Update GOOGLE DORK 2020 FIX
Daftar Google Dorks "Google Hacking" pada dasarnya diindikasikan untuk menarik data sensitif Google yang menerapkan istilah pencarian lanjutan yang mendorong pengguna untuk menjelajahi indeks situs web tertentu, tipe data khusus, dan beberapa informasi menarik dari Situs Web tanpa jaminan.
- HashKiller Helper (Auto Crack Hash MD5/SHA1/MySQL,etc)
- Simple Sqli Dork Scanner v2.1
- SCRIPT Keren Buat Deface gratis
Google Dorks dapat mengungkapkan beberapa informasi yang tidak terbayangkan seperti alamat email dan akun, kredensial masuk, data sensitif, kerentanan situs web, dan bahkan informasi bisnis (mis. Data kartu pembayaran).
Di sini dapat melihat contoh untuk mengetahui bagaimana Google Darks diterapkan oleh peretas untuk mencapai data sensitif dari situs web tertentu.
- “inurl: domain/” “dorks tambahan
Seorang hacker akan dengan mudah berlatih dalam parameter yang diinginkan sebagai berikut:
- inurl = URL situs yang ingin Anda tanyakan
- domain = domain untuk situs tersebut
- dorks = sub-bidang dan parameter yang ingin dipindai oleh peretas
Cara terbaik untuk menggunakan Google dorks secara profesional adalah dengan menemukan kerentanan di situs web pribadi Anda.
Kami juga dapat mempraktekkan pencarian lain yang diajukan selain URL yang akan berfungsi untuk mengungkapkan banyak data mengenai suatu situs web.
intitle:
inurl:
intext:
define:
site:
phonebook:
maps:
book:
info:
movie:
weather:
related:
link:
inurl:
intext:
define:
site:
phonebook:
maps:
book:
info:
movie:
weather:
related:
link:
Beberapa Contoh:
info: Permintaan [info:] akan memberikan beberapa informasi yang Google miliki tentang halaman web itu. Misalnya, [info: www.google.com] akan menampilkan informasi tentang beranda Google. Perhatikan bahwa tidak ada tempat di antara "info:" dan URL halaman web.
link: Permintaan [tautan:] akan mencantumkan laman web yang berisi tautan ke laman web khusus. Misalnya, [link: www.google.com] akan mencantumkan laman web yang memiliki tautan yang mengarah ke beranda Google. Perhatikan bahwa tidak ada tempat di antara "link:" dan URL halaman web.
site: Jika Anda menambahkan [site:] dalam permintaan Anda, Google akan membatasi hasilnya ke situs web di domain yang disediakan. Misalnya, [situs bantuan: www.google.com] akan menemukan halaman bantuan di dalam www.google.com. [situs bantuan: com] akan mendapatkan halaman tentang bantuan dalam URL .com. Perhatikan bahwa tidak ada ruang antara "site:" dan domain.
inurl : Jika Anda menambahkan [inurl:] di kueri Anda, Google akan membatasi hasil pada catatan termasuk kata itu di URL. Misalnya, [inurl: pencarian google] akan mengirimkan dokumen yang menyebutkan istilah "google" di URL mereka, juga menyebutkan kata "search" di mana saja di kertas (URL atau tidak).
" Daftar Dorks Google Lanjutan dan Terbaru 2020"
intitle:index.of "cacert.pem" |
intitle:"Welcome to JBoss" |
inurl:concrete/config/ |
intitle:"index of" "*php.swp" |
intitle:"index of" "htdocs.zip" |
intitle:"index of" "env.bak" |
intitle:"index of" "smtp.log" |
inurl:ReportViewer.aspx |
inurl:/swagger/index.html |
intitle: index of "*db.tar.gz" |
intext:"username=" AND "password=" ext:log |
intitle:"index of/" "db.sql" |
intitle:index.of "awsconfig.json" |
intitle:index.of "db.zip" |
intitle:VMware intext:"VMware, Inc. All rights reserved." AND "Powered by VMware Studio" |
site:bamboo.*.* ext:action build |
intext:"SECRET_KEY" ext|py inurl:mysite -site:stackoverflow.com -site:github.com |
intitle:index.of "backwpup" |
intitle:index.of "keys.txt" |
intitle:"index.of" intext:"access.txt" |
intitle:"index.of" intext:"api.txt" |
intitle:index.of "creds.txt" |
intext:"Security is Off" intitle:"Namenode information" |
intitle:VMware inurl:5480 |
inurl:"saw.dll" AND intitle:"Sign In" |
intitle:"RabbitMQ Management" inurl:15672 |
intext:"Rubicon Communications, LLC (Netgate)" intitle:"Login" |
intitle:"Welcome to nginx!" intext:"Welcome to nginx on Debian!" intext:"Thank you for" |
intitle:"index of" share.passwd OR cloud.passwd OR ftp.passwd -public |
krb.conf OR krb.realms intitle:"index of" -public -archive -packages -pub |
accdb OR accde intitle:"index of" -pub -google -books |
filetype:env intext:APP_NAME |
Firmware Version intitle:"iLO" ProLiant Login -hpe.com -update |
-pub -pool intitle:"index of" db.key OR server.key OR ftp.key OR exchange.key OR host.key OR mail.key |
intitle:"index of" "/Cloudflare-CPanel-7.0.1" |
intitle:"index of" "Served by Sun-ONE" |
intitle:"index of" "ftp.log" |
intitle:"index of" "sms.log" |
-pool intitle:"index of" wget-log -pub |
inurl:check_mk/login.py |
intitle:Check_MK Multisite Login |
intitle:"index of" lesshsQ/ OR .lesshst/ -pool -pub |
intitle:"index of" .zshrc~ OR .zshrc OR .zshenv OR .zshenv~ -pool -public |
intitle:"index of" .oracle_jre_usage/ |
intitle:"index of" crontab.conf |
intitle:"index of" ticket.conf |
-pub -pool intitle:"index of" squirrelmail/ |
-pub -pool intitle:"index of" vagrantfile -"How to" |
intitle:"index of" api_key OR "api key" OR apiKey -pool |
intitle:"index of" domain.key -public |
-pub -pool intitle:"index of" "Served by" "Web Server" |
site:*/AdminPanel.php |
inurl:memberlogin.php |
intitle:"Sign in" site:*/idaas/ |
key OR key.jar intitle:"index of" webstart |
intitle:"index of" "server at" |
fetchmailrc intitle:"index of" -linux |
intitle:rsview32 ext:asp |
intext:"Please enable JavaScript in your browser before using Citrix Receiver." AND intext:www.citrix.com |
intitle:"kentico database setup" |
inurl:/cmsinstall/install ext:aspx |
inurl:"_notes/dwsync.xml" |
intitle:"WSO2 Management Console" |
intitle:"webview login" alcatel lucent |
intitle:"LABVANTAGE Logon" |
site:*/cgi/domadmin.cgi |
inurl:":8080/login.jsp?os_destination=" |
intitle:"index of" "wp-security-audit-log" |
intext:"powered by codoforum" inurl:"/user/login" |
inurl:"/index.php?enter=guest" |
intitle:"Zabbix" intext:"username" intext:"password" inurl:"/zabbix/index.php" |
inurl:"/index.php?reconnect=1" |
inurl:"8080/dashboard/" intitle:"Dashboard" |
inurl:":8080/login" |
intitle:"Home - Mongo Express" |
intitle:"Check Point - Login" |
inurl:"/webis/webis_login.html" |
MailChimp API error: ext:log |
index of /storage/logs/ |
intitle:"Pfsense - Login" |
intitle:"WHMCS - Login" inurl:/admin/login.php |
intitle:"WebSite X5 Manager" inurl:/admin/login.php |
inurl:admin/login.php?login= intitle:"CMS" |
inurl:/login.aspx site:com.tr intitle:yönetim |
intext:"Service provided by Horos." |
inurl:"/fmi/webd" intitle:"FileMaker WebDirect" |
[ipn] ext:log |
site:*/siteminderagent/forms/login.fcc |
inurl:"web.config" & intext:"Data Source" & "User ID" & "Password" & "connectionString" & ext:config -git |
Navicat MySQL Data Transfer filetype:sql |
intext:"civicplus" "Login" |
intitle:"TMSoft MyAuth Gateway 3" -DOWNLOAD |
intitle:MK-AUTH :: CONTEUDO RESTRITO -site:mk-auth.com.br |
inurl:10443/remote/login |
ext:sql intext:@gmail.com intext:e10adc3949ba59abbe56e057f20f883e |
site:*/my.policy |
inurl:"index of" wso |
filetype:"xls | xlsx | doc | docx | ppt | pptx | pdf" site:gov "FOUO" | "NOFORN" | "Confidential" |
inurl:login.jsp intitle:login |
intext:"@outlook.com" ext:log |
inurl:CGI/Java/Serviceability?adapter=device.statistics.device |
intitle:"index of" "mail.log" |
intitle:index.of "chroot.conf" |
intitle:odoo inurl:login "powered by odoo" "manage databases" |
intitle:index of "uploads" |
intext:"@gmail.com" ext:log |
intitle:"freedom is real - 1945" |
intitle:index.of "access.conf" |
intitle:"index of" "ssh.yml" |
intitle:index.of "htaccess.txt" |
intitle:"index of" "ws_ftp.log" |
inurl:"/index.php?title=Special:Userlogin" |
inurl:"/index.php?content=login" |
inurl:"/index.php?p=login" |
inurl:"/index.php?pageID=login" |
inurl:"/index.php/main/login" |
intitle:"index of" "databases.yml" |
intitle:"index of" "db.conf" |
inurl:elmah.axd ext:axd |
intitle:"Error log for /LM/" |
site:*/cgi-bin/luci intext:"Authorization Required" |
site:*/auth_index.htm?lang=kr&loginvalue=0&port=0 |
inurl:"/Admin/Forget.php" |
site:*/admin/password/reset |
site:*/account/reset |
intext:"index of" intext:..bak intext:config |
inurl:"/password.php" intitle:"Forgot your password" |
site:* index.of: /android/manifest.xml |
inurl:/webconsole/webpages/login.jsp |
db_password filetype:env -site:github.com -git |
intitle:"index of" inurl:ftp intext:logs |
intitle:index.of "private-key.pem" |
inurl:.elasticbeanstalk.com/admin |
intitle:Metabase inurl:/dash |
accounts.xlsx ext:xlsx |
site:*/cb-forgot-login |
intitle:"Marshall VS Server" |
intitle:index.of "userpass.txt" |
intitle:index.of "credential.txt" |
intitle:index.of "key.txt" |
intitle:index.of "system.db" |
inurl:"index.cfm?action=" intext:"Exception in onError" |
redash inurl:/org_slug |
inurl:"/errors/report.php" intext:"There has been an error processing your request" |
inurl:"/wp-login.php?action=lostpassword" |
intitle:index.of "database.db" |
intitle:"Pandora FMS mobile" |
site:*/account/lost_password |
site:*/logs/default.htm |
site:mypublicinbox.com intitle:email |
intitle:"Index of" wp-upload |
intitle:"Index of" password.txt |
intitle:"API Publisher- Login" |
site:passport.*.*/login |
intitle:"Cacti" AND inurl:"/monitor/monitor.php" |
intitle:"netdata dashboard" AND intext:"Costa Tsaousis" |
site:*/Dashboard/ intitle:"login" |
site:watch.*.*/login |
intitle:"Dashboards" AND inurl:"/zabbix/zabbix.php?action=dashboard.list" |
site:*.freshservice.com/support/solutions |
site:* index of: /config |
site:*/loginportal/ intitle:"login" |
inurl:"/index.php?action=login" |
site:*/password/remind |
inurl:"BasicAuthenticator:LOCAL" |
inurl:"/showLogin.cc?isMobile=false" |
inurl:"apex/f?p=" |
site:* index of: *.exe |
intitle:"Index of" secret |
site:*/oauth/authenticate |
inurl:"/index.php?route=account/login" |
inurl:"/index.php?gt=member/login" |
inurl:"/index.php?r=site/login" |
inurl:"/index.php/site/login" |
inurl:"/.vscode/sftp.json" |
inurl:"/.vscode/ftp-sync.json" |
intitle:"Index Of" intext:sftp-config.json |
inurl:/userlogin |
inurl:/customerlogin |
inurl:/clientlogin |
inurl:/studentlogin |
inurl:/stafflogin |
site:*/usercp.php |
inurl:"/index.php?page=login" |
intitle:"index of" "/etc/mysql/" |
intext:{{szErrorTip}} inurl:/doc/page/login.asp |
inurl:/wp-content/uploads/ninja-forms/ intitle:"index of" |
intitle:"index of" "web.config.txt" |
site:*/wp-admin/maint/repair.php intext:"define(WP_ALLOW_REPAIR,true);" |
site:*/wp-includes/Requests/php_errorlog |
site:*/account/preferences |
Powered by vBulletin Version 5.5.4 |
site:*/request-password-reset |
site:*/cgi-sys/defaultwebpage.cgi intext:"SORRY!" |
site:*/wp-settings.php |
inurl:/dana-na/ filetype:cgi |
site:*/wp-admin/user-edit.php |
site:*/wp-admin/install.php intitle:WordPress Installation |
intext:Powered By vBulletin 5.5.4 inurl:forum. |
site:*/cgi-sys/suspendedpage.cgi intitle:"Account Suspended" |
site:*/logs/error.log |
site:*/server-status intext:"Apache server status for" |
site:*/*/conf/httpd.conf |
intitle:index.of "users.db" |
site:*/pwdform.htm |
inurl:credentials.txt -github -git -gitlab |
site:*/oauth2/authorize |
intitle:index.of "admin.db" |
intitle:index.of "admin" filetype:sql |
indexof:backup/web.config |
site:* intitle:"reset password" |
site:ftp.*.* index of: manifest.xml |
indexof:backup/mysql |
inurl:webmail/src/login.php |
inurl:"/prweb/prwebLDAP1/" |
index.of "crossdomain.xml" |
intitle:"login" site:welcome.*.* |
site:*/Shibboleth.sso/SAML2/POST |
site:*/casAuthn/login.php |
site:*/authzssl/forget_password |
indexof:.htaccess |
contrasena filetype:sql -github.com |
intitle:"index of" inurl:/*sql* filetype:log |
inurl:"index.php?db=" |
intitle:"index of" "debian.conf" |
inurl:/application/config/database.php* |
intitle:"index of" "/mysql.log" |
site:*/404/404.html intitle:"404" |
site:*/index_signin.php |
site:*/authUpdate intitle:"Account Access Help" |
inurl:"/usp-core/app/authUpdate" |
site:*:8443/login_up.php |
intext:"Please log on to use the mikrotik hotspot service" intitle:"mikrotik hotspot >login" -github -site:mikrotik.com |
intitle:index.of./.htaccess |
site:cpanel.*.* intitle:"login" -site:forums.cpanel.net |
intitle:"openshift web console" inurl:console inurl:/console |
site:*/sitemap/sitemap.xml |
site:*/nms/login intitle:"UNMS" |
inurl:"/phpmyadmin/user_password.php" -inurl:git |
inurl:/wp-admin/includes/plugin-install.php |