Summary of website background search methods (Men_Si insights)

BY Men_Si

Summary of some methods... I have written some omissions. Please point them out when you pass.

Why can't I find a user password in the background? I often use theme directly.

A Dictionary Lookup Method

We need to develop a small habit of recording some uploaded addresses, backend addresses, table fields, and so on.

You can also go to some dictionaries collected by others, and scan them with tools such as wwwscan and D. However, the chances of success are not

Very high (generally, management is based on their own habits) Of course, there is always a benefit to scan .. maybe it will scan to the background or

Upload path ..

2. Tool Scanning

In fact, the above tools are also used to introduce several commonly used tools:

Acunetix Web Vulnerability

Jsky

Intelliitamper

Chinese kitchen knife

And so on... this is not provided here, you can go to www.2cto.com/softdownload, of course there are N more to mention... some site directory information will be saved

Robots.txt can be used to check whether there is a... or add it to the dictionary.

Google Baidu Method

In fact, today is to say this method... syntax site: www.men-si.com inurl: xx (keyword)

This is what I often use. Of course, I only want to talk about this one here. There are other things. I can use google hack together ..

It may be better to use an instance. Purpose:Www.za.com

Site: www.zao.com inurl: asp this is to list all included asp pages... if the Site is too large, find the dead person ..

From this, we can extend to some websites to find all pages indexed by Baidu, google, etc.

Face... we won't mention it here. But let's see. If the site is too big, we will all turn over.

So we can make it more accurate... site: www.za.com inurl: admin, of course, here admin is not used

:

Let's change the keyword inurl: login. asp... index. asp. and so on ..