Some Google Tricks / Hacks

Everyone knows google in the security sector...and what a powerful tool it is,just by entering certain search strings you can gain a vast amount of knowledgeand information of your chosen target...often revealing sensitive data...thisis all down to badly configured systems...brought on by sloppy administrationallowing directory indexing and accessing , password files , log entrys ,files , paths ,etc , etc
Search Tips
so how do we start ?
the common search inputs below will give you an idea...for instance if youwant to search for the an index of "root"
in the search box put in exactly as you see it below


Search Strings :


"Index of /admin"
"Index of /password"
"Index of /mail"
"Index of /" +passwd
"Index of /" +password.txt
"Index of /" +.htaccess
index of ftp +.mdb allinurl:/cgi-bin/ +mailto

administrators.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index

allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov

inurl:passwd filetype:txt
inurl:admin filetype:db
inurl:iisadmin
inurl:"auth_user_file.txt"
inurl:"wwwroot/*."

top secret site:mil
top secret site:mil
confidential site:mil

allinurl: winnt/system32/ (get cmd.exe)
allinurl:/bash_history

intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"index of" passwd
intitle:"index of" people.lst
intitle:"index of" pwd.db
intitle:"index of" etc/shadow
intitle:"index of" spwd
intitle:"index of" master.passwd
intitle:"index of" htpasswd
intitle:"index of" members OR accounts
intitle:"index of" user_carts OR user_cart


Let me show how it works.

1# Enter the search string in the search box of google.
2# Now we check search results one by one .


Here we see a live traffic cam installed somewhere in US

If you enjoyed this post, make sure you subscribe to my regular Email Updates!