其实早应该发出来的,国内关于google技巧方面的整理,我大概算是最早一批人吧,后来sniper都写了googlehack,就更懒的发了。如今帮老婆找论文,关键字匹配累的要死。这些技巧是我整理以后淘汰的后的,最好的那些如有兴趣可以找我直接索取
Http://www.feelids.com
Byswap
站内搜索地址为:
http://www.google.com/custom?domains=(这里写我们要搜索的站点,比如feelids.com)
进去可以选择www和feelids.com,当然再选我们要的站内搜索哦!
黑客专用信息和资料搜索地址为:
http://www.google.com/custom?hl=xx-hacker
这里是google关键字的用法,要设置它为中文,则是
http://www.google.com/custom?hl=zh-CN
英文则是http://www.google.com/custom?hl=en
常用的google关键字:
foo1foo2(也就是关联,比如搜索xx公司xx美女)
operator:foo
filetype:123类型
site:foo.com相对直接看网站更有意思,可以得到许多意外的信息
intext:foo
intitle:fooltitle标题哦
allinurl:foo搜索xx网站的所有相关连接。(踩点必备)
links:foo不要说就知道是它的相关链接
allintilte:foo.com
我们可以辅助"-""+"来调整搜索的精确程度
直接搜索密码:(引号表示为精确搜索)
当然我们可以再延伸到上面的结果里进行二次搜索
"indexof"htpasswd/passwd
filetype:xlsusernamepasswordemail
"ws_ftp.log"
"config.php"
allinurl:adminmdb
servicefiletype:pwd....或者某个比如pcanywhere的密码后缀cif等
越来越有意思了,再来点更敏感信息
"robots.txt""Disallow:"filetype:txt
inurl:_vti_cnf(FrontPage的关键索引啦,扫描器的CGI库一般都有地)
allinurl:/msadc/Samples/selector/showcode.asp
/../../../passwd
/examples/jsp/snp/snoop.jsp
phpsysinfo
intitle:indexof/admin
intitle:"documetation"
inurl:5800(vnc的端口)或者desktopport等多个关键字检索
webminport10000
inurl:/admin/login.asp
intext:PoweredbyGBook365
intitle:"phpshell*""Enablestderr"filetype:php直接搜索到phpwebshell
foo.orgfiletype:inc
ipsecfiletype:conf
intilte:"erroroccurred"ODBCrequestWHERE(select|insert)说白了就是说,可以直接试着查查数据库检索,针对目前流行的sql注射,会发达哦
intitle:"phpshell*""Enablestderr"filetype:php
"Dumpingdatafortable"usernamepassword
intitle:"ErrorusingHypernews"
"ServerSoftware"
intitle:"HTTP_USER_AGENT=Googlebot"
"HTTP_USER_ANGET=Googlebot"THSADMIN
filetype:.docsite:.milclassified直接搜索军方相关word
检查多个关键字:
intitle:configconfixxloginpassword
"mydomain.com"nessusreport
"reportgeneratedby"
"ipconfig"
"winipconfig"
google缓存利用(hoho,最有影响力的东西)推荐大家搜索时候多"选搜索所有网站"
特别推荐:administratorusers等相关的东西,比如名字,生日等……最惨也可以拿来做字典嘛
cache:foo.com
可以查阅类似结果
先找找网站的管理后台地址:
site:xxxx.comintext:管理
site:xxxx.cominurl:login
site:xxxx.comintitle:管理
site:a2.xxxx.cominurl:file
site:a3.xxxx.cominurl:load
site:a2.xxxx.comintext:ftp://*:*
site:a2.xxxx.comfiletype:asp
site:xxxx.com//得到N个二级域名
site:xxxx.comintext:*@xxxx.com//得到N个邮件地址,还有邮箱的主人的名字什么的
site:xxxx.comintext:电话//N个电话
intitle:"indexof"etc
intitle:"Indexof".sh_history
intitle:"Indexof".bash_history
intitle:"indexof"passwd
intitle:"indexof"people.lst
intitle:"indexof"pwd.db
intitle:"indexof"etc/shadow
intitle:"indexof"spwd
intitle:"indexof"master.passwd
intitle:"indexof"htpasswd
"#-FrontPage-"inurl:service.pwd
allinurl:bbsdata
filetype:mdbinurl:database
filetype:incconn
inurl:datafiletype:mdb
intitle:"indexof"data
……
一些技巧集合:
3)"http://*:*@www"domainname找一些ISP站点,可以查对方ip的虚拟主机
3
4)auth_user_file.txt不实用了,太老了
5)TheMasterList寻找邮件列表的
6)intitle:"welcome.to.squeezebox"一种特殊的管理系统,默认开放端口90
7)passlist.txt(abetterway)字典
8)"Asyntaxerrorhasoccurred"filetype:ihtml
9)ext:phpprogram_listingintitle:MythWeb.Program.Listing
10)intitle:index.ofabyss.conf
11)ext:nbenbe
12)intitle:"SWWlink""Pleasewait....."
13)
14)intitle:"Freifunk.Net-Status"-site:commando.de
15)intitle:"WorldClient"intext:"?(2003|2004)Alt-NTechnologies."
17)intitle:open-xchangeinurl:login.pl
20)intitle:"siteadministration:pleaselogin""sitedesignedbyemarketsouth"
21)ORA-00921:unexpectedendofSQLcommand
22)intitle:"YALA:YetAnotherLDAPAdministrator"
23)welcome.tophpqladmin"Pleaselogin"-cvsweb
24)intitle:"SWWlink""Pleasewait....."
25)inurl:"port_255"-htm
27)intitle:"WorldClient"intext:"?(2003|2004)Alt-NTechnologies."
这些是新的一些漏洞技巧,在0days公告公布
ext:phpprogram_listingintitle:MythWeb.Program.Listing
inurl:preferences.ini"[emule]"
intitle:"Indexof/CFIDE/"administrator
"accessdeniedforuser""usingpassword"
ext:phpintext:"PoweredbyphpNewManVersion"可以看到:path/to/news/browse.php?clang=../../../../../../file/i/want
inurl:"/becommunity/community/index.php?pageurl="
intitle:"ASPFileMan"Resend-site:iisworks.com
"Enterip"inurl:"php-ping.php"
ext:confinurl:rsyncd.conf-cvs-man
intitle:private,protected,secret,secure,winnt
intitle:"DocuShare"inurl:"docushare/dsweb/"-faq-gov-edu
"#mysqldump"filetype:sql
"allow_call_time_pass_reference""PATH_INFO"
"CertificatePracticeStatement"inurl:(PDF|DOC)
LeapFTPintitle:"index.of./"sites.inimodified
master.passwd
mysqlhistoryfiles
NickServregistrationpasswords
passlist
passlist.txt(abetterway)
passwd
passwd/etc(reliable)
people.lst
psyBNCconfigfiles
pwd.db
signinfiletype:url
spwd.db/passwd
trillian.ini
wwwboardWebAdmininurl:passwd.txtwwwboard|webadmin
"#-FrontPage-"ext:pwdinurl:(service|authors|administrators|users)"#-FrontPage-"
inurl:service.pwd
"AutoCreate=TRUEpassword=*"
"http://*:*@www"domainname
"indexof/""ws_ftp.ini""parentdirectory"
"liveiceconfigurationfile"ext:cfg-site:sourceforge.net
"poweredbyducalendar"-site:duware.com
"PoweredbyDuclassified"-site:duware.com
"PoweredbyDuclassified"-site:duware.com"DUwareAllRightsreserved"
"poweredbyduclassmate"-site:duware.com
"PoweredbyDudirectory"-site:duware.com
"poweredbydudownload"-site:duware.com
"PoweredByEliteForumVersion*.*"
"PoweredbyLinkDepartment"
"setsmode:+k"
"PoweredbyDUpaypal"-site:duware.com
allinurl:adminmdb
auth_user_file.txt
config.php
eggdropfiletype:useruser
etc(index.of)
ext:inieudora.ini
ext:iniVersion=...password
ext:txtinurl:unattend.txt
filetype:bakinurl:"htaccess|passwd|shadow|htusers"
filetype:cfgmrtg"target[*]"-sample-cvs-example
filetype:cfm"cfapplicationname"password
filetype:confoekakibbs
filetype:confsc_serv.conf
filetype:confslapd.conf
filetype:configconfigintext:appSettings"UserID"
filetype:dat"password.dat"
filetype:datwand.dat
filetype:incdbconn
filetype:incintext:mysql_connect
filetype:incmysql_connectORmysql_pconnect
filetype:infsysprep
filetype:iniinurl:"serv-u.ini"
filetype:iniinurl:flashFXP.ini
filetype:iniServUDaemon
filetype:iniwcx_ftp
filetype:iniws_ftppwd
filetype:ldbadmin
filetype:log"See`ipseccopyright"
filetype:loginurl:"password.log"
filetype:mdbinurl:users.mdb
filetype:mdbwwforum
filetype:netrcpassword
filetype:passpassintext:userid
filetype:pemintext:private
filetype:propertiesinurl:dbintext:password
filetype:pwdservice
filetype:pwlpwl
filetype:regreg+intext:"defaultusername"+intext:"defaultpassword"
filetype:regregHKEY_CURRENT_USERSSHHOSTKEYS
filetype:sql("values*MD"|"values*password"|"values*encrypt")
filetype:sql("passwdvalues"|"passwordvalues"|"passvalues")
filetype:sql+"IDENTIFIEDBY"-cvs
filetype:sqlpassword
filetype:url+inurl:"ftp://"+inurl:";@"
filetype:xlsusernamepasswordemail
htpasswd
htpasswd/htgroup
htpasswd/htpasswd.bak
intext:"enablesecret$"
intext:"poweredbyWebWizJournal"
intitle:"indexof"intext:connect.inc
intitle:"indexof"intext:globals.inc
intitle:"Indexof"passwordsmodified
intitle:dupicsinurl:(add.asp|default.asp|view.asp|voting.asp)-site:duware.com
----------------------------------------------------------------------------------------------------------------------
intitle:index.ofintext:"secring.skr"|"secring.pgp"|"secring.bak"
inurl:"GRC.DAT"intext:"password"
inurl:"slapd.conf"intext:"credentials"-manpage-"ManualPage"-man:-sample
inurl:"slapd.conf"intext:"rootpw"-manpage-"ManualPage"-man:-sample
inurl:"wvdial.conf"intext:"password"
inurl:/db/main.mdb
inurl:chap-secrets-cvs
inurl:config.phpdbunamedbpass
inurl:filezilla.xml-cvs
inurl:lilo.conffiletype:confpassword-tatercounter-bootpwd-man
inurl:nukefiletype:sql
inurl:ospfd.confintext:password-sample-test-tutorial-download路由配置
inurl:pap-secrets-cvs
inurl:performfiletype:ini
inurl:secringext:skr|ext:pgp|ext:bak
inurl:vtund.confintext:pass-cvs
inurl:zebra.confintext:password-sample-test-tutorial-download
"GeneratedbyphpSystem"
"generatedbywwwstat"
"HostVulnerabilitySummaryReport"]
"HTTP_FROM=googlebot"googlebot.com"Server_Software="
"Indexof"/"chat/logs"聊天室
"InstalledObjectsScanner"inurl:default.asp
"MecuryVersion""InfastructureGroup"
"Microsoft(R)Windows*(TM)Version*DrWtsnCopyright(C)"ext:log
"MostSubmittedFormsandScripts""thissection"
"NetworkVulnerabilityAssessmentReport"
"notfordistribution"confidential
"phone***""address*""e-mail"intitle:"curriculumvitae"
"phpMyAdmin""runningon"inurl:"main.php"
"producedbygetstats"
"RequestDetails""ControlTree""ServerVariables"
"robots.txt""Disallow:"filetype:txt
"RunninginChildmode"
"setsmode:+p"
"setsmode:+s"
"Thankyouforyourorder"+receipt
"ThisisaShareazaNode"
"ThisreportwasgeneratedbyWebLog"
(filetype:mail|filetype:eml|filetype:mbox|filetype:mbx)intext:password|subject
(inurl:"robot.txt"|inurl:"robots.txt")intext:disallowfiletype:txt
-site:php.net-"ThePHPGroup"inurl:sourceinurl:urlext:pHp
FBR"ADOBEPHOTOSHOP"
AIMbuddylists
allinurl:/examples/jsp/snp/snoop.jsp
allinurl:servlet/SnoopServlet
cgiirc.conf
datafiletype:mdb-site:gov-site:mil
exportedemailaddresses
ext:aspinurl:pathto.asp
ext:cgiinurl:editcgi.cgiinurl:file=
ext:confinurl:rsyncd.conf-cvs-man
ext:confNoCatAuth-cvs
ext:datbpk.dat
ext:ghogho
ext:iniintext:env.ini
ext:ldifldif
ext:log"Software:MicrosoftInternetInformationServices*.*"
------------------------------------------------------------------------------------------
ext:mdbinurl:*.mdbinurl:fpdbshop.mdb
filetype:bkfbkf
filetype:blt"buddylist"
filetype:bltblt+intext:screenname
filetype:cfgauto_inst.cfg
filetype:confinurl:firewall-intitle:cvs
filetype:configweb.config-CVS
filetype:cttcttmessenger
filetype:fpfp
filetype:fpfp-site:gov-site:mil-"cvslog"
filetype:infinurl:capolicy.inf
filetype:liclicintext:key
filetype:mydmyd-CVS
filetype:nsns
filetype:oraora
filetype:oratnsnames
filetype:pdbpdbbackup(Pilot|Pluckerdb)
filetype:potinurl:john.pot
------------------------------------------------------------------------------------------------------------------
filetype:pstinurl:"outlook.pst"
filetype:pstpst-from-to-date
filetype:qbbqbb
filetype:rdprdp
filetype:reg"TerminalServerClient"
filetype:vcsvcs
filetype:wabwab
filetype:xls-site:govinurl:contact
filetype:xlsinurl:"email.xls"
Financialspreadsheets:finance.xls
Financialspreadsheets:finances.xls
GangliaClusterReports
haccess.ctl(oneway)
haccess.ctl(VERYreliable)
ICQchatlogs,please...
iletype:logcron.log
intext:"SessionStart****:*:**"filetype:log
intext:"TobiasOetiker""trafficanalysis"
intext:(password|passcode)intext:(username|userid|user)filetype:csv
intext:gmailinviteintext:http://gmail.google.com/gmail/a
intext:SQLiteManagerinurl:main.php
intitle:"Apache::Status"(inurl:server-status|inurl:status.html|inurl:apache.html)
intitle:"AppServOpenProject"-site:www.appservnetwork.com
intitle:"ASPStatsGenerator*.*""ASPStatsGenerator""-weppos"
intitle:"FTProotat"
intitle:"indexof"+mydsize
intitle:"IndexOf"-inurl:maillogmaillogsize
intitle:"IndexOf"cookies.txtsize
intitle:"indexof"mysql.confORmysql_config
intitle:"Indexof"uploadsizeparentdirectory
intitle:"index.of".diz.nfolastmodified
intitle:"MultimonUPSstatuspage"
intitle:"PHPAdvancedTransfer"(inurl:index.php|inurl:showrecent.php)
intitle:"PhpMyExplorer"inurl:"index.php"-cvs
---------------------------------------------------------------------
intitle:"statisticsof""advancedwebstatistics"
intitle:"SystemStatistics"+"SystemandNetworkInformationCenter"
intitle:"UsageStatisticsfor""GeneratedbyWebalizer"
intitle:"wbem"compaqlogin"CompaqInformationTechnologiesGroup"
intitle:"WebServerStatisticsfor****"
intitle:"webserverstatus"SSHTelnet
intitle:"welcome.to.squeezebox"
intitle:adminintitle:login
intitle:index.of"Apache""serverat"
intitle:index.ofcleanup.log
intitle:index.ofdead.letter
intitle:index.ofinbox
intitle:index.ofinboxdbx
intitle:intranetinurl:intranet+intext:"phone"
inurl:"/axs/ax-admin.pl"-script
inurl:"/cricket/grapher.cgi"
inurl:"bookmark.htm"
inurl:"cacti"+inurl:"graph_view.php"+"SettingsTreeView"-cvs-RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/"intitle:"newsletteradmin"
inurl:"putty.reg"
inurl:"smb.conf"intext:"workgroup"filetype:confconf
----------------------------------------------------------------------------------------------------------
Welcometontop!
"addingnewuser"inurl:addnewuser-"therearenodomains"
(inurl:/cgi-bin/.cobalt/)|(intext:"WelcometotheCobaltRaQ")
filetype:phpHAXPLORER"ServerFilesBrowser"
intitle:"WebDataAdministrator-Login"
inurl:ConnectComputer/precheck.htm|inurl:Remote/logon.aspx
PHPShell(unprotected)
PHPKonsolePHPShellfiletype:php-echo
PublicPHPFileManagers
"indexof"/picasa.ini
"indexof"inurl:recycler
"Indexof"rarrnfoModified
"intitle:Index.Of/"statsmerchantcgi-*etc
"PoweredbyInvisionPowerFileManager"(inurl:login.php)|(intitle:"Browsingdirectory/")
"WebFileBrowser""Useregularexpression"
filetype:iniDesktop.iniintext:mydocs.dll
intext:"d.aspx?id"||inurl:"d.aspx?id"
intext:"PoweredBy:TotalIndex"intitle:"TotalIndex"
intitle:"albumpermissions""Userswhocanmodifyphotos""EVERYBODY"
intitle:"DirectoryListingFor"intext:Tomcat-intitle:Tomcat
intitle:"HFS/"+"HttpFileServer"
intitle:"Indexof*"inurl:"mysharedfolder"sizemodified
-------------------------------------------------------------------------------------------------------------------
"FileUploadManagerv.""renameto"
ext:asp"poweredbyDUForum"inurl:(messages|details|login|default|register)-site:duware.com
ext:aspinurl:DUgalleryintitle:"."-site:dugallery.com-site:duware.com
ext:cgiinurl:ubb_test
ezBOO"AdministratorPanel"-cvs
filetype:cgiinurl:cachemgr.cgi
filetype:cnfmy.cnf-cvs-example
filetype:incincintext:setcookie
filetype:phpinurl:"viewfile"-"index.php"-"idfil
filetype:wsdlwsdl
intitle:"ASPFileMan"Resend-site:iisworks.com
intitle:"Indexof/"modifiedphp.exe
intitle:"phpremoteview"filetype:php"Name,Size,Type,Modify"
inurl:"WWWADMIN.PL"intitle:"wwwadmin"
inurl:"nph-proxy.cgi""StartbrowsingthroughthisCGI-basedproxy"
inurl:"plog/register.php"
inurl:cgi.asx?StoreID
inurl:robpoll.cgifiletype:cgi
TheMasterList
"MoreInfoaboutMetaCartFree"