"
Intitle: "index of" + MYD size
Intitle: "index of"-inurl: maillog size
Intitle: "index of" cookies.txt size
Intitle: "index of" mysql. conf or mysql_config
Intitle: "index of" upload size parent directory
Intitle: "index. Of". Diz. nfo last modified
Intitle: "multimon ups status page"
Intitle: "php advanced transfer" (inurl: index. php | inurl: showrecent. php)
Intitle: "PHPMyExplorer" inurl: "index. php"-CVS
---------------------------------------------------------------------
Intitle: "Statistics of" "advanced web statistics"
Intitle: "system Statistics" + "system and Network Information Center"
Intitle: "usage statistics for" "generated by Webalizer"
Intitle: "WBEM" Compaq login "Compaq Information Technologies Group"
Intitle: "Web server statistics ****"
Intitle: "Web Server Status" ssh Telnet
Intitle: "Welcome. to. squeezebox"
Intitle: Admin intitle: Login
Intitle: Index. Of "Apache" "server"
Intitle: Index. of cleanup. Log
Intitle: Index. Of dead. Letter
Intitle: Index. Of inbox
Intitle: Index. Of inbox dbx
Intitle: Intranet inurl: Intranet + intext: "phone"
Inurl: "/axs/ax-admin.pl"-script
Inurl: "/cricket/Grapher. cgi"
Inurl: "bookmark.htm"
Inurl: "cacti" + inurl: "graph_view.php" + "Settings Tree View"-CVS-rpm
Inurl: "newsletter/admin /"
Inurl: "newsletter/admin/" intitle: "newsletter admin"
Inurl: "putty. Reg"
Inurl: "smb. conf" intext: "workgroup" filetype: conf Conf
Bytes ----------------------------------------------------------------------------------------------------------
Welcome to ntop!
"Adding new user" inurl: addnewuser-"There are no domains"
(Inurl:/cgi-bin/. Cobalt/) | (intext: "Welcome to the Cobalt RaQ ")
Filetype: PhP haxplorer "server files Browser"
Intitle: "Web Data Administrator-login"
inurl: connectcomputer/precheck.htm | inurl: Remote/logon. aspx
PHP shell (unprotected)
phpkonsole phpshell filetype: PHP-echo
Public PHP filemanagers
"index of"/Picasa. INI
"index of" inurl: recycler
"index of" rar r nfo modified
"intitle: Index. of/"stats merchant CGI-* ETC
" powered by invision power File Manager "(inurl: login. PHP) | (intitle: "browsing directory/")
"Web file browser" "use regular expression"
filetype: ini desktop. INI intext: mydocs. DLL
intext: "D. aspx? ID "| inurl:" D. aspx? ID "
intext:" powered by: totalindex "intitle:" totalindex "
intitle: "album Permissions" "users who can modify photos" "everybody"
intitle: "directory listing for" intext: tomcat-intitle: tomcat
intitle: "HFS/" + "httpfileserver"
intitle: "index of *" inurl: "My shared folder" size modified
"File Upload Manager v. "" RENAME to "
Ext: ASP "powered by duforum" inurl :( messages | details | login | default | register)-site: duware.com
Ext: ASP inurl: dugallery intitle: "."-site: dugallery.com-site: duware.com
Ext: CGI inurl: ubb_test
Ezboo "Administrator panel"-CVS
Filetype: CGI inurl: cachemgr. cgi
Filetype: CNF my. CNF-CVS-Example
Filetype: Inc intext: setcookie
Filetype: PhP inurl: "viewfile"-"index. php"-"idfil
Filetype: WSDL
Intitle: "ASP fileman" resend-site: iisworks.com
Intitle: "index of/" modified php.exe
Intitle: "phpremoteview" filetype: PhP "name, size, type, modify"
Inurl: "wwwadmin. pl" intitle: "wwwadmin"
Inurl: "nph-proxy.cgi" "start browsing through this CGI-based proxy"
Inurl: "plog/register. php"
Inurl: CGI. ASX? Storeid
Inurl: robpoll. cgi filetype: CGI
The master list
"More info about metacart free"