Google search:
intitle:”freePBX administration” inurl:admin -ext:pdf
Archive for the ‘google’ Category
Asterisk vulnerability with google
June 7, 2008Jabber
March 1, 2008
Jabber es un protocolo libre para mensajería instantánea, basado en el estándar XML y gestionado por XMPP Standards Foundation. La red de Jabber está formada por miles de grandes y pequeños servidores en todo el mundo, interconectados por Internet. Habitualmente la red es utilizada por alrededor de un millón de personas.
Es el proyecto más aceptado como la alternativa libre al sistema MSN Messenger de Microsoft, al AOL o al Yahoo Messenger. Aunque es un protocolo bastante minoritario, está creciendo más cada día, gracias a los usuarios y a Google , que ha creado un cliente de mensajería instantánea que utiliza Jabber, Google Talk.
Installing the Jabber Server
Cualquiera puede instalar un jabber server, aqui hay una pagina web que enseña lo basico de como hacerlo: http://www.openp2p.com/pub/a/p2p/2002/01/18/jabber_chapter3.html
The Jabber server package can be obtained from the Jabber project site, http://www.jabber.org; the 1.4.1 version is available in the downloads area: http://download.jabber.org/dists/1.4/final/jabber-1.4.1.tar.gz The tarball If you don’t want to compile the server yourself, you can also download prebuilt binaries for some of the platforms already mentioned, from http://download.jabber.org. Once you have downloaded the Jabber server tarball, you need to unpack it, configure the build environment, and compile the server. The general idea is that the Jabber server will be compiled and run from wherever you decide to unpack it; that is, there is no separate “install” step. For this reason, and because it’s also often useful to be able to install and start up a different version of the Jabber server for testing and comparisons, create a generic The Jabber server does not need to be and should not be run as Once you’ve created the generic Jabber server directory, switch to the new Jabber server administration user Examining the contents of the as well as a number of directories that contain the source code. The first step is to run the to determine your platform’s compiler settings. If you want SSL support in the Jabber server, run the script with the – -enable-ssl switch: If you specified the – -enable-ssl switch, the Next, it will try to determine whether you have If Finally, after extra platform-specific compiler settings are determined, a shell script to set the build environment variables is created with the name Example 3-1 shows typical output from the jabber-1.4.1.tar.gz contains everything that you need to get a Jabber server up and running.[2] Previous versions of the Jabber server came in multiple packages; it was necessary to separately obtain and install GNU’s portable threads library (pth) and the asynchronous DNS package (ADNS), as well as obtaining and installing various Jabber-specific libraries such as libxode, libjabber, and libetherx. Now some of these libraries and packages have become obsolete as far as the Jabber server is concerned (ADNS and libetherx) and others have been combined into the main Jabber server tarball. Installing the Server
jabber directory somewhere central but local, for example in /usr/local/: yak:/usr/local# mkdir jabber
root; so create a new user jabber(group jabber) to be used as the Jabber server administrator and make that user the owner of the generic Jabber server directory:
yak:/usr/local# groupadd jabber
yak:/usr/local# useradd -g jabber -d /usr/local/jabber jabber
yak:/usr/local# passwd jabber
Changing password for jabber
Enter the new password (minimum of 5, maximum of 127 characters)
Please use a combination of upper and lower case letters and numbers.
New password: ********
Re-enter new password: ********
Password changed.
yak:/usr/local# chown jabber:jabber jabber
yak:/usr/local#jabber, unpack the tarball you downloaded, and enter the resulting directory:
yak:/usr/local# su - jabber
yak:~$ tar xzf jabber-1.4.1.tar.gz
yak:~$ cd jabber-1.4.1/
yak:~/jabber-1.4.1$Running the Configure Server
jabber-1.4.1 directory, we see the following files:
configure (the configuration script) jabber.xml (the server configuration file) Makefile (for compiling the Jabber server) README (some basic instructions) UPGRADE (information on upgrading from an earlier server version) configure script:
yak:~/jabber-1.4.1$ ./configure
yak:~/jabber-1.4.1$ ./configure --enable-sslconfigure script looks for your SSL installation and adds the appropriate compiler flags. If it doesn’t find your SSL installation, it says so and your Jabber server is compiled withoutSSL support. pth installed and if so will use the pth-config command to glean the extra compiler options for building the Jabber server. pth is required, so if it isn'talready installed, it will be set up within your current jabber-1.4.1 directory tree (as pth is included in the jabber-1.4.1.tar.gz tarball) and the appropriate compiler options added. pth is set up during the course of running configure, you may see a message: “Now please type 'make' to compile. Good luck.“, which comes at the end of the pth configure procedure; you can ignore this because there is only one make step, for the Jabber server, that must be carried out as we are merely preparing the pth build environment for binding into the Jabber Server build. platform-settings. This is used in the next step. configure script. Example 3-1. Typical output from configure
Running Jabber Configure
========================
Getting pth settings... Done.
Setting Build Parameters... Done.
Generating Settings Script... Done.
You may now type 'make' to build your new Jabber systcode.
Athena: otra herramienta que aprovecha la potencia de google
February 23, 2008Bastante sencilla de utilizar, se instala y se carga un xml con las consultas especiales de google (inlcuso hay un xml de yahoo), se puede expandir la base de datos e incluso personalizarla.
Sacandole el jugo a google
February 16, 2008API para busquedas en google: http://api.google.com
Registrado permite hacer mas de 1000 busquedas diarias.
Google hacking database: http://johnny.ihackstuff.com/ghdb.php
Witko: http://www.sensepost.com
Instalar: WinHTTrack http://www.httrack.com
Instalar: HTTprint http://www.net-square.com
1.- Poner datos de proxy (si existe obviamente)
2.- Indicar directorio de ejecutable httrack. Este es el mirror de la web a investigar
3.- Indicar directorio de httprint para hacer el fingerprint
4.- Actualizar dos bases de datos: Nitko y GHDB (google hack database)
Jux2 es un metabuscador (busca en Google, Yahoo y Ask Jeeves) arrojando los mejores resultados.
Para buscar en las bases de datos, primero tenemos que encontrarlas. Y para eso existen buscadores específicos que nos ayudan a hacerlo como
Internet Invisible
Invisible Web Directory
Complete Planet
Direct Search
Turbo10
The Big Hub
Ampliar el tema: The Deep Web: Surfacing Hidden Value
Mas busquedas:
intitle:”Index of” passwords modified
allinurl:auth_user_file.txt
“access denied for user” “using password”
“A syntax error has occurred” filetype:ihtml
allinurl: admin mdb
“ORA-00921: unexpected end of SQL command”
inurl:passlist.txt
“Index of /backup”
“Chatologica MetaSearch” “stack tracking:”
Amex Numbers: 300000000000000..399999999999999
MC Numbers: 5178000000000000..5178999999999999
visa 4356000000000000..4356999999999999
Directorios y contraseñas al descubierto:
“parent directory ” /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
“parent directory ” DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
“parent directory “Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
“parent directory ” Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
“parent directory ” MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
“parent directory ” Name of Singer or album -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
?intitle:index.of? mp3
Solo hay q poner le nombre del cantante o cancion
Ejemplo: ?intitle:index.of? mp3 Metallica
inurl:microsoft filetype:iso
Pueden cambiar la busqueda a lo que quieran, ejemplo: Microsoft a Linux , iso a rar ….
“# -FrontPage-” inurl:service.pwd
Contraseñas de Frontpage
“AutoCreate=TRUE password=*”
Contraseñas de “Website Access Analyzer”, un programa japones q crea stadisticas web.
“http://*:*@www” dominio
Contraseñas, solo substituye “dominio” por el dominio q busques sin el .com .net o lo q sea.
Ejemplo:
“http://*:*@www” micronosoft or “http://*:*@www”micronosoft
Otro modo es escribiendo:
“http://bob:bob@www“
“sets mode: +k”
Esta busqueda muestra contraseñas de los canales de IRC en los logs.
allinurl: admin mdb
Bases de datos
allinurl:auth_user_file.txt
Archivo de contraseñas de DCForum’s y DCShop(carrito de compras). Este archivo contiene muchas contraseñas crackeables, nombres de usuarios y emails.
intitle:”Index of” config.php
Estos archivos nomarlmente contienen el usuarios,dir y contraseña de las bases de datos.Tendras administracion total de la DB.
eggdrop filetype:user user
Nombres de usuario y contraseñas en canales de IRC.
intitle:index.of.etc
Esta busqueda te mostrara la pagina principal de la carpeta etc/ donde se pueden encontrar muchos archivos importantes y contraseñas, no siempre se encontraran contraseñas pero puedes encontrar muchas cosas interesantes aca.
filetype:bak inurl:”htaccess|passwd|shadow|htusers”
Esto mostrara muchos archivos de backups(respaldos) creados por programas o por el administrador.
Si necesitas buscar algun numero serial para algun programa, digamos windows XP profesional.
“Windows XP Professional” 94FBR
El 94FBR es debido a que esta secuencia se encuentra en muchos de los CD-keys de windows.
Mas busquedas:
filetype:cfg mrtg “target
- ” -sample -cvs -example
filetype:cfm “cfapplication name” password
filetype:conf oekakibbs
filetype:conf sc_serv.conf
filetype:conf slapd.conf
filetype:config config intext:appSettings “User ID”
filetype:dat “password.dat”
filetype:dat wand.dat
filetype:inc dbconn
filetype:inc intext:mysql_connect
filetype:inc mysql_connect OR mysql_pconnect
filetype:ini inurl:”serv-u.ini”
filetype:ini inurl:flashFXP.ini
filetype:ini ServUDaemon
filetype:ini wcx_ftp
filetype:ini ws_ftp pwd
filetype:ldb admin
filetype:log “See `ipsec –copyright”
filetype:log inurl:”password.log”
filetype:mdb inurl:users.mdb
filetype:mdb wwforum
filetype:netrc password
filetype:pass pass intext:userid
filetype:pem intext:private
filetype:properties inurl:db intext:password
filetype:pwd service
filetype:pwl pwl
filetype:reg reg +intext:”defaultusername” +intext:”defaultpassword”
filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
filetype:sql +”IDENTIFIED BY” -cvs
filetype:sql password
filetype:url +inurl:”ftp://” +inurl:”;@”
filetype:xls username password email
htpasswd
htpasswd / htgroup
htpasswd / htpasswd.bak
intext:”enable secret 5 $”
intext:”powered by Web Wiz Journal”
intitle:”index of” intext:connect.inc
intitle:”index of” intext:globals.inc
intitle:”Index of” passwords modified
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:duware.com
intitle:index.of administrators.pwd
intitle:Index.of etc shadow
intitle:index.of intext:”secring.skr”|”secring.pgp”|”secring.bak”
inurl:”GRC.DAT” intext:”password”
inurl:”slapd.conf” intext:”credentials” -manpage -”Manual Page” -man: -sample
inurl:”slapd.conf” intext:”rootpw” -manpage -”Manual Page” -man: -sample
inurl:”wvdial.conf” intext:”password”
inurl:/db/main.mdb
inurl:/wwwboard
inurl:ccbill filetype:log
inurl:chap-secrets -cvs
inurl:config.php dbuname dbpass
inurl:filezilla.xml -cvs
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man
inurl:nuke filetype:sql
inurl:ospfd.conf intext:password -sample -test -tutorial -download
inurl:pap-secrets -cvs
inurl:perform filetype:ini
inurl:secring ext:skr | ext:pgp | ext:bak
inurl:vtund.conf intext:pass -cvs
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:”index.of./” sites.ini modified
Usando el google codesearch para encontrar vulnerabilidades a ser explotadas:
lang:php (ECHO|PRINT) .*\$_(GET|POST|COOKIE|REQUEST|FILES)
lang:php query\(.*\$_(GET|POST|COOKIE|REQUEST|FILES).*\)
lang:php mysql_connect\((”|’)[a-zA-Z0-9_.]+(”|’),(”|’)[a-zA-Z0-9]+(”|’) -localhost -127.0.0.1 -192.168
Ejemplo: buscando curriculos
“phone * * *” “address *” “e-mail” intitle:”curriculum vitae”
Mas ejemplos:
Mediante esta técnica, es posible encontrar información sobre (cada familia contiene un ejemplo práctico)
- Productos vulnerables
- Mensajes de error
- Ficheros que contienen información sensible
- Ficheros que contienen claves
- Ficheros que contienen nombres de usuario
- Footholds e información de apoyo al acceso
- Páginas con formularios de acceso
- Páginas que contienen datos relativos a vulnerabilidades
- Directorios sensibles
- Información sensible sobre comercio y banca electrónica
- Dispositivos hardware online
- Ficheros vulnerables
- Servidores vulnerables
- Detección de servidores web
Por ultimo: http://ghh.sourceforge.net/
Google hack honeypot
Google hacking database
February 12, 2008http://johnny.ihackstuff.com/ghdb.php
Se refiere de que podemos hacer con google para que nos de mas informacion.
You tube and Google video Hacks
December 7, 2007As we all know that none of the video sharing sites provide a link to download their videos. So we will have to do some tweaking and play around to download the videos. Here are some ways to download any video from the internet , they are based on the common hack (Right-click -> "Save Target As" OR copy the link into your download manager, but change the file extension to .flv)
Method 1: For Firefox Users – Install the VideoDownloader Extension from Mozilla Add-ons website – It downloads all embedded objects on a webpage including the video clips. This is very easy for beginners.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Method 2: One of the easiest ways is to copy your video URL and paste it on KeepVid Lite. When you click submit, you will be provided with a link to save the video as an FLV file. Using these tricks you can easily download videos from Youtube or Google Videos or Metacafe.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Now some more questions that arise are:
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I play FLV files on my computer – They dont open with windows media player or winamp or itunes or real player ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
You can download free FLV players to watch FLV files locally. A good FLV player has a simple and easy-to-remember name – FLV Player. Another nice alternative is the Riva FLV player.Try them out.
How do I split a large FLV file into smaller playable video clips?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
This is the most common question among video enthusiasts – they want to split a large FLV video file into smaller chunks for editing or resharing only the interesting tidbits on the internet. To break an FLV file, get the free FLV Parser – a tiny command-line tool to split FLVs into pieces. Its intended use is to convert a large FLV into a series of shorter FLVs based on a series of millisecond-based timecodes. Using the -s switch will split the audio and video of the outputted files; the audio track will be extracted as a series of MP3 files, and the short FLVs produced will have no audio track at all.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How to convert FLV videos to Windows AVI or Quicktime MOV or 3GP formats ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
The free Simplified Universal Player Encoder & Renderer software from Super can convert FLV files to practically any other video format including MP4, MOV H.264, AVI, ASF or Flash SWF animations. Super video convertor
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I convert my AVI, MPEG, MOV, 3GP movie clips back to FLV format ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Say you complete editing your movie in Windows Movie Maker or Avid and now left with an MOV file that you want to convert to FLV. Just get the free Riva FLV encoder and relax. The Riva encoder even lets you select parts of the video that you want to convert to FLV and crop the rest.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video. I have three small video clips that I download from Google Videos and now want to join them into one single video -How do I merge FLV files ? There is no free software that lets you join FLV files other than the expensive Macromedia Flash Professional. However, here's a simple trick to join several flv video files – convert individual flv files to avi using Super [as mentioned above], then join the multiple Avi files into a single avi file using free VirtualDub and finally convert this avi back to FLV using Riva FLV encoder.Its done.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I watch Youtube Video on my iPod, PSP or Television ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Again we'll make use of the Super Video Encoder mentioned above. Just convert the FLV file into a corresponding format (like Apple iPod or Sony PSP or MPG) and transfer it to your gadget Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Google Hacking
December 7, 2007 Google Hacking
These methods will be easily understood by the Hackers
Any help for the Novice Hackers Please drop in your Comments : FAINTED BRAIN
Using Google, and some finely crafted searches we can find a lot of interesting information.
For Example we can find: Credit Card Numbers, Passwords, Software / MP3's
…… (and on and on and on) Presented below is just a sample of interesting searches that we can send to google to obtain info that some people might not want us having.. After you get a taste using some of these, try your own crafted searches to find info that you would be interested in.
Try a few of these searches:
intitle:"Index of" passwords modified
allinurl:auth_user_file.txt
"access denied for user" "using password"
"A syntax error has occurred" filetype:ihtml
allinurl: admin mdb
"ORA-00921: unexpected end of SQL command"
inurl:passlist.txt
"Index of /backup"
"Chatologica MetaSearch" "stack tracking:"
Amex Numbers: 300000000000000..399999999999999
MC Numbers: 5178000000000000..5178999999999999
visa 4356000000000000..4356999999999999
"parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory "MP3-xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " Name of Singer or album -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
Notice that I am only changing the word after the parent directory, change it to what you want and you will get a lot of stuff.
METHOD 2
put this string in google search:
?intitle:index.of? mp3
You only need add the name of the song/artist/singer.
Example: ?intitle:index.of? mp3 jackson
METHOD 3
put this string in google search:
inurl:microsoft filetype:iso
You can change the string to watever you want, ex. microsoft to adobe, iso to zip etc…
"# -FrontPage-" inurl:service.pwd
Frontpage passwords.. very nice clean search results listing !!
"AutoCreate=TRUE password=*"
This searches the password for "Website Access Analyzer"
, a Japanese software that creates webstatistics. For those who can read Japanese, check out the author's site at: http://www.coara.or.jp/~passy/
"http://*:*@www" domainname
This is a query to get inline passwords from search engines (not just Google), you must type in the query followed with the the domain name without the .com or .net
"http://*:*@www" bangbus or "http://*:*@www"bangbus
Another way is by just typing
"http://bob:bob@www"
"sets mode: +k"
This search reveals channel keys (passwords) on IRC as revealed from IRC chat logs.
allinurl: admin mdb
Not all of these pages are administrator's access databases containing usernames, passwords and other sensitive information, but many are!
allinurl:auth_user_file.txt
DCForum's password file. This file gives a list of (crackable) passwords, usernames and email addresses for DCForum and for DCShop (a shopping cart program(!!!). Some lists are bigger than others, all are fun, and all belong to googledorks. =)
intitle:"Index of" config.php
This search brings up sites with "config.php" files. To skip the technical discussion, this configuration file contains both a username and a password for an SQL database. Most sites with forums run a PHP message base. This file gives you the keys to that forum, including FULL ADMIN access to the database.
eggdrop filetype:user user
These are eggdrop config files. Avoiding a full-blown descussion about eggdrops and IRC bots, suffice it to say that this file contains usernames and passwords for IRC users.
intitle:index.of.etc
This search gets you access to the etc directory, where many many many types of password files can be found. This link is not as reliable, but crawling etc directories can be really fun!
filetype:bak inurl:"htaccess|passwd|shadow|htusers"
This will search for backup files (*.bak) created by some editors or even by the administrator himself (before activating a new version).
Every attacker knows that changing the extenstion of a file on a webserver can have ugly consequences.
Let's pretend you need a serial number for windows xp pro.
In the google search bar type in just like this – "Windows XP Professional" 94FBR
the key is the 94FBR code.. it was included with many MS Office registration codes so this will help you dramatically reduce the amount of 'fake' porn sites that trick you.
or if you want to
find the serial for winzip 8.1 – "Winzip 8.1"
Google search hacking
December 7, 2007Well if u ask me this is the best Part " how to Search ",Anyone anywhere needs something out of the great "www", now if u know how to grab hold to "something" in one click that is the skill, this article henceforth is one of my best my best, n especially crafted to meet all your needs !!
Google Operators:
Operators are used to refine the results and to maximize the search value. They are your tools as well as ethical hackers’ weapons
Basic Operators:
+, -, ~ , ., *, “”, |,
OR
Advanced Operators:
allintext:, allintitle:, allinurl:, bphonebook:, cache:, define:, filetype:, info:, intext:, intitle:, inurl:, link:, phonebook:, related:, rphonebook:, site:, numrange:, daterange
Basic Operators !!
(+) force inclusion of something common
Google ignores common words (where, how, digit, single letters) by default:
Example: StarStar Wars Episode +I
(-) exclude a search term
Example: apple –red
(“) use quotes around a search term to search exact phrases:
Example: “Robert Masse”
Robert masse without “” has the 309,000 results, but “robert masse” only has 927 results. Reduce the 99% irrelevant results
Example: StarStar Wars Episode +I
Example: apple –red
Example: “Robert Masse”
Basic Operators
(~) search synonym:
Example: ~food
Return the results about food as well as recipe, nutrition and cooking information
( . ) a single-character wildcard:
Example: m.trix
Return the results of M@trix, matrix, metrix…….
( * ) any word wildcard
Advanced Operators: “Site:”
Site: Domain_name
Find Web pages only on the specified domain. If we search a specific site, usually we get the Web structure of the domain
Examples:
site:http://shaswat.bravehost.com
Example: ~food
Return the results about food as well as recipe, nutrition and cooking information
Example: m.trix
( * ) any word wildcard
Find Web pages only on the specified domain. If we search a specific site, usually we get the Web structure of the domain
Advanced Operators: “Filetype:”
Filetype: extension_type
Find documents with specified extensions
The supported extensions are:
– HyperText Markup Language (html) – Microsoft PowerPoint (ppt)
– Adobe Portable Document Format (pdf) – Microsoft Word (doc)
– Adobe PostScript (ps) – Microsoft Works (wks, wps, wdb)
– Lotus 1-2-3 – Microsoft Excel (xls)
(wk1, wk2, wk3, wk4, wk5, wki, wks, wku) – Microsoft Write (wri)
– Lotus WordPro (lwp) – Rich Text Format (rtf)
– MacWrite (mw) – Shockwave Flash (swf)
– Text (ans, txt)
Note: We actually can search asp, php and cgi, pl files as long as it is text-compatible.
Example: Budget filetype: xls
– Adobe Portable Document Format (pdf) – Microsoft Word (doc)
– Adobe PostScript (ps) – Microsoft Works (wks, wps, wdb)
– Lotus 1-2-3 – Microsoft Excel (xls)
(wk1, wk2, wk3, wk4, wk5, wki, wks, wku) – Microsoft Write (wri)
– Lotus WordPro (lwp) – Rich Text Format (rtf)
– MacWrite (mw) – Shockwave Flash (swf)
– Text (ans, txt)
Advanced Operators “Intitle:”
Intitle: search_term
Find search term within the title of a Webpage
Allintitle: search_term1 search_term2 search_term3
Find multiple search terms in the Web pages with the title that includes all these words
These operators are specifically useful to find the directory lists
Example:
Find directory list:
Intitle: Index.of “parent directory”
Advanced Operators “Inurl:”
Inurl: search_term
Find search term in a Web address
Allinurl: search_term1 search_term2 search_term3
Find multiple search terms in a Web address
Examples:
Inurl: cgi-bin
Allinurl: cgi-bin password
Advanced Operators “Intext;”
Intext: search_term
Find search term in the text body of a document.
Allintext: search_term1 search_term2 search_term3
Find multiple search terms in the text body of a document.
Examples:
Intext: Administrator login
Allintext: Administrator login
Advanced Operators: “Cache:”
Cache: URL
Find the old version of Website in Google cache
Sometimes, even the site has already been updated, the old information might be found in cache
Examples:
Cache: http://shaswat.bravehost.com
Cache: http://shaswat.bravehost.com
Advanced Operators
<number1>..<number2>
Conduct a number range search by specifying two numbers, separated by two periods, with no spaces. Be sure to specify a unit of measure or some other indicator of what the number range represents
Examples:
Computer $500..1000
DVD player $250..350
Computer $500..1000
DVD player $250..350
Advanced Operators: “Daterange:”
Daterange: <start_date>-<end date>
Find the Web pages between start date and end date
Note: start_date and end date use the Julian date
The Julian date is calculated by the number of days since January 1, 4713 BC. For example, the Julian date for August 1, 2001 is 2452122
Examples:
2004.07.10=2453196
2004.08.10=2453258
Vulnerabilities date range: 2453196-2453258
Advanced Operators “Link:”
Link: URL
Find the Web pages having a link to the specified URL
Related: URL
Find the Web pages that are “similar” to the specified Web page
info: URL
Present some information that Google has about that Web page
Define: search_term
Provide a definition of the words gathered from various online sources
Examples:
Link: shaswat.bravehost.com
Related: shaswat.bravehost.com
Info: shaswat.bravehost.com
Define: Network security
Advanced Operators “phonebook:”
Phonebook
Search the entire Google phonebook
rphonebook
Search residential listings only
bphonebook
Search business listings only
Examples:
Phonebook: robert las vegas (robert in Las Vegas)
Phonebook: (702) 944-2001 (reverse search, not always work)
The phonebook is quite limited to U.S.A
But the Question rises What can Google can do for an Ethical Hacker?
Search sensitive information like payroll, SIN, even the personal email box
Vulnerabilities scanner
Transparent proxy
So how but if i tell u a different way to search
k lets do this type in the following statements n c d results
we can only provide u the guidelines, now u need to implement your Creativity to Keep it rolling.
k lets do this type in the following statements n c d results
we can only provide u the guidelines, now u need to implement your Creativity to Keep it rolling.
http://shaswat.bravehost.com
Salary
Salary filetype: xls site: edu
Security social insurance number
Intitle: Payroll intext: ssn filetype: xls site: edu
Security Social Insurance Number
Payroll intext: Employee intext: ssn Filetype: xls
Filetype: xls “checking account” “credit card” – intext: Application -intext:
Form (only 39 results)
Financial Information
Intitle: “Index of” finances.xls (9)
Personal Mailbox
Intitle: Index.of inurl: Inbox (inurl: User OR inurl: Mail) (220)
Confidential Files
“not for distribution” confidential (1,760)
Confidential Files
“not for distribution” confidential filetype: pdf (marketing info) (456)
OS Detection
Use the keywords of the default installation page of a Web server to search.
Use the title to search
Use the footer in a directory index page
OS Detection-Windows
“Microsoft-IIS/5.0 server at”
OS Detection – Windows
Default web page?
Intitle: “Welcome to Windows 2000 Internet Services” IIS 5.0
OS Detection –Apache 1.3.11-1.3.26
Intitle: Test.Page.for.Apache seeing.this.instead
OS Detection-Apache SSL enable
Intitle: Test.page “SSL/TLS-aware” (127)
Search Passwords
Search the well known password filenames in URL
Search the database connection files or configuration files to find a password and username
Search specific username file for a specific product
Search Passwords
Inurl: etc inurl: passwd
Search Passwords
Intitle: “Index of..etc” passwd
Search Passwords
Intitle: “Index of..etc” passwd
Search Passwords
Inurl: admin.pwd filetype: pwd
Search Passwords
Filetype: inc dbconn
Search Passwords
Filetype: inc intext: mysql_connect
Search Passwords
Filetype: ini +ws_ftp +pwd (get the encrypted passwords)
Search Passwords
Filetype: log inurl: “password.log”
Search Username
+intext: "webalizer" +intext: “Total Usernames” +intext: “Usage Statistics for”
License Key
Filetype: lic lic intext: key (33) (license key)
Sensitive Directories Listing
Powerful buzz word: Index of
Search the well known vulnerable directories names
Sensitive Directories Listing
“index of cgi-bin” (3590)
Sensitive Directories Listing
Intitle: “Index of” cfide (coldfusion directory)
Sensitive Directories Listing
Intitle: index.of.winnt
Get the serial number you need ! (For Certain Things)
1) Go to Google.
2) Use Keyword as "Product name" 94FBR
3) Where, "Product Name" is the name of the item you want to find the serial number for.
4) And voila – there you go – the serial number you needed.
HOW DOES THIS WORK?
Quite simple really. 94FBR is part of a Office 2000 Pro cd key that is widely distributed as it bypasses the activation requirements of Office 2K Pro. By searching for the product name and 94fbr, you guarantee two things. 1) The pages that are returned are pages dealing specifically with the product you're wanting a serial for. 2) Because 94FBR is part of a serial number, and only part of a serial number, you guarantee that any page being returned is a serial number list page.
See these example searches:
| Code: |
| "Photoshop 7"+94FBR "Age of Mythology"+94FBR "Nero Burning Rom 5.5"+94FBR |
Búsquedas en Google a través del e-mail
September 14, 2007Hay ocasiones en que no se tiene acceso a navegar por Internet pero sí al e-mail, y un buen modo de adelantar trabajo es poder realizar una búsqueda en Google a través del correo electrónico.
Para esto sólo hay que enviar un mensaje a google@capeclear.com, poner en el asunto las palabras clave de tu búsqueda y al poco tiempo recibirás los resultados de la búsqueda en tu buzón de correo electrónico.
Enlace directo:
Más útil es la siguiente idea: almacena este enlace a Google por e-mail en tu escritorio. ¿Cómo?, haz click derecho sobre el enlace y pulsa en ->Copiar acceso directo, y luego haz click derecho sobre tu escritorio y pulsa en -> Pegar acceso directo.
