[Tutorial] Google Dorks
Attention
This article is purposed for educational and sharing knowledge only, any crime or chaotic behavior to the project or another external system inside or outside office environment, etc is not my responsibility.
Intro
Actually what i am going to post this time is an old trick that most of internet hardcore player should probably know, it is a double edged trick, it's up to you whether to use it as a tool for help or as a tool for hack.
Okay, do you know that Google is not only positioning itself as a regular search engine? Do you know that with proper query you will be able to extract delicious information? Do you know that with proper knowledge and tool(s) you will be able to earn some cash (of course it's illegal dude, FYI only)?
I am gonna tell you how, but only the basic of it, you have to explore it by yourself and (perhaps) install various layered security engine on your machine to prevent security team (Well, yeah we just want to know for the sake of knowledge, but, well..it won't be hurt to have extra precaution right?)
Tool(s)
A browser connected to internet (yeah..that's it bro)
- Google Chrome, Firefox, etc
VPN (It would be better to have paid VPN rather than free one)
- http://www.hotspotshield.com/
IP Address randomizer :
- https://addons.mozilla.org/en-US/firefox/addon/ipflood/
- http://www.softpedia.com/get/Network-Tools/IP-Tools/Ip-Changer.shtml
Processes
Below are commands that you can use, simply type them in Google toolbar or go to www.google.com and type it there
site : Returned website of specific domain
intitle : It restricts the results to pages whose title contain specified word/phrase, for example, we write intitle:admin login, it means it will return only those pages whose title contains word 'admin' and word 'login' can be in anywhere in page.
inurl : It restricts the results to sites whose URL's contains specified phrase.
related : It returns the websites similar to specified websites.
cache : It returns the cached webpage that is kept with google
Real Example
Combining the above keywords can return some yum yum information, i'm going to show you the real example (hey, theory is useless if we cannot implement it right?). So fire up your browser and type this command:
ext:sql intext:@hotmail.com intextpassword
It means we want to retrieve information that has "sql" extension in it and contain "@hotmail.com" and "password" in the page. After that, click one link (any), then you will perhaps find similar condition as below:
Take the hashed password, and the fire up online MD5 cracker, such as http://md5crack.com/ then you'll get the pasword. I believe this exploit only applied to particular website only, since the name of the websites are mostly local business somewhere, not giant company.
Play around with the queries, and uh..don't misuse it ok?I just showed the example, i didn't do anything afterwards (big grin)
Epilogue
You should be (at least) know what is dorks and why do i called it double edged knife before, it would be better if after you read this you recalculate your account(s) or perhaps your site(s) to put extra security or fix some crack in them. Remember, use this knowledge for good purpose, if you go the other way, all i can say is good luck (smile)
References
If you want to know it deeper and further, i recommend take some of your time and read below site(s):
- http://www.exploit-db.com/google-dorks/
- http://www.xmarks.com/site/www.exploit-db.com/google-dorks/
- http://1337mir.com/hacking/2013/10/google-dorks-sql-injection/
This article is purposed for educational and sharing knowledge only, any crime or chaotic behavior to the project or another external system inside or outside office environment, etc is not my responsibility.
Intro
Actually what i am going to post this time is an old trick that most of internet hardcore player should probably know, it is a double edged trick, it's up to you whether to use it as a tool for help or as a tool for hack.
Okay, do you know that Google is not only positioning itself as a regular search engine? Do you know that with proper query you will be able to extract delicious information? Do you know that with proper knowledge and tool(s) you will be able to earn some cash (of course it's illegal dude, FYI only)?
I am gonna tell you how, but only the basic of it, you have to explore it by yourself and (perhaps) install various layered security engine on your machine to prevent security team (Well, yeah we just want to know for the sake of knowledge, but, well..it won't be hurt to have extra precaution right?)
Tool(s)
A browser connected to internet (yeah..that's it bro)
- Google Chrome, Firefox, etc
VPN (It would be better to have paid VPN rather than free one)
- http://www.hotspotshield.com/
IP Address randomizer :
- https://addons.mozilla.org/en-US/firefox/addon/ipflood/
- http://www.softpedia.com/get/Network-Tools/IP-Tools/Ip-Changer.shtml
Processes
Below are commands that you can use, simply type them in Google toolbar or go to www.google.com and type it there
site : Returned website of specific domain
intitle : It restricts the results to pages whose title contain specified word/phrase, for example, we write intitle:admin login, it means it will return only those pages whose title contains word 'admin' and word 'login' can be in anywhere in page.
inurl : It restricts the results to sites whose URL's contains specified phrase.
related : It returns the websites similar to specified websites.
cache : It returns the cached webpage that is kept with google
Real Example
Combining the above keywords can return some yum yum information, i'm going to show you the real example (hey, theory is useless if we cannot implement it right?). So fire up your browser and type this command:
ext:sql intext:@hotmail.com intextpassword
It means we want to retrieve information that has "sql" extension in it and contain "@hotmail.com" and "password" in the page. After that, click one link (any), then you will perhaps find similar condition as below:
Take the hashed password, and the fire up online MD5 cracker, such as http://md5crack.com/ then you'll get the pasword. I believe this exploit only applied to particular website only, since the name of the websites are mostly local business somewhere, not giant company.
Play around with the queries, and uh..don't misuse it ok?I just showed the example, i didn't do anything afterwards (big grin)
Epilogue
You should be (at least) know what is dorks and why do i called it double edged knife before, it would be better if after you read this you recalculate your account(s) or perhaps your site(s) to put extra security or fix some crack in them. Remember, use this knowledge for good purpose, if you go the other way, all i can say is good luck (smile)
References
If you want to know it deeper and further, i recommend take some of your time and read below site(s):
- http://www.exploit-db.com/google-dorks/
- http://www.xmarks.com/site/www.exploit-db.com/google-dorks/
- http://1337mir.com/hacking/2013/10/google-dorks-sql-injection/
Very informative blog, thanks for sharing.
ReplyDeleteMacro Recorder Crack
Charles Pro Crack
Screenshot Studio Crack