Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Sensitive Directories
Google's collection of web sites sharing sensitive directories. The files contained in here will vary from sesitive
to uber-secret!

DATE
Title
Summary
2003What kinds of things might you find in directories marked
private
06-27
"private?" let's find out.....
2003What kinds of goodies lurk in directories marked as
secret
06-27
"secret?" Find out......
2003Backup directories are often very interesting places to
Look in my backup directories! Please?
06-24
explore. More than one server has been ...
2004Adding "inurl:ftp (pub | incoming)" to the "index.of"
intitle:"index of" inurl:ftp (pub | inco...
12-30
searches helps locati...
2004allinurl:"/*/_vti_pvt/" | allinurl:"...
Frontpage extensions for Unix ? So be it.....
12-29
2004These directories reveal the configuration file of the
intitle:index.of abyss.conf
12-19
abyss webserver. These files can contain...
2004With ColdFusion, you can build and deploy powerful
intitle:"Index of /CFIDE/" administrator
12-19
web applications and web services with far l...
2004Invision Power File Manager is a popular file
"Powered by Invision Power File Manager"...
12-19
management script, written in the popular PHP Scr...
2004This search uses desktop.ini to track users with a
intitle:"index of" "parent director...
12-05
webserver running on their desktop computers...
2004TotalIndex v2.0 is an open source script that is designed
intext:"Powered By: TotalIndex" intitle:...
11-28
to replace the simple, and boring def...
2004This search looks for indexes with the following
"intitle:Index.Of /" stats merchant cgi-...
11-07
subdirectories: stats, merchant, online-store ...
2004This dork indicates the "Local settings" dir in most cases,
intitle:"index of" intext:"content....
10-31
and browseble server dire...
2004Yes! I probably have should have told you guys earlier,
intitle:"index of" -inurl:htm -inurl:htm...
10-20
but this is how ive been getting 100% ...
2004The DCIM directory is the default name for a few brands
index.of.dcim
10-25
of digital camers. This is not a big ne...
2004The Google Hackers Guide explains how to find Apache
intitle:"Directory Listing For" intext:T...
10-19
directory indexes, which are the most comm...
2004Webadmin.php is a free simple Web-based file manager.
intitle:"webadmin - /*" filetype:php dir...
09-24
This search finds sites that use this sof...

2004- intitle:index.of (inurl:fileadmin |

09-21 intitle:filead...
2004intitle:"Index of *" inurl:"my shar...
09-10
2004intitle:index.of /AlbumArt_
08-26
200408-05
200407-20
200407-16
200410-31
200407-12
200406-14
200406-02
200406-01
200405-13
200405-11
200405-04
200404-28
200404-28
200404-28
200404-23
200404-19
200403-29
200402-10
200308-12
200403-16

intext:"d.aspx?id" || inurl:"d.aspx...
"index of" / picasa.ini
index.of.password
inurl:explorer.cfm
inurl:(dirpath|This_Directory)

TYPO3 is a free Open Source content management

system for enterprise purposes on the web and in...
These are index pages of "My Shared Folder".
Sometimes they contain juicy stuff like ...
Directories containing commercial
music.AlbumArt_{.*}.jpg are download/create by MSWindows Med...
"The YouSendIt team was formed to tackle a common
problem: secure transmission of large do...
Picasa is an 'Automated Digital Photo Organizer' recently
aquired by Google. This search allows...
These directories are named "password." I wonder what
you might find in here. Warning...
Filemanager without authentication....

phpMyAdmin is a tool written in PHP intended to handle

the administration of MySQL over the Web...
filetype:cfg ks intext:rootpw -sample -test - Anaconda is a linux configuration tool like yast on suse
howto
linux. The root password is often encr...
Gallery (http://gallery.menalto.com) is software that
intitle:"album permissions" "Users ...
allows users to create webalbums and uplo...
Many of these directories contain information about the
"Index Of /network" "last modified&...
network, though an attacker would need ...
According to whatis.com: "An intranet is a private
intitle:intranet inurl:intranet +intext:"huma...
network that is contained within an ent...
Many times, this search will reveal temporary files and
inurl:/tmp
directories on the web server. The info...
This is the default name of the Windows recycle bin. The
"index of" inurl:recycler
files in this directory may contain se...
This is the default installation location of Oracle
inurl:/pls/sample/admin_/help/
manuals. This helps in footprinting a serve...
This directory contains sample Oracle JSP scripts which
inurl:ojspdemos
are installed on the server. These prog...
This directory contains sample JSP scripts which are
inurl:j2ee/examples/jsp
installed on the server. These programs ma...
CGI directories contain scripts which can often be
"index of cgi-bin"
exploited by attackers. Regardless of the vu...
This is the top level directory of ColdFusion, a powerful
intitle:"Index of" cfide
web development environment. This dir...
This directory has various personal documents and
intitle:"index.of.personal"
pictures....
These pages indicate that they are sharing the
intitle:"Index of c:\Windows"
C:\WINDOWS directory, which is the system folder...
phpMyAdmin is a widly spread webfrontend used to
"Welcome to phpMyAdmin" " Create ne...
mantain sql databases. The default security me...
This query reveals backup directories. These directories
inurl:backup intitle:index.of inurl:admin
can contain various information rangin...
Index of phpMyAdmin

200306-27
200306-27
200306-27
200306-27
201505-27
201505-26
201504-23
201504-03
201504-03
201502-27
201502-19
201502-11
201501-06
201402-05
201311-25
201309-24
201308-08
201308-08
201308-08
201304-09
201304-09
201211-02
201111-19

index.of.password
protected
secure
winnt
inurl:wp-admin/ intext:css/
intitle:"Index of ftp"

These directories are named "password." I wonder what

you might find in here. Warning...
What could be in a directory marked as "protected?"
Let's find out......
What could be hiding in directories marked as "secure?"
let's find out......
The \WINNT directory is the directory that Windows NT
is installed into by default. Now just be...
The dork finds misconfigured WordPress sites.
Author:NickiK. ...
This dork finds open ftps. This is a base dork, where you
can add intext:"ssh/" for ...

intitle:index.of.dropbox

Sensitive Directories Ariel Anonis - @ariel_anonis ...

intitle:index.of.accounts

Dork for directory with accounts. By Rootkit. ...

intitle:index.of +"Indexed by
Apache::Gallery...

Google dork for finding Private pics ;) :D

#13lacKDemOn ...
Relates to https://wordpress.org/plugins/wp-backitup/
Sensitive data/site rips/db rips in pu...

inurl:/wp-content/wpbackitup_backups
"Config" intitle:"Index of" in...

Directory with keys of vpn servers. By Rootkit. ...

"jos_users" intitle:"Index of"

"jos_users" intitle:"Index of" Files of configuration of

user Joomla serve...

inurl:/cgi-bin/.cgi

Finds open index of /cgi-bin. ...

allinurl:/hide_my_wp=
intitle:"index of" intext:".ds_stor...
intitle:"index of" myshare
inurl:8080 intitle:"Dashboard [Jenkins]"
intitle:index.of intext:.bash_history
intext:xampp-davunsecure:$apr1$6O9scpDQ$JGw2Tjz0j...
"index of" inurl:sym
"index of" inurl:root intitle:symlink
inurl:ckfinder intext:"ckfinder.html" in...
inurl:/xampp

i just found a google dork that is file/path disclosure of

Hide My WP plugin Google dork -...
Mac OSX directories -- -[Voluntas Vincit Omnia]website http://www.erisresearch.org/ Go...
Google search for shared HDD directories or shared
directories on servers. Gives access to oft...
#Summary: Acces to Jenkins Dashboard #Author: g00gl3
5c0u7 ...
the GHDB on subject (intitle:index.of
intext:.bash_history) finds all home users directory pat...
# Exploit Title: google dork for apache directory listing
by url edit # Google Dork: intext:xa...
Google Dork: "index of" inurl:sym You can Steal the
symlinks of other Servers A...
Google Dork: index of" inurl:root intitle:symlink Steal
Others Symlink Author: Un0wn...
Dork: inurl:ckfinder intext:"ckfinder.html" intitle:"Index
of /ckfinder" ...
this dork looks for servers with xampp installed...

201011-10
201011-10
201011-10
200607-14
200602-28
200601-16
200512-01
200511-28
200511-11
200509-26
200509-26
200509-13
200507-21
200505-02
200503-26
200502-17
200501-16
200501-09
200501-07
200501-05
200501-01
201611-29
201611-29

allintext:"WebServerX Server at"

Quick and dirty WebserverX HTTP server google dork ...

intitle:index.of ios -site:cisco.com

Google search for Cisco IOS images Author: fdisk...

intitle:index.of cisco asa -site:cisco.com

Google search for Pix/Asa images Author: fdisk...

These directories can give information about a web

servers configuration. This should never be ...
allintitle:"FirstClass Login" this is for firstclass directory
allintitle:"FirstClass Login"
listingsgo to http://[...
Excelent information for foot holds. Everything from OS,
inurl:install.pl intext:"Reading path paramat...
to forum software, etc. Other exploits...
"Warning: Installation directory exists
by this dork you can find fresh installations of Zenat&qu...
Cartsee Full Disclosure forums fore detail...
intitle:index.of.config

"Welcome to the directory listing of" &q...

this is for NetworkActiv-Web-Server directory listing...

log inurl:linklint filetype:txt -"checking&qu...

Linklint is an Open Source Perl program that checks

links on web sites. This search finds the L...

"Directory Listing for" "Hosted by ...

directory listing for Xerver web server...

intitle:"Folder Listing" "Folder Li...

directory listing for Fastream NETFile Web Server...

intitle:"Backup-Management (phpMyBackup phpMyBackup is an mySQL backup tool, with features

v.0.4...
like copying backups to a different server u...
This search reveals the photo albums taken by Sprint
intitle:"pictures thumbnails" site:pictu...
PCS customers. Pictures taken with Sprint'...
Finds java powered web servers which have indexing
intitle:index.of WEB-INF
enabled on their config directory...
intitle:index.of /maildir/new/
filetype:ini Desktop.ini intext:mydocs.dll
filetype:torrent torrent
"Index of" rar r01 nfo Modified 2004
"Web File Browser" "Use regular exp...
intitle:"HFS /" +"HttpFileServer&qu...
intitle:upload inurl:upload intext:upload forum -...
Hostinger 2016. All rights reserved
inurl:defaul...
inurl:".esy.es/default.php"

search gives you a mailbox dir. Contains a lot of mails....

This dork finds any webshared windows folder inside my
docs. You can change the end bit "i...
Torrent files .. don't expect to find spectacular stuff with
this kind of string, this just to ...
New Warez Directory Lists...
This will ask google to search for a php script used to
manage files on a server. The script &q...
"The HttpFileServer is a Java based mechanism for
providing web access to a set of files o...
The search reveals server upload portals.An attacker can
use server space for his own benefit....
Google Dork: Hostinger 2016. All rights reserved
inurl:default.php Hostinger web hosting c...
Dork: inurl:".esy.es/default.php" You can add Here is a
list of files in your pub...

201610-04
201608-08
201607-27
201606-06
201606-06
201605-10
201604-21
201603-22

index:"html/js/editor/fckeditor/editor/filema...
inurl:/FCKeditor/editor/filemanager/upload/
inurl:pictures intitle:index.of
inurl:trash intitle:index.of
inurl:.ssh intitle:index.of authorized_keys
inurl:/sites/default/files/webform/
intitle:Index of /__MACOSX ...
(intext:"index of /.git") ("parent ...

2016inurl:safm.asp ext:asp
03-07
201601-06
201512-21
201511-13
201511-11
201511-11
201511-02
201510-30
201510-22
201510-22
201510-20
201510-19
201510-19
201510-19
201510-16

intitle: Index of /awstats/data

inurl:/server/webapps
intitle:index.of.mail

name =find liferay file page Google dork Description:

index:"html/js/editor/fckeditor/ed...
inurl:/FCKeditor/editor/filemanager/upload/ Let's you go
through unprotected files in the FC...
inurl:pictures intitle:index.of Loads of personal pictures
and what not Sent from trump t...
One man's trash is another man's treasure. inurl:trash
intitle:index.of Decoy ...
SSH Keys inurl:.ssh intitle:index.of authorized_keys
Decoy ...
Description: Drupal default web-forms' storage path,
usually a lot of files there contains juic...
MAC OS X. Parent Directory Wordpress information. Xploit ...
This dork will find git repository's which may have
sensitive information. (intext:"ind...
inurl:safm.asp ext:asp
http://atawho.blogspot.com.tr/2016/03/simple-aspfilemanager.html ...
Awstats Log file's directory can reveal file/directory
location These logs file may also revea...
Google Search: inurl:/server/webapps Submission Date:
12/19/2015 Description: Apache Tomcat...
Dork with juicy info. Enjoy xD. Dork by Rootkit
Pentester. ...

inurl:pipermail intitle:index.of parent

Pipermail Archives Decoy ...

inurl:"wp-content/uploads/private"

Directories with juicy data. Dork by Rootkit Pentester. ...

intitle:index.of inurl:grades site:edu

Directories containing grades. Decoy ...

intitle:index.of parent inurl:repos

"Desktop" parent intitle:index.of
"My Documents" "parent" intitl...
"sql" "parent" intitle:index.o...
inurl:/aspnet_client/system_web/

http://www.google.com/search?q=intitle:index.of parent
inurl:repos Shared repositories. Very...
http://www.google.com/search?q="Desktop" parent
intitle:index.of Desktops shared o...
http://www.google.com/search?q="My Documents"
"parent" intitle:index.of ...
Directories containing SQL Installs and/or SQL
databases... Decoy ...
Google dork Description: Juice Directory "ASP" Google
search: inurl:/aspnet_client/s...

inurl:.DS_Store intitle:index.of

Directories with DS_Store files. By Rootkit Pentester. ...

inurl:.listing intitle:index.of

Directories with .listing files. By Rootkit Pentester. ...

inurl:users intitle:index.of

http://www.google.com/search?q=inurl:users
intitle:index.of User folders containing interest...

201510-16
201510-16
201509-17
201509-10
201509-07
201509-01
201508-24
201508-19
201508-10
201507-09
201506-30
201506-17
201506-17
201506-10
201506-04

private parent intitle:index.of

http://www.google.com/search?q=private parent
intitle:index.of Dork for all sorts of juicy s...

mail spool intitle:index.of

Dork for mail spools. Decoy ...

inurl:"default.php" intext:"website...
intitle:"Index.of" "attachments&quo...
intitle:"Index of" "WhatsApp Databa...
inurl:"/cms/app/webroot"
intitle:"Index of" "WhatsApp Images...
intitle:"Index of" "DCIM"
intext:index of sym
intitle:index.of.pubs

Dork= inurl:"default.php" intext:"website" "has been

successfully inst...
Directories with interesting info. Have Fun Responsible.
Dork by Rootkit Pentester. ...
this dork find db.crypt/.db files of whatsapp
conversations you can open them with https://co...
inurl:"/cms/app/webroot" Author:ShockvaWe (mrnoone)
zm ...
WhatsApp Images folder, usually from backups. -pmbento ...
A lot of Camera Photos Dump. Have Fun!. Rootkit. ...
Dork: intext:index of sym Most of hacker use auto server
symlink script and grab all the con...
Exploit title: intitle:index.of.pubs Description:
intitle:index.of.pubs Sensitive Directories...

intitle:"Index of" "wwwroot"

Directory of wwwroot Dork. Enjoy xD. By Rootkit. ...

intitle:"index of" inurl:"no-ip.com...

# Exploit Title: intitle:"index of" inurl:"no-ip.com" #

Google Dork: intit...

intitle:"Index Of" intext:"iCloud P...

From: Creep Mode Baby ...

inurl:private_files

Directory private files xD. By Rootkit. ...

intitle:"index of" "onetoc2" &...

# Exploit Title: intitle:"index of" "onetoc2" "one" #

Google Dor...

https://www.exploit-db.com/google-hacking-database/3/?pg=1

Table of Contents:
Footholds
Files containing usernames
Sensitive Directories
Web Server Detection
Vulnerable Files
Vulnerable Servers
Error Messages
Files containing juicy info
Files containing passwords
Sensitive Online Shopping Info
Network or vulnerability data
Pages containing login portals
Various Online Devices
credit http://www.exploit-db.com/google-dorks/
2014-04intitle:Zimbra Web Client Sign In
21

Pages containing login portals

2014-04intitle:Zimbra Web Client Log In

21

Pages containing login portals

2014-04inurl:typo3/install/index.php?mode=
07

Pages containing login portals

2014-04inurl:typo3conf/localconf.php
07

Files containing passwords

2014-03inurl:/backup intitle:index of backup intext:*sql

31

Files containing passwords

2014-03inurl:Citrix/XenApp/auth/login.aspx
31

Pages containing login portals

2014-03filetype:pdf acunetix website audit &q

31

Files containing juicy info

2014-03inurl:crossdomain filetype:xml intext:allow-access Files containing juicy info

27
2014-03inurl:clientaccesspolicy filetype:xml intext:allow
27

Files containing juicy info

2014-02intitle:Admin inurl:login.php site:.co.in

28

Pages containing login portals

2014intitle:WSO 2.4 [ Sec. Info ], [ Files

01-03

dork to find uploaded WSO 2.4 shell by hackers. found by

Anon?M ID

2014intitle:=[ 1n73ct10n privat shell ]=

01-03

the dork is used to find uploaded 1n73ct10n Shell on website.

found by Anon?M ID

2013- filetype:php intext:!C99Shell v. 1.0

11-25 beta&qu

php backdoor: c99 shell -[Voluntas Vincit Omnia]- website

http://www.erisresearch.org/

2013intitle:uploader by ghost-dz ext:php

11-25

intitle:uploader by ghost-dz ext:php

2013inurl:1337w0rm.php intitle:1337w0rm
08-08

Finds websites that have 1337w0rms CPanel cracker uploaded.

Since the Cracker is relatively n

2012inurl:r00t.php
11-02

This dork finds websites that were hacked, backdoored and

contains their system information e

2012intitle:C0ded By web.sniper
11-02

User & Domain || Symlink Using this dork you can find the User
and the Domains of the Serv

2012intitle:Priv8 SCR
11-02

I am Un0wn_X Symlink User configs intitle:Priv8 SCR

2011inurl:amfphp/browser/servicebrowser.swf AMFPHP service browser, debug interface. Author: syddd

09-26
2011allintext:fs-admin.php
01-09

A foothold using allintext:fs-admin.php shows the world

readable directories of a

2006(intitle:SHOUTcast Administrator)|(int
05-03

sHOUTcast is a free-of-charge audio homesteading solution. It

permits anyone on the internet to

2006(intitle:WordPress
03-15

Alter setup configuration files.add ?step=1

2006index of / ( upload.cfm | upload.asp |

03-06

searches for scripts that let you upload files which you can then
execute on the server.

2006- Please re-enter your password It must match

Invision Powerboard registration pages. Plain and simple.
02-08
2006inurl:tmtrack.dll?
01-04

This query shows installations of Serena Teamtrack.

(www.serena.com).You may be able to adjust

2005inurl:polly/CP
10-06

You can get into admin panel without logging.

2005intitle:net2ftp powered by net2f

09-25

net2ftp is a web-based FTP client written in PHP. Lets explain this

in detail. Web-based means

2005intitle:MyShell 1.1.0 build 20010923

08-15

Basicly MyShell is a php program that allows you to execute

commands remotely on whichever serv

2005- intitle:YALA: Yet Another LDAP

05-02 Administrator

YALA is a web-based LDAP administration GUI. The idea is to

simplify the directory administrati

2005- intitle:ERROR: The requested URL could not

squid error messages, most likely from reverse proxy servers.
04-27 b
2004- inurl:phpOracleAdmin/php 12-19 download -cv

phpOracleAdmin is intended to be a webbased Oracle Object Manager.In

many points alike phpMyAdm

2004- PHPKonsole PHPShell filetype:php 11-28 echo

PHPKonsole is just a little telnet like shell wich allows you to run
commands on the webserver.

2004- filetype:php HAXPLORER Server Files Haxplorer is a webbased filemanager which enables the user to browse
11-28 Browser&
files on the webserver. Yo
2004- inurl:ConnectComputer/precheck.htm Windows Small Business Server 2003: The network configuration page is
11-06 | inurl:Remote/
called ConnectCompu
2004- (inurl:81/cgi-bin/.cobalt/) |
10-22 (intext:Welco

The famous Sun linux appliance. The default page displays this
text:Congratulations on Ch

2004- intitle:Web Data Administrator

10-09 Login

The Web Data Administrator is a utility program implemented in ASP.NET

that enables you to easi

2004- adding new user inurl:addnewuser - Allows an attacker to create an account on a server running Argosoft
07-20 &quo
mail server pro for window
2004PHP Shell (unprotected)
07-12

PHP Shell is a shell wrapped in a PHP script. Its a tool you can use to
execute arbiritary she

2004Public PHP FileManagers

07-12

PHPFM is an open source file manager written in PHP. It is easy to set up

for a beginner, but s

2004WS_FTP.LOG can be used in many ways to find more information about a

+htpasswd +WS_FTP.LOG filetype:log
05-20
server. This query is very
2003intitle:admin intitle:login
09-09

Admin Login pages. Now, the existance of this page does not necessarily
mean a server is vulner

2013intext:root:x:0:0:root:/root:/bin/bash Author: ./tic0 | Izzudin al-Qassam Cyber Fighter

04-22
2013inurl:/root/etc/passwd intext:ho
04-22

inurl:/root/etc/passwd intext:home/*:

2006The search reveals usernames (right in the URL in green) and links to
site:extremetracking.com inurl:login=
07-31
the sites that are signed

2005- intext:SteamUserPassphrase=
06-05 intext:&qu

This will search for usernames and passwords for steam

(www.steampowered.com) taken from the St

2004OWA Public folders & Address book

06-19

This search jumps right to the main page of Outlook Web Access
Public Folders and the Exchange

2004A standard FTP configuration file that provides far too many details
filetype:conf inurl:proftpd.conf -sample
05-20
about how the server is se
2004filetype:log username putty
05-13

These log files record info about the SSH client PUTTY. These files
contain usernames, site nam

2004- filetype:reg reg +intext:internet account This google search reveals users names, pop3 passwords, email
05-12 ma
addresses, servers connected to a
2004- filetype:reg reg HKEY_CURRENT_USER
05-11 username

This search finds registry files from the Windows Operating system.
Considered the soul&q

2004+intext:webalizer +intext:Total
05-03

The webalizer program displays various information but this query

displays usernames that have

2004- inurl:php inurl:hlstats intext:Server

04-28 Userna

This page shows the halflife stat script and reveals the username to
the system. Table structur

2004index.of perform.ini
04-13

This file contains information about the mIRC client and may include
channel and user names.

2004index of / lck
04-13

These lock files often contain usernames of the user that has locked
the file. Username harvest

2004inurl:admin filetype:asp inurl:userlist

03-16

This search reveals userlists of administrative importance. Userlists

found using this method c

2004inurl:admin inurl:userlist
03-16

This search reveals userlists of administrative importance. Userlists

found using this method c

2003sh_history files
06-24

Ok, this file contains what a user typed at a shell command prompt.
You shouldnt advertise thi

2003bash_history files
06-24

Ok, this file contains what a user typed at a shell command prompt.
You shouldnt advertise thi

2014allinurl:/hide_my_wp=
02-05

i just found a google dork that is file/path disclosure of Hide My WP

plugin Google dork -

2013intitle:index of intext:.ds_stor
11-25

Mac OSX directories -[Voluntas Vincit Omnia]- website

http://www.erisresearch.org/ Go

2013intitle:index of myshare
09-24

Google search for shared HDD directories or shared directories on

servers. Gives access to oft

2013inurl:8080 intitle:Dashboard [Jenkins] #Summary: Acces to Jenkins Dashboard #Author: g00gl3 5c0u7
08-08
2013intitle:index.of intext:.bash_history
08-08

the GHDB on subject (intitle:index.of intext:.bash_history) finds all

home users directory pat

2013- intext:xampp-dav# Exploit Title: google dork for apache directory listing by url edit #
08-08 unsecure:$apr1$6O9scpDQ$JGw2Tjz0j Google Dork: intext:xa
2013index of inurl:sym
04-09

Google Dork: index of inurl:sym You can Steal the symlinks of other
Servers A

2013index of inurl:root intitle:symlink

04-09

Google Dork: index of inurl:root intitle:symlink Steal Others Symlink

Author: Un0wn

2012inurl:ckfinder intext:ckfinder.html in Dork: inurl:ckfinder intext:ckfinder.html intitle:Index of /ckfinder

11-02
2011inurl:/xampp
11-19

this dork looks for servers with xampp installed

2010allintext:WebServerX Server at
11-10

Quick and dirty WebserverX HTTP server google dork

2010intitle:index.of ios -site:cisco.com

11-10

Google search for Cisco IOS images Author: fdisk

2010intitle:index.of cisco asa -site:cisco.com Google search for Pix/Asa images Author: fdisk
11-10
2006intitle:index.of.config
07-14

These directories can give information about a web servers

configuration. This should never be

2006allintitle:FirstClass Login
02-28

allintitle:FirstClass Login this is for firstclass directory listingsgo to

http://[

2006- inurl:install.pl intext:Reading path

01-16 paramat

Excelent information for foot holds. Everything from OS, to forum

software, etc. Other exploits

2005- Warning: Installation directory exists

12-01 at&qu

by this dork you can find fresh installations of Zen-Cartsee Full

Disclosure forums fore detail

2005- Welcome to the directory listing of

11-28 &q

this is for NetworkActiv-Web-Server directory listing

2005- log inurl:linklint filetype:txt 11-11 checking&qu

Linklint is an Open Source Perl program that checks links on web sites.
This search finds the L

2005Directory Listing for Hosted by

09-26

directory listing for Xerver web server

2005- intitle:Folder Listing

09-26 Folder Li

directory listing for Fastream NETFile Web Server

intitle:Backup2005Management
09-13
(phpMyBackup v.0.4

phpMyBackup is an mySQL backup tool, with features like copying backups to a

different server u

2005- intitle:pictures
07-21 thumbnails site:pictu

This search reveals the photo albums taken by Sprint PCS customers. Pictures taken
with Sprint

2005intitle:index.of WEB-INF
05-02

Finds java powered web servers which have indexing enabled on their config
directory

2005- intitle:index.of
03-26 /maildir/new/

search gives you a mailbox dir. Contains a lot of mails.

2005- filetype:ini Desktop.ini

02-17 intext:mydocs.dll

This dork finds any webshared windows folder inside my docs. You can change the
end bit i

2005filetype:torrent torrent
01-16

Torrent files .. dont expect to find spectacular stuff with this kind of string, this just
to

2005- Index of rar r01 nfo

01-09 Modified 2004

New Warez Directory Lists

2005- Web File Browser Use

01-07 regular exp

This will ask google to search for a php script used to manage files on a server. The
script &q

2005- intitle:HFS /
01-05 +HttpFileServer&qu

The HttpFileServer is a Java based mechanism for providing web access to a set of
files o

2005- intitle:upload inurl:upload The search reveals server upload portals.An attacker can use server space for his
01-01 intext:upload -forum -
own benefit.
2004- intitle:index of inurl:ftp
12-30 (pub | inco

Adding inurl:ftp (pub | incoming) to the index.of searches helps locati

2004- allinurl:/*/_vti_pvt/ |
12-29 allinurl:

Frontpage extensions for Unix ? So be it..

2004These directories reveal the configuration file of the abyss webserver. These files
intitle:index.of abyss.conf
12-19
can contain
2004- intitle:Index of /CFIDE/
12-19 administrator

With ColdFusion, you can build and deploy powerful web applications and web
services with far l

2004- Powered by Invision

12-19 Power File Manager

Invision Power File Manager is a popular file management script, written in the
popular PHP Scr

2004- intitle:index of parent

12-05 director

This search uses desktop.ini to track users with a webserver running on their
desktop computers

2004- intext:Powered By:

11-28 TotalIndex intitle:

TotalIndex v2.0 is an open source script that is designed to replace the simple, and
boring def

2004- intitle:Index.Of / stats

11-07 merchant cgi-

This search looks for indexes with the following subdirectories: stats, merchant,
online-store

2004- intitle:index of
10-31 intext:content.

This dork indicates the Local settings dir in most cases, and browseble server
dire

2004- intitle:index of -inurl:htm 10-20 inurl:htm

Yes! I probably have should have told you guys earlier, but this is how ive been
getting 100%

2004index.of.dcim
10-25

The DCIM directory is the default name for a few brands of digital camers. This
is not a big ne

2004- intitle:Directory Listing For

10-19 intext:T

The Google Hackers Guide explains how to find Apache directory indexes,
which are the most comm

2004- intitle:webadmin /*
09-24 filetype:php dir

Webadmin.php is a free simple Web-based file manager. This search finds sites
that use this sof

2004- intitle:index.of (inurl:fileadmin TYPO3 is a free Open Source content management system for enterprise
09-21 | intitle:filead
purposes on the web and in
2004- intitle:Index of * inurl:my
09-10 shar

These are index pages of My Shared Folder. Sometimes they contain juicy
stuff like

2004intitle:index.of /AlbumArt_
08-26

Directories containing commercial music.AlbumArt_{.*}.jpg are

download/create by MS-Windows Med

2004- intext:d.aspx?id ||
08-05 inurl:d.aspx

The YouSendIt team was formed to tackle a common problem: secure

transmission of large do

2004index of / picasa.ini
07-20

Picasa is an Automated Digital Photo Organizer recently aquired by Google.

This search allows

2004index.of.password
07-16

These directories are named password. I wonder what you might find in here.
Warning

2004- inurl:explorer.cfm
10-31 inurl:(dirpath|This_Directory)

Filemanager without authentication.

2004Index of phpMyAdmin
07-12

phpMyAdmin is a tool written in PHP intended to handle the administration of

MySQL over the Web

2004- filetype:cfg ks intext:rootpw 06-14 sample -test -howto

Anaconda is a linux configuration tool like yast on suse linux. The root password
is often encr

2004- intitle:album permissions

06-02 Users

Gallery (http://gallery.menalto.com) is software that allows users to create

webalbums and uplo

2004- Index Of /network last

06-01 modified&

Many of these directories contain information about the network, though an

attacker would need

2004- intitle:intranet inurl:intranet

05-13 +intext:huma

According to whatis.com: An intranet is a private network that is contained

within an ent

2004inurl:/tmp
05-11

Many times, this search will reveal temporary files and directories on the web
server. The info

2004index of inurl:recycler
05-04

This is the default name of the Windows recycle bin. The files in this directory
may contain se

2004This is the default installation location of Oracle manuals. This helps in

inurl:/pls/sample/admin_/help/
04-28
footprinting a serve
2004inurl:ojspdemos
04-28

This directory contains sample Oracle JSP scripts which are installed on the
server. These prog

2004inurl:j2ee/examples/jsp
04-28

This directory contains sample JSP scripts which are installed on the server. These
programs ma

2004index of cgi-bin
04-23

CGI directories contain scripts which can often be exploited by attackers.

Regardless of the vu

2004intitle:Index of cfide
04-19

This is the top level directory of ColdFusion, a powerful web development

environment. This dir

2004intitle:index.of.personal This directory has various personal documents and pictures.

03-29
2004- intitle:Index of
02-10 c:\Windows

These pages indicate that they are sharing the C:\WINDOWS directory, which is the
system folder

Welcome to
2003phpMyAdmin Create
08-12
ne

phpMyAdmin is a widly spread webfrontend used to mantain sql databases. The

default security me

2004- inurl:backup intitle:index.of This query reveals backup directories. These directories can contain various
03-16 inurl:admin
information rangin
2003index.of.password
06-27

These directories are named password. I wonder what you might find in here.
Warning

2003protected
06-27

What could be in a directory marked as protected? Lets find out

2003secure
06-27

What could be hiding in directories marked as secure? lets find out

2003winnt
06-27

The \WINNT directory is the directory that Windows NT is installed into by default.
Now just be

2003private
06-27

What kinds of things might you find in directories marked private? lets find
out..

2003secret
06-27

What kinds of goodies lurk in directories marked as secret? Find out

2003- Look in my backup

06-24 directories! Please?

Backup directories are often very interesting places to explore. More than one
server has been

2006- intitle:BadBlue: the file05-23 sharing web server

Badblue file sharing web server detection

2006- intext:Target Multicast

05-03 Group be

Multicast Beacon is a multicast diagnostic tool written in Perl which uses the
RTP pr

2006- intitle:Apache Status

05-03 Apache Ser

New Apache Server Status Dork

2006- inurl:wl.exe inurl:?SS1=

02-08 intext:Operating sy

List server apparently keeps track of many clients, not just Domains and hardware,
but Operatin

2005- inurl:nnls_brand.html OR
11-16 inurl:nnls_nav.html

Novell Nterprise Linux Services detection dork. Some of the features are:* iFolder*
Samba* NetS

2005- (intitle:502 Proxy

05-30 Error)|(intitle:&qu

A reverse proxy is a gateway for servers, and enables one web server to provide
content from an

2005- intitle:Welcome to
05-20 602LAN SUITE *

The 602LAN SUITE runs on a webserver called WEB602/1.04 and includes

webmail.

2005- intitle:Document title

05-02 goes here intit

IBM Http Server (AS/400)

intitle:Welcome To Your
2005WebSTAR Home
05-02
Page&qu

This is the default page for the WebSTAR (Macintosh) web server (Headers say >
Server: Web

2005- intitle:Welcome to the

04-27 Advanced Extranet Ser

Webserver detection: The Advanced Extranet Server project aims to create an

extensible open sou

intitle:Welcome to
2005Windows Small Business
04-16
Se

Another way to find Small Business Server 2003, for more results check the dork by
JimmyNeutron

2005thttpd webserver
03-29

thttpd is is a webserver written in C and should compile and run on most unix-like
systems. As

2005- intitle:IPC@CHIP
03-29 Infopage

web server detection for IPC@chip embedded webserverThe dork uses the
webservers infopage whic

2005yaws.*.server.at
03-31

YAWS (http://yaws.hyber.org), Yet Another Web Server, is a HTTP high perfomance

1.1 webserver.

2005- intitle:Test Page for the

03-20 Apache HTTP Server

Apache 2.0 on Fedore Core Test page

2005- Powered.by.RaidenHTTPD RaidenHTTPD ( http://www.raidenhttpd.com/en ) is a full featured web server

03-18 intitle:index.of
software for Window
2005- (inurl:81-cobalt | inurl:cgiCobal RaQ internal pages
03-05 bin/.cobalt)
2005- intitle:welcome to mono
02-15 xsp

XSD is the demo webserver for the Mono project and allows the execution of
ASP.NET on Unix

2005- inurl:oraweb 01-27 site:oraweb.org

Oracle administrators tend to naming their servers ora* maybe because they
forget the name of

2005- Netware * Home

01-26 inurl:nav.html

Rather than submitting various searches for all kinds of NetWare related pages,
Novell NetWare

2005- XAMPP
01-21 inurl:xampp/index

XAMPP is an easy to install Apache distribution containing MySQL, PHP and Perl.
XAMPP is really

2004inurl:2506/jana-admin
12-13

The JanaServer 2 is amongst other things a proxy server, that makes it possible for
LAN members

2004- allintext:Powered by
12-13 LionMax Software

WWW File Share Pro is a small HTTP server that can help you share files with your
friends. They

2004- intitle:Resin Default

11-30 Home Page

Resin provides a fast standalone web server. This search locates those servers based
on the tit

2004- intitle:Welcome To
11-28 Xitami -site:xitami

Default Xitami installationAdditionally every default installation of Xitami webserver

has a te

2004- intitle:Welcome to Your

This finds the default Apache page on Debian installs.
11-13 New Home Page!
2004- About Mac OS Personal
11-07 Web Sharing

Mac OS Personal Web Sharing allows Mac OS users to share Folders over the Web.If
you open this

2004- Switch to table format

11-07 inurl:table|pla

This is an index page of OReilly WebSite Professional.WebsitePro was developed by

Oreily and d

2004- intitle:Object not found!

This one detects apache werbservers (2.0.X/SuSE) with its error page.
10-12 intext:
2004- intitle:Open WebMail
10-12 Open WebMai

Open WebMail is a webmail system based on the Neomail version 1.14 from Ernie
Miller. Ope

2004- intitle:error 404 From

10-12 RFC 2068

WebLogic Server Process Edition extends the functionality of the Application Server
by convergi

2004- intitle:Directory Listing,

10-12 Index of /*/

Vendor page:Einfache HTTP-Server-Software fr privates HomepageHosting

2004- intitle:Lotus Domino Go

10-12 Webserver: &qu

Domino Go Webserver is a scalable high-performance Web server that runs on a

broad range of pla

2004- intitle:Object not found

This search will show netware apache webservers as the result.
10-09 netware
intitle:AnswerBook2
2004inurl:ab2/ (inurl:8888 |
09-26
inurl

First of all this search indicates solaris machines and second the webservice is
vulnerable to

2004- intext:404 Object Not

08-16 Found Microsoft-

This search finds IIS 5.0 error pages = IIS 5.0 Server

2004- intitle:Shoutcast
07-29 Administrator

shoutcast is software for streaming mp3 and such. This search finds the
administrator page. It

2004- powered by
07-29 shoutstats hour

shoutstats is a fast, free Shoutcast server statistic analysis program. It produces

instant and

2004- Novell, Inc WEBACCESS

This may be used to find Novell Grouwise Webaccess servers.
07-26 Username Passwor
2004- httpd+ssl/kttd * server The version of a particular web server can be detected with a simple query like this
07-19 at intitle:ind
one. Altho
2004- fitweb-wwws * server at
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- sEDWebserver * server

07-19 +at intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Red Hat Secure/3.0

07-19 server at

The version of a particular web server can be detected with a simple query like this
one. Altho

2004Red Hat Secure/2.0

07-19

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- OpenSA/1.0.4
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- OmniHTTPd/2.10
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Microsoft-IIS/6.0
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Microsoft-IIS/5.0 server

07-19 at

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Microsoft-IIS/4.0
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Microsoft-IIS/* server at The version of a particular web server can be detected with a simple query like this
07-19 intitle:inde
one. Altho
2004- MaXX/3.1
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- JRun Web Server

07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- CERN httpd 3.0B (VAX

07-19 VMS)

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- AnWeb/1.42h
07-19 intitle:index.of

The version of a particular web server can be detected with a simple query like this
one. Altho

2004- Red Hat Unix

07-12 Administration

Red Hat UNIX Administration Pages. This search detects the fixed title for the admin
pages on c

2004Environment vars
07-02

This is a generic way of grabbing those CGI-spewed environmental var lists. To

narrow to things

2004- allinurl:.nsconfig 06-18 sample -howto -tut

Access to a Web servers content, CGI scripts, and configuration files is controlled by
entries

2004inurl:domcfg.nsf
05-17

This will return a listing of servers running Lotus Domino. These servers by default
have very

2004- intitle:300 multiple

05-13 choices

This search shows sites that have the 300 error code, but also reveal a server tag at
the botto

2004- intitle:Snap.Server
04-23 inurl:Func=

This page reveals the existance of a SNAP server (Netowrk attached server or NAS
devices) Depen

2004- intitle:Test Page for

04-20 Apache

This is the default web page for Apache 1.2.6 1.3.9. Hackers can use this
information to dete

allintitle:Netscape
2004FastTrack Server Home
03-18
Page

This finds default installations of Netscape Fasttrack Server. In many cases, default
installat

2004- intitle:Test Page for

03-04 Apache It

This is the default web page for Apache 1.2.6 1.3.9. Hackers can use this
information to dete

2004- intitle:Test Page for

03-04 Apache It

This is the default web page for Apache 1.2.6 1.3.9. Hackers can use this
information to dete

2004- seeing this instead

03-04 intitle:test

This is the default web page for Apache 1.3.11 1.3.26. Hackers can use this
information to de

aboutprinter.shtml (More
2003More Xerox printers on the web! Google found these printers. Should their
Xerox printers on the
08-11
management interface
web
index_i.shtml Ready
2003(Xerox printers on the
08-11
web!)

These printers are not-only web-enabled, but their management interface somehow
got crawled by

2003- inurl:tech-support
08-07 inurl:show Cisco

This is a way to find Cisco products with an open web interface. These are generally
supposed t

2003I like the OpenBSD operating system. I really do. And I like the Apache web server
OpenBSD running Apache
06-24
software. Ho
2003IIS 4.0
06-24

Moving from personal, lightweight web servers into more production-ready

software, we find that

2003- Windows 2000 Internet

06-24 Services

At first glance, this search reveals even more examples of operating system users
enabling the

2003- Apache online

06-24 documentation

When you install the Apache web server, you get a nice set of online documentation.
When you le

2013- -site:simplemachines.org These Dork: -site:simplemachines.org These are the paths and URLs to your SMF
09-24 are the paths
installation&qu
2011Didnt see this anywhere in the GHDB, but its been known for a while and
allinurl:forcedownload.php?file=
08-25
widely abused by oth
2011- ionCube Loader Wizard
05-28 information disclosure

inurl:loader-wizard ext:php This dork displays sensitive information Auth0r:

MaXe

2011vBulletin Install Page Detection

05-27

inurl:/install/install.php intitle:vBulletin * Install System This dork displays the

untreat

2006inurl:simplenews/admin
09-13

hxxp://evuln.com/vulns/94/summary.html

2006- inurl:updown.php |
02-28 intext:Powered by PHP Upl

this (evil ) script lets you to upload a php shell on target server, in most cases
not password

2005- inurl:guestbook/guestbooklist.asp A sql vulnerability has been reported in a Techno Dreams asp script,
12-19 Post Date&
login.asp. http://search.s
2005intitle:CJ Link Out V1
10-26

A cross site scripting vunerability has been discovered in CJ linkout version

1.x. CJ linkout i

2005powered by mailgust
09-26

MailGust 1.9/2.0 (possibly prior versions) SQL injection / board

takevorsoftware:site: http://w

2005powered by my little forum

09-26

My Little Forum 1.5 / 1.6beta SQL Injectionsoftware:site:

http://www.mylittlehomepage.net/my_li

2005- intitle:Control panel Control

09-25 Pa

Build, manage and customize your own search engine friendly news / article
site from scratch

2005inurl:cartwiz/store/index.asp
09-25

The CartWIZ eCommerce Shopping Cart System will help you build your
online store through an int

2005- e107.org 2002/2003

09-13 inurl:forum_post.ph

e107 is prone to an input validation vulnerability. This issue is due to a failure

in the appli

2005several vulnerabilities relating to this.MaxWebPortal is a web portal and

maxwebportal inurl:default
09-13
online community syst
2005- Mail-it Now! intitle:Contact
09-11 for

Mail-it Now! 1.5 (possibly prior versions) contact.php remote code

executionsite: http://www.sk

2005- Warning: Cannot execute a

09-11 blank

Warning: passthru(): Cannot execute a blank command in Warning:

system(): Can

2005Powered by Xcomic
09-08

Powered by xcomicthis is a recent exploit, you can retrieve any file on

target syst

2005Powered by FunkBoard
08-08

FunkBoard V0.66CF (possibly prior versions) cross site scripting, possible

database username/pa

2005- Powered by FlexPHPNews

08-07 inurl:news | in

24/07/2005 2.38.13Flex PHPNews 0.0.4 login bypass/ sql injection, cross site
scripting & re

2005- Powered By: Simplicity oF

08-07 Upload inurl

26/07/2005 16.09.18Simplicity OF Upload 1.3 (possibly prior versons) remote

code execution &

2005- inurl:nquser.php
08-07 filetype:php

Netquery 3.1 remote commands execution, cross site scripting, information

disclosure poc exploi

2005- PHPFreeNews
08-07 inurl:Admin.php

29/07/2005 8.36.03PHPFreeNews Version 1.32 (& previous) sql injection/login

bypass, cross s

2005Powered by SilverNews
08-07

silvernews 2.0.3 (possibly previous versions ) SQL Injection / Login Bypass / Remote
commands e

2005- Powered by Gravity

08-07 Board

4.22 07/08/2005 Gravity Board X v1.1 (possibly prior versions) Remote code
execution, SQL Injec

2005- filetype:mdb standard

07-26 jet

These Microsoft Access Database files may contain usernames, passwords or simply
prompts for su

2005- intitle:PHPstat
06-03 intext:Browser&q

Phpstat shows nice statistical informatino about a websites visitors. Certain

versions are als

2005- intitle:SSHVnc AppletOR

sSHTerm Applet en SSHVnc Applet pages.
05-20 intitle:

2005Anonymous surfing with bigate.cgi. Remove http:// when you copy paste or it wont
inurl:cgi-bin inurl:bigate.cgi
04-27
work.
filetype:pl 2004intext:/usr/bin/perl
12-01
inur

WebCal allows you to create and maintain an interactive events calendar or

scheduling system on

2004- filetype:mdb
11-30 inurl:news/news

Web Wiz Site News unprotected database holds config and admin information in a
microsoft access

2004- inurl:php.exe filetype:exe - It is possible to read any file remotely on the server with PHP.EXE (assuming a script
11-28 example.com
alias fo
2004- Powered by Land Down
11-18 Under 601

sQL injection vulnerability in Land Down Under 601 could give an attacker
administrative access

2004- ext:asp powered by

11-16 DUForum inurl:(mess

DUForum is one of those free forum software packages. The database location is
determined by th

2004- ext:asp inurl:DUgallery

11-16 intitle:3.0 -s

The MS access database can be downloaded from inside the docroot. The user table
holds the admi

2004- filetype:cgi
11-04 inurl:cachemgr.cgi

cachemgr.cgi is a management interface for the Squid proxy service. It was installed
by default

2004powered by YellDL
10-31

Finds websites using YellDL (or also known as YellDownLoad), a download tracker
written in PHP.

2004- inurl:click.php
10-27 intext:PHPClickLog

A script written in PHP 4 which logs a users statistics when they click on a link. The
log is

2004- File Upload Manager

10-27 v1.3 rename

thepeak file upload manager let you manage your webtree with up and
downloading files.

2004- intitle:phpremoteview
10-26 filetype:php &qu

phpRemoteView is webbased filemanger with a basic shell. With this an attacker

can browse the s

2004- intitle:ASP FileMan

10-19 Resend -site:iiswo

FileMan is a corporate web based storage and file management solution for intraand internet.

2004ezBOO WebStats is a high level statistical tool for web sites monitoring. It
ezBOO Administrator Panel -cvs
10-16
allows real time
2004- intitle:mywebftp Please enter
10-14 your password&

MyWebFTP Free is a free lite version of MyWebFTP Personal a PHP script

providing FTP client c

2004Dirlist is an ASP script that list folders in an explorer style: * Tree * Detailed
intitle:Directory Listing tree v
10-14
* Tiled
2004inurl:changepassword.cgi -cvs
10-09

Allows a user to change his/her password for authentication to the system.

Script allows for r

2004- inurl: WWWADMIN.PL

10-06 intitle:wwwad

wwwadmin.pl is a script that allows a user with a valid username and

password, to delete files

2004inurl:cgi.asx?StoreID
10-05

BeyondTV is a web based software product which let you manage your TV
station. All you need is

2004filetype:lit lit (books|ebooks)

09-18

Tired of websearching ? Want something to read ? You can find Ebooks

(thousands of them) with t

2004- PHP-Nuke create super user

09-13 right now !

PHP-Nuke is a popular web portal thingie. It has popped up in the Google

dorks before. I think

2004Gallery configuration setup files

09-10

Gallery is a popular images package for websites. Unfortunately, with so

many users, more bugs

2004- inurl:nph-proxy.cgi Start

09-09 browsi

Observing the web cracker in the wild, one feels like they are watching a
bear. Like a bear sto

2004Toast Forums is an ASP message board on the Internet. Toast Forums also
link:http://www.toastforums.com/
09-06
has all the features of
2004inurl:plog/register.php
09-06

pLog is a popular form of bloggin software. Currently there are estimated

about 1450 sites runn

2004inurl:robpoll.cgi filetype:cgi
08-30

robpoll.cgi is used to administrate polls.The default password used for

adding polls is robpol

2004- intitle:PHP Explorer ext:php

08-20 (inurl:ph

This searches for PHP Explorer scripts. This looks like a file manager with
some nice extra opt

2004ext:cgi inurl:ubb6_test
08-13

The UBB trial version contains files that are not safe to keep online after
going live. The ins

2004filetype:inc inc intext:setcookie

08-01

Cookies are often used for authentication and a lot of other stuff.The inc
php head

2004filetype:wsdl wsdl
08-01

The XML headers are called *.wsdl files.they can include data, functions or
objects. An attacke

2004filetype:cnf my.cnf -cvs -example

07-21

The MySQL database system uses my.cnf files for configuration. It can
include a lot of informat

2004Programmers do strange things sometimes and forget about security. This

filetype:php inurl:viewfile -ind
06-16
search is the perfect e
2004- intitle:Index of / modified
06-10 php.exe
2014inurl:/reports/rwservlet intext:
02-05

PHP installed as a cgi-bin on a Windows Apache server will allow an attacker

to view arbitrary
Search Oracle Reports likely vulnerable to DB user/password disclosure
(CVE-2012-3152 and CVE

2013inurl:struts filetype:action
11-25

Google search for actoin files wich could be explotable via CVE-20132251 Multiple Remot

inurl:.php?
2013inurl:.php? intext:CHARACTER_SETS,COLLATIONS, ?intitle:phpmyadmin
intext:CHARACTER_SETS,COLLATIONS,
08-08
view phpMyAdmin of web sit
?int
2012inurl:/wp-content/w3tc/dbcache/
12-31

Jay Townsend

2012- intext:SQL syntax &

12-31 inurl:index.php?=id &

# Exploit Title: SQLI Exploit # Google Dork: intext:SQL syntax &

inurl:index.php?=id &

2012intext: intext: intext: intext: intext:

08-21

More than 100k sites affected It will show asp sites that are vulnerable to
sql injection (

2012intitle:awen+intitle:asp.net
05-15

Hi, This google dork exposes any already uploaded asp.net shells which
are available in Bac

2012- intitle:-N3t filetype:php

05-15 undetectable

intitle:-N3t filetype:php undetectable Search WebShell indexed on a

page.

2011- inurl:.php intitle:- BOFF 1.0 intext:[

12-23 Sec. Info ]

This search attempts to find the BOFF 1.0 Shell. Author: alsa7r

2011- filetype:php inurl:tiki-index.php

11-25 +sirius +1.9.*

Finds servers vulnerable to the CVE-2007-5423 exploit. Author: Matt

Jones

2011- filetype:php inanchor:c99 inurl:c99

11-24 intitle:c99she

This search attempts to find the c99 backdoor that may be knowingly or
unknowingly installed o

2011- inurl:php intitle:Cpanel , FTP

11-19 CraCkeR

locates cpanel and ftp cracker. Author: alsa7r

2011intitle:#k4raeL sh3LL
10-11

intitle:#k4raeL sh3LL Finds K4rael Shell , though many of them are dead
but we can get som

2011inurl:view.php?board1_sn=
09-26

locates a webapp vulnerable to SQL injection

2011intitle:m1n1 1.01
07-26

find the b374k shell. Submitted by : biLLbud

2011intitle:Locus7shell intext:Software: Submitted by lionaneesh Thanks

intitle:Locus7shell intext:Software:
05-03
Ane
2011intitle:[EasyPHP] Administration
03-23

Unprotected EasyPHP Admin page detection.. Author: Aneesh Dogra

(lionaneesh)

2011- MySQL: ON MSSQL: OFF Oracle: OFF

02-24 MSSQL: OFF Postgr

Author :- eXeSoul You will get lots of web shells even some private
shells.

2011intitle:cyber anarchy shell

02-24

Submitter: eXeSoul cyber anarchy shell

2010inurl:/vb/install/upgrade.php
12-10

Vbulletin custom updrade wizards. Author: ScOrPiOn

2010inurl:/vb/install/install.php
12-10

Vbulletin installation wizards, allow users to modify installation parameters. May also rev

2010- CGI-Telnet Unit-x Team

12-09 Connected to *.com&qu

Locates CGI-Telnet web shells. Author: ScOrPiOn

2010- www.*.com c99shell OR

12-08 www.*.ne

Locates c99 web shells Author: ScOrPiOn

2010- safe_mode: * PHP version: *

Locates r57 web shells Author: ScOrPiOn
12-07 cURL: * MySQL
2010r57shell
12-07

Locates r57 web shells Author: ScOrPiOn

2010r57shell 1.4
12-07

Locates r57 web shells Author: ScOrPiOn

2010- [ phpinfo ] [ php.ini ] [ cpu ] [

Locates r57 web shells Author: ScOrPiOn
12-07 mem ]
2010- inurl:index.php?pagedb=rss 11-13 Vulnerability -inurl

CVE: 2007-4007 EDB-ID: 4221 This google dork possibly exposes sites with the Article Dire

2006- intitle:Uploader Uploader

05-03 v6 -pixloa

File upload servers, dangerous if used in couple with mytrashmail.com

2006intitle:MvBlog powered
04-25

MvBlog is prone to multiple input-validation vulnerabilities. These issues are due to a failu

2006- intitle:Horde :: My Portal 02-03 [Tic

Hi It will give you administrative ownership over Horde webmail system plus all users in H

2006inurl:rpSys.html
01-22

Web configuration pages for various types of systems. Many of these systems are not
password pr

2006- filetype:pl intitle:Ultraboard

01-16 Setup

setup pages to the ultraboard system.

2005- Welcome to Administration

This reveals admin site for Argo Software Design Mail Server.
09-17 Genera
2005XOOPS Custom Installation
09-16

XOOPS custom installation wizards, allow users to modify installation parameters. May al
reve

2005- you can now password |

09-15 this is a

IMchaos link tracker admin pages. Reveals AIM screennames, IP ADDRESSES AND OTHER
via deta

2005- set up the administrator

07-03 user inurl:pi

Using this, you can find sites with a Pivot weblog installed but not set up. The default set u

2005html allowed guestbook

06-11

When this is typed in google it finds websites which have HTML Enabled guestbooks. This
real

2005- Powered by: vBulletin

03-19 Version 1.1.5

This google dork reveals vulnerable message boards. It works for all Vbulletin version up t

2005This search brings up results for Novell NetWares Web Search Manager.. at best the sites
inurl:/NSearch/AdminServlet
01-26

2005inurl:servlet/webacc
01-06

I was playing around on the net when I found a small problem with Novells
WebAcces. With User.

2004- There are no Administrators

12-27 Accounts i

This is a more specific search for the vulnerable PhpNuke index already seen
on this website.Ph

2004- intitle:Mail Server CMailServer

12-04 Webmail

CMailServer is a small mail webmail server. Multiple vulnerabilities were

found, including buff

2004inurl:newsdesk.cgi? inurl:t=
11-07

Newsdesk is a cgi script designed to allow remote administration of website

news headlines.Due

2004- (inurl:/shop.cgi/page=) |
11-07 (inurl:/shop.pl/page=)

This is a double dork finds two different shopping carts, both vulnerable1)
Cyber-V

2004AOL Journals BlogID Incrementing Discloses Account Names and Email

inurl:aol*/_do/rss_popup?blogID=
11-06
AddressesAOL Journals is bas
2004- natterchat inurl:home.asp 11-05 site:natterchat.co.uk

NatterChat is a webbased chat system written in ASP.An SQL injection

vulnerability is identifie

2004- intitle:phpMyAdmin Welcome to phpMyAdmin is a tool written in PHP intended to handle the administration
10-31 phpMyAdmin ***
of MySQL over the Web
2004- intitle:phpMyAdmin Welcome to search for phpMyAdmin installations that are configured to run the MySQL
08-21 phpMyAdmin ***
database with root pri
2004ftp:// www.eastgame.net
08-20

Use this search to find eastgame.net ftp servers, loads of warez and that sort
of thing.t

2004- intext:Warning: * am able *

08-13 write ** configu

OsCommerce has some security issues, including the following warning

message: Warning: I

2004- allinurl:index.php
07-29 site=sglinks&

Easyins Stadtportal v4 is a German Content Management System for cities

and regions. Version 4

2004- inurl:index.php?
07-29 module=ew_filemanager

http://www.cirt.net/advisories/ew_file_manager.shtml:Product: EasyWeb
FileManager Module http

2004filetype:cgi inurl:fileman.cgi
07-26

This brings up alot of insecure as well as secure filemanagers. These software

solutions are of

2004Zero X reported that Web_Store.cgi allows Command Execution:This

filetype:cgi inurl:Web_Store.cgi
07-26
application was wr
2004hAcxFtpScan software that use l33t h@x0rz to monitor their file stroz on
(Indexed.By|Monitored.By)
07-26
ftp. On the ftp se
2004- Welcome to the Prestige Web06-04 Based Configurat

This is the configuration screen for a Prestige router. This page indicates that
the router has

2004filetype:php inurl:vAuthenticate
06-04

vAuthenticate is a multi-platform compatible PHP and MySQL script which

allows creation of new

2004- intitle:Samba Web

05-04 Administration Tool

This search reveals wide-open samba web adminitration servers. Attackers

can change options on

2004- intitle:Gateway Configuration

04-28 Menu

This is a normally protected configuration menu for Oracle Portal Database

Access Descriptors (

2004This is a default login portal used by Oracle. In addition to the fact that this file
inurl:pls/admin_/gateway.htm
04-28
can be us
2004allinurl:install/install.php
04-06

Pages with install/install.php files may be in the process of installing a new

service or progr

2004allinurl:intranet admin
03-29

According to whatis.com: An intranet is a private network that is contained

within an ent

2004- Select a database to view

03-29 intitle:&quo

An oldie but a goodie. This search locates servers which provides access to
Filemaker pro datab

2004- Welcome to PHP-Nuke

03-18 congratulations

This finds default installations of the postnuke CMS system. In many cases,
default installatio

2004inurl:info.inc.php
03-14

From http://www.securityfocus.com/bid/9664, the AllMyPHP family of products

(Versions 0.1.2 0

2004inurl:footer.inc.php
03-14

From http://www.securityfocus.com/bid/9664, the AllMyPHP family of products

(Versions 0.1.2 0

2004inurl:search.php vbulletin
03-04

Version 3.0.0 candidate 4 and earlier of Vbulletin may have a cross-site scripting
vulnerabilit

0000Welcome to Intranet
00-00

According to whatis.com: An intranet is a private network that is contained

within an ent

2004- intitle:Remote Desktop Web Microsoft Remote Desktop Connection Web Connection pages. These pages are
03-04 Connection
not necessarily insec
2004- intitle:Terminal Services Web Microsoft Terminal Services Web Connector pages. These pages are not
03-04 Connection&quo
necessarily insecure, sine
2004inurl:ManyServers.htm
03-04

Microsoft Terminal Services Multiple Clients pages. These pages are not
necessarily insecure, s

2004- intitle:osCommerce
03-04 inurl:admin intext:redist

This is a decent way to explore the admin interface of osCommerce e-commerce

sites. Depending o

2004Gallery is a nice little php program that allows users to post personal pictures on
Gallery in configuration mode
03-04
their websi
2004YaBB SE Dev Team
03-04

Yet Another Bulletin Board (YABB) SE (versions 1.5.4 and 1.5.5 and perhaps
others) contain an S

2003- Hassan Consultings Shopping These servers can be messed with in many ways. One specific way is by way of
07-08 Cart Version 1.18
the ../
2005- intext:Powered by XX-Cart (version 4.0.8) has multiple input validation vulnerabilities. There doesnt
06-03 Cart: shopping cart soft seem to be
2005- intext:powered by
05-29 Hosting Controller i

Description:==============Hosting Controller is a complete array of Web hosting

automation tool

site:ups.com
2004Ever use the UPS Automated Tracking Service?? Wanna see where packages are
intitle:"Ups Package
11-25
going? Want to Man-i
trackin
2004inurl:midicart.mdb
10-10

MIDICART is s an ASP and PHP based shopping Cart application with MS Access and
SQL database. A

2004- More Info about

10-10 MetaCart Free

MetaCart is an ASP based shopping Cart application with SQL database. A security
vulnerability

2004inurl:shopdbtest.asp
10-10

shopdbtest is an ASP page used by several e-commerce products. A vulnerability in

the script al

2004Comersus is an e-commerce system and has been installed all over the world in more
Comersus.mdb database
07-12
than 20000 s
2004- VP-ASP Shop
06-25 Administrators only

VP-ASP (Virtual Programming ASP) has won awards both in the US and France. It is
now in use i

2004- POWERED BY HIT

06-06 JAMMER 1.0!

Hit Jammer is a Unix compatible script that allows you to manage the content and
traffic exchan

2014
-02- [function.getimagesize]: failed to open stre
05

Just another error that reveals full paths

2014
-02- intext:Access denied for intitle:
05

Here is a Dork I use in conjunction with sqlmap, for shopping

carts with MySQL Error messages

2013
inurl:advsearch.php?module= & intext:sql
-04synta
09

Exploit Title : SQLI Exploit Google Dork :

inurl:advsearch.php?module= & intext:sql syntax

2012
-12- intext:Fatal error: Class Red_Action not f
06

Dork to find Plugin errors in wordpress websites Dork

intext:Fatal error: Class Red_A

2012
-08- CHARACTER_SETS COLLATION_CHARACT
21

CHARACTER_SETS+COLLATION_CHARACTER_SET_APPLICABI
LITY find sql injectab

2012
-05- inurl:*.php?*=*.php intext:Warni
15

PHP Error Messages

2011
Author: eidelweiss
inurl:index.php?m=content+c=rss+catid=10&q
-01http://host/index.php?m=content&c=rss&catid=5 show MySQL
uo
21
Error (tabl
2010
-12- plugins/wp-db-backup/wp-db-backup.php
08

Many of the results of the search show error logs which give an
attacker the server side paths

2010
-11- allintext:fs-admin.php
11

A foothold using allintext:fs-admin.php shows the world

readable directories of a p

2006
-06- intitle:Apache Tomcat Error Repo
15

Apache Tomcat Error messages. These can reveal various kinds

information depending on the type

2006
-04- Unable to jump to row on MySQL r
25

another error message

2006
-04- Warning: Bad arguments to (join|implode) () and another error. open it from cache when not working.
25
2006
-04- Warning: failed to open stream:
25

Just another error message.

2006
This dork reveals logins to databases that were denied for some
-04- Warning: mysql_connect(): Access denied for
reason.
25

2006
-04- Warning: Division by zero in on
25

Just another error that reveals full paths.

2006
-03- filetype:asp + [ODBC SQL
13

This search returns more than just the one I saw already here.
This one will return all ODBC SQ

2005
-09- Warning: SAFE MODE Restriction i
25

This error message reveals full path information. Recommend

use of site: operator to narrow sea

2005
-09- Warning: Supplied argument is not a valid Fi
25

This error message cqan reveal path information. This message

(like other error messages) is of

2005
There seems to have been a problem with
-08the&
16

search reveals database errors on vbulletin sites. View the page

source and you can get informa

2005
-04- intitle:Default PLESK Page
26

Plesk Server Administrator (PSA) is web based software that

enables remote administration of we

2005- Parse error: parse error,

04-26 unexpected T_VARIA

PHP error with a full web root path disclosure

"SQL Server
2005Driver][SQL Server]Line 1: you can find many servers infected with sql injection
04-07
In
2005- Netscape Application
04-05 Server Error page

This error message highlights potentially unpatched or misconfigured Netscape

Application Serve

2005- intext:Error Message :

01-26 Error loading require

This throws up pages which contain CGI ERROR reports which include the file
(and

2004- Warning: mysql_query()

MySQL query errors revealing database schema and usernames.
11-28 invalid q
2004- intitle:Configuration.File
11-13 inurl:softcart.exe

This search finds configuration file errors within the softcart application. It includes
the na

2004- The script whose uid is

10-16 is not

This PHP error message is revealing the webservers directory and user ID.

2004snitz forums uses a microsoft access databases for storage and the default name is
snitz! forums db path error
09-07
Snitz_
2004- filetype:log PHP Parse
08-14 error | P

This search will show an attacker some PHP error logs wich may contain
information on wich an a

2004- ASP.NET_SessionId data .NET pages revealing their datasource and sometimes the authentication
07-26 source=&q
credentials with it. The
2004- ORA-12541: TNS:no
07-16 listener intitle:&qu

In many cases, these pages display nice bits of SQL code which can be used by an
attacker to mo

2004- filetype:php
07-16 inurl:logging.php D

Discuz! Board error messages related to MySQL. The error message may be empty
or contain path i

2004- Internal Server Error

07-16 server at&

We have a similar search already, but it relies on 500 Internal Server which
doesn

2004- PHP application warnings

07-14 failing include_pat

These error messages reveal information about the application that created them
as well as reve

2004- intext:Warning: Failed

07-09 opening o

These error messages reveal information about the application that created them
as well as reve

2004ht://Dig htsearch error

06-24

The ht://Dig system is a complete world wide web indexing and searching system
for a domain or

2004- intitle:Error Occurred

06-24 While Processing Requ

Cold fusion error messages logging the SQL SELECT or INSERT statements and the
location of the

2004- intitle:Error using

06-15 Hypernews Se

HyperNews is a cross between the WWW and Usenet News. Readers can browse
through the messages w

2004- Invision Power Board

05-28 Database Error

These are SQL error messages, ranging from to many connections, access denied to
user xxx, show

2004- error found handling the Cocoon is an XML publishing framework. It allows you to define XML documents
07-29 request cocoo
and transformation
2004- intitle:Execution of this
04-28 script not permitt

This is a cgiwrap error message which displays admin name and email, port numbers,
path names,

2004- intitle:Error Occurred

04-19 The error

This is a typical error message from ColdFusion. A good amount of information is

available from

2004- warning error on line

03-11 php sablotron

sablotron is an XML toolit thingie. This query hones in on error messages generated
by this too

2004- Fatal error: Call to

03-16 undefined function

This error message can reveal information such as compiler used, language used, line
numbers, p

2004- filetype:asp Custom

03-16 Error Message Cate

This is an ASP error message that can reveal information such as compiler used,
language used,

2004- Cant connect to local

03-04 intitle:warning

Another SQL error message, this message can display database name, path names
and partial SQL c

2004- intitle:Under
03-04 construction does

This error message can be used to narrow down the operating system and web
server version which

2004- access denied for user

03-04 using pas

Another SQL error message, this message can display the username, database, path
names and part

2004- Warning: Cannot modify A PHP error message, this message can display path names, function names,
03-04 header information filenames and partial
2004- Warning: pg_connect(): This search reveals Postgresql servers in yet another way then we had seen before.
08-25 Unable to connect to
Path informa
An unexpected token
2004END-OF-STATEMENT
03-04
w

A DB2 error message, this message can display path names, function names,
filenames, partial co

2004- detected an internal

03-04 error [IBM][CLI Driver]

A DB2 error message, this message can display path names, function names,
filenames, partial co

2004- A syntax error has

03-04 occurred filetype:i

An Informix error message, this message can display path names, function names,
filenames and p

2004- An illegal character has

03-04 been found in the s

An Informix error message, this message can display path names, function names,
filenames and p

2004- Syntax error in query

03-04 expression -the

An Access error message, this message can display path names, function names,
filenames and par

2004- supplied argument is not An PostgreSQL error message, this message can display path names, function names,
03-04 a valid PostgreSQL result filenames and
2004- PostgreSQL query failed: An PostgreSQL error message, this message can display path names, function names,
03-04 ERROR: parser: pa
filenames and
2004Incorrect syntax near
03-04

An SQL Server error message, this message can display path names, function names,
filenames and

2004Incorrect syntax near

03-04

An SQL Server error message, this message can display path names, function names,
filenames and

2004- Unclosed quotation mark An SQL Server error message, this message can display path names, function names,
03-04 before the character
filenames and
ORA-00933: SQL
2004command not properly
03-04
ended&qu

An Oracle error message, this message can display path names, function names,
filenames and par

2004- ORA-00921: unexpected

03-04 end of SQL command

Another generic SQL message, this message can display path names, function
names, filenames and

2004- ORA-00936: missing

03-04 expression

A generic ORACLE error message, this message can display path names, function
names, filenames

2004- Supplied argument is not Another generic SQL message, this message can display path names, function
03-04 a valid MySQL resul
names, filenames and
2004sQL syntax error
03-04

Another generic SQL message, this message can display path names and partial SQL
code, both of

2004mysql error with query

03-04

Another error message, this appears when an SQL query bails. This is a generic
mySQL message, s

2004Internal Server Error

03-04

This one shows the type of web server running on the site, and has the ability to
show other in

2004- IIS web server error

03-04 messages

This query finds various types of IIS servers. This error message is fairly indicative of
a som

2004- Windows 2000 web server

Windows 2000 web servers. Aging, fairly easy to hack, especially out of the box
03-04 error messages
2004IIS 4.0 error messages
03-04

IIS 4.0 servers. Extrememly old, incredibly easy to hack

2004sitebuilderpictures
03-04

This is a default directory for the sitebuilder web design software program. If these
people po

2004sitebuilderfiles
03-04

This is a default directory for the sitebuilder web design software program. If these
people po

2004sitebuildercontent
03-04

This is a default directory for the sitebuilder web design software program. If these
people po

2004- ORA-00921: unexpected

01-09 end of SQL command

Another SQL error message from Cesar. This one coughs up full web pathnames
and/or php filename

2003- Chatologica MetaSearch There is soo much crap in this error message Apache version, CGI environment
08-15 stack tra
vars, path name
2003- MYSQL error message:
06-24 supplied argument.

One of many potential error messages that spew interesting information. The results
of this mes

2003Coldfusion Error Pages

06-24

These arent too horribly bad, but there are SO MANY of them. These sites got
googlebotted whil

2012inurl:finger.cgi
11-02

Finger Submitted by: Christy Philip Mathew

2012- site*.*.*/webalizer
08-21 intitle:Usage Statistics

Shows usage statistics of sites. Includes monthy reports on the IP addresses, user
agents, and

2006- intitle:r57shell +uname 05-04 bbpress

compromised servers a lot are dead links, but pages cached show interesting
info, this is r5

2006- The statistics were last

05-03 updated

Results include many varius Network activity logs

2006- inurl:/counter/index.php
04-06 intitle:+PHPCounter

This is an online vulnerable web stat program called PHPCounter

7.http://www.clydebelt.org.uk/c

2006- inurl:NmConsole/Login.asp Ipswitch Whats Up Monitoring 2005!This is a console for Network Monitoring,
03-13 | intitle:&q
access beyond the p
2006- inurl:CrazyWWWBoard.cgi
02-08 intext:detailed debu

gives tons of private forum configuration information.examples: Global variables

installed, wha

2005inurl:ovcgi/jovw
12-31

An HP Java network management tool. It is a sign that a network may not be

configured properly.

2005- inurl:proxy | inurl:wpad

12-21 ext:pac | ext:dat findpro

Information about proxy servers, internal ip addresses and other network

sensitive stuff.

2005- inurl:webalizer filetype:png - ***WARNING: This search uses google images, disable images unless you want
11-21 .gov -.edu -.mil -op
your IP spewed acros
2005- intitle:Retina Report
10-26 CONFIDENTI

This googledork finds vulnerability reports produced by eEye Retina Security

Scanner. The info

2005- Shadow Security Scanner

10-26 performed a vulnerab

This is a googledork to find vulnerability reports produced by Shadow Security

Scanner. They c

2005- The following report

10-26 contains confidential i

This googledork reveals vunerability reports from many different vendors. These
reports can co

2005inurl:status.cgi?host=all
10-04

Nagios Status page. See what ports are being monitored as well as ip addresses.Be
sure to check

2005inurl:login.jsp.bak
09-30

JSP programmer anyone? You can read this!

2005- intitle:Belarc Advisor

02-15 Current Profile

People who have foolishly published an audit of their machine(s) on the net with
some server in

2005- Traffic Analysis for RMON List of RMON ports produced by MRTG which is a network traffic analysis tool. See
03-05 Port *
also #198
2005- powered | performed by
02-03 Beyond Securitys Aut

This search finds Beyond Security reports. Beyond Security sells a box which
performs automated

2004- intitle:PHPBTTracker
12-30 Statistics | inti

This query shows pages which summarise activity on PHPBT-powered BitTorrent

trackers all the

2004intitle:BNBT Tracker Info

12-30

This query shows pages which summarise activity on BNBT-powered BitTorrent

trackers including

2004- intitle:Azureus : Java BitTorrent

12-30 Client Tra

This query shows machines using the Azureus BitTorrent clients built-in
tracker the pages ar

2004inurl:install/install.php
12-29

This searches for the install.php file. Most results will be a Bulletin board like
Phpbb etc.T

2004- intext:Welcome to the Web

12-07 V.Networks i

see and control JVC webcameras, you can move the camera, zoom change
the settings, etc.

2004- intitle:start.managing.the.device MCK Communications, Inc.PBXgatewayIIHigh density central site gateway for
12-10 remo
remote PBX access(MCK
2004ext:cfg radius.cfg
12-06

Radiator is a highly configurable and flexible Radius server that supports

authentication

2004- filetype:php inurl:ipinfo.php

12-07 Distributed In

Dshield is a distributed intrusion detection system. The ipinfo.php script

includes a whois loo

2004Mercury SiteScope designed to ensure the availability and performance of

inurl:sitescope.html intitle:sit
12-03
distributed IT infrast
2004- intitle:twiki
12-02 inurl:TWikiUsers&q

TWiki has many security problems, depeding on the version installed. TWiki,
is a flexible, powe

2004- Phorum Admin Database

11-28 Connection

Phorum admin pagesThis either shows Information leakage (path info) or it

shows Unprotected Adm

2004sysWatch is a CGI to display current information about your UNIX system. It

Output produced by SysWatch *
11-28
can display drive p
2004inurl:testcgi xitami
11-28

Testpage / webserver environmentThis is the test cgi for xitami webserver. It

shows the webserv

2004- filetype:log
11-28 intext:ConnectionManager2

ISDNPM 3.x for OS/2-Dialer log files.These files contain sensitive info like ip
addresses, phon

2004- intitle:sysinfo *
11-12 intext:Genera

Lots of information leakage on these pages about active network services,

server info, network

2004- inurl:portscan.php from

11-12 Port|Por

This is general search for online port scanners which accept any IP. It does
not find a specifi

2004inurl:/adm-cfgedit.php
11-07

PhotoPost Pro is photo gallery system. This dork finds its installation
page.You can use this p

2004inurl:webutil.pl
11-07

webutil.pl is a web interface to the following services:* ping* traceroute*

whois* finger* nslo

2004inurl:statrep.nsf -gov
10-20

Domino is server technology which transforms Lotus Notes into an

Internet a

2004The finger command on unix displays information about the system users.
inurl:/cgi-bin/finger? In real life
10-19
This search displays pr
2004- inurl:/cgi-bin/finger? Enter
10-19 (account|host|user|us

The finger command on unix displays information about the system users.
This search displays th

2004- filetype:php inurl:nqt

10-18 intext:Network Query

Network Query Tool enables any Internet user to scan network information
using:* Resolve/Revers

2004- inurl:map.asp?
10-05 intitle:WhatsUp G

WhatsUp Golds new SNMP Viewer tool enables Area-Wide to easily track
variables associate

2004- ext:cgi intext:nrg- This NRG is a system for maintaining and visualizing network data and other resource
09-29 web pa
utilization dat
2004- ((inurl:ifgraph Page
09-29 generated at) OR

ifGraph is a set of perl scripts that were created to fetch data from SNMP agents
and feed a RR

2004- inurl:/catalog.nsf
09-10 intitle:catalog

This will return servers which are running versions of Lotus Domino. The catalog.nsf
is the ser

2004- Powered by
phpOpenTracker is a framework solution for the analysis of website traffic and
09-21 phpOpenTracker Statistics visitor analysis
site:netcraft.com
2004intitle:That.Site.Running
09-21
Apache

Netcraft reports a sites operating system, web server, and netblock owner together
with, if av

2004- this proxy is working

08-13 fine! ente

These are test pages for some proxy program. Some have a text field that allows
you to use that

2004apricot admin 00h

07-29

This search shows the webserver access stats as the user admin. The language
used i

2006- by Reimar Hoven. All

04-15 Rights Reserved. Discla

dork: by Reimar Hoven. All Rights Reserved. Disclaimer | inurl:log/logdb.dta&

2004- intitle:Microsoft Site

07-16 Server Analysis

Microsoft discontinued Site Server and Site Server Commerce Edition on June 1,
2001 with the in

2004- Analysis Console for

07-12 Incident Databases

ACID stands for for Analysis Console for Incident Databases. It is a php frontend
f

2004Looking Glass
06-22

A Looking Glass is a CGI script for viewing results of simple queries executed on
remote router

2004- Version Info Boot

06-04 Version

This is the status page for a Belkin Cable/DSL gateway. Information can be retrieved
from this

2004- intitle:ADSL Configuration This is the status screen for the Solwise ADSL modem. Information available from
06-04 page
this page incl

2004- filetype:vsd vsd network - Reveals network maps (or any other kind you seek) that can provide sensitive
05-13 samples -examples
information such a
2004- filetype:pdf Assessment
05-03 Report nessus

These are reports from the Nessus Vulnerability Scanner. These report contain
detailed informat

2004- inurl:phpSysInfo/ created This statistics program allows the an admin to view stats about a webserver. Some
04-16 by phpsysinfo
sites leave t
2004SnortSnarf alert page
04-16

snort is an intrusion detection system. SnorfSnarf creates pretty web pages from
intrusion dete

2004- Network Host Assessment This search yeids ISS scan reports, revealing potential vulnerabilities on hosts and
03-30 Report I
networks.
2004- This report lists
03-30 identified by
2004- intitle:Nessus Scan
03-30 Report This
2014
filetype:pdf acunetix
-03website audit &q
31

This search yeids ISS scan reports, revealing potential vulnerabilities on hosts and
networks.
This search yeids nessus scan reports. Even if some of the vulnerabilities have been
fixed, we

Finds reports generated by Acunetix scans. Andy G twitter.com/vxhex

2014 inurl:clientaccesspolicy
Locates clientaccesspolicy.xml files used by silverlight to determine the cross domain
-03- filetype:xml
policy
27 intext:allow
2014 inurl:crossdomain
-03- filetype:xml
27 intext:allow-access

Locates crossdomain.xml files used by flash/flex/silverlight to determine the cross

domain pol

2014
site:bitbucket.org
-02inurl:.bash_history
05

Finding Sensitive data site:bitbucket.org inurl:.bash_history By Pharos

2013 intext:phpMyAdmin SQL

intext:phpMyAdmin SQL Dump filetype:sql intext:INSERT INTO `admin` (`id`, `user`,
-11- Dump filetype:sql
`password`) V
27 intext:INS
2013
inurl:mikrotik
-11filetype:backup
27

mikrotik url backups uploaded.. then.. credentials cracked via

http://mikrotikpasswordrecove

2013
filetype:xml
-11inurl:sitemap
25

Sitemaps, the opposite of Web Robots Exclusion Detail directory and page map [Volun

2013 inurl:jmx-11- console/HtmlAdaptor

25 intitle:

JBoss
http://docs.jboss.org/jbossas/docs/Server_Configuration_Guide/4/html/Connecting_to
_the_J

2013
-11- inurl:tar filetype:gz
25

Tar files Contain user and group information (in addition to potentially useful files)

2013
filetype:bak (inurl:php | This one could be used to find all sorts of backup data, but this example is limited to just
-11inurl:asp | inurl:rb)
c
25
2013 site:github.com
-11- inurl:id_rsa 25 inurl:&q

Finds private SSH keys on GitHub. Andy G twitter.com/vxhex

2013 site:github.com
-11- inurl:known_hosts
25 &quo

Finds SSH known_hosts files on GitHub. Andy G twitter.com/vxhex

2013 inurl:/wp-11- content/uploads/

25 filetype:sql

Google dork for WordPress database backup file (sql): inurl:/wp-content/uploads/

filetype:sq

2013 inurl:config fetch =

-11- +refs/heads/*:refs/rem Git config file Easy way to find Git Repositories -[Voluntas Vincit Omnia]- website
25 o
2013 filetype:php
Project Honey Pot anti-spammer detection (http://www.projecthoneypot.org/) Can
-11- intext:PROJECT HONEY
identify the
25 POT ADDRES
2013 inurl:github.com
-11- intext:sftp-conf.json
25 +intext:/wp

Find FTP logins and full path disclosures pushed to github inurl:github.com intext:sftpconf

2013 inurl:*/webalizer/*
-09- intitle:Usage
24 Statistics

*Obrigado,*

2013
intitle:index.of
-09intext:.ssh
24

Find peoples ssh public and private keys tmc / #havok

2013
filetype:txt
This dork can be used to find symlinked WordPress configuration files of other web sites
-08inurl:~~Wordpress2.txt
08
2013
filetype:txt inurl:wp-08config.txt
08

Easily hunt the WordPress configuration file in of remote web sites Author : Un0wn_X

2013inurl:~~joomla3.txt filetype:txt
08-08

By this dork you can find juicy information joomla configuration files
Author: Un0wn_X

2013- intitle:WAMPSERVER Homepage &

08-08 inte

#Summary: Wampserver Homepage free access

(*http://www.wampserver.com/).* #Author: g00gl3 5c0u

2013inurl:wp-content/uploads/dump.sql
08-08

This is *Mohan Pendyala* (penetration tester) from india. Google

Dork: *inurl:wp-content/u

2013inurl:fluidgalleries/dat/login.dat
08-08

Works with every single fluidgalleries portofolio sites. Just decrypt the
MD5 hash and login on

2013information_schema filetype:sql
08-08

Dork: information_schema filetype:sql By: Cr4t3r

2013- inurl:zendesk.com/attachments/token zendesk is good ticketing system . It has thousands of clients. with the
08-08 si
above dork you can s
2013allintext: /iissamples/default/
04-23

Searching for allintext: /iissamples/default/ may provide interesting

informatio

2013- filetype:php -site:php.net intitle:phpinfo Tries to reduce false positive results from similar dorks. Finds pages
04-22 p
containing output from
2013- filetype:ini This is the default settings
04-22 fi

Finds PHP configuration files (php.ini) that have been placed in indexed
folders. Php.ini defi

2013inurl:php?id= intext:DB_Error Ob
04-09

Description: Files containing juicy info Author:ruben_linux

2013ext:gnucash
02-05

*Google Search:* http://www.google.com/search?q=ext:gnucash

*Description:* Find Gnucas

2013runtimevar softwareVersion=
02-05

Hits: 807 Config file from Thomson home routers, sometimes it

contains passwords and users

2012- inurl:admin intext:username= AND

12-31 email= AND passwo

nitish mehta

2012- inurl:newsnab/www/
12-06 automated.config.php

Usenet Accounts from Newsnab configs inurl:newsnab/www/

automated.config.php Author: rmccurd

2012inurl:.com/configuration.php-dist
11-02

Finds the configuration files of the PHP Database on the server. By

Chintan GurjarRahul Tygi

2012filetype:avastlic
08-21

Lots of Avast Licenses . Author : gr00ve_hack3r

www.gr00vehack3r.wordpress.com

2012- filetype:docx Domain Registrar $user

08-21 $pass

Dork :- *filetype:docx Domain Registrar $user $pass* Use :- *To find

domain login password fo

2012- inurl:phpmyadmin/index.php
08-21 intext:&quo

This dork finds unsecured databases

2012- intext:Thank you for your

05-15 purchase/trial of

This dork can fetch you Avast product licenses especially Avast
Antiviruses , including Profes

2012?intitle:index.of?.mysql_history
05-15

Find some juicy info in .mysql_history files enjoy bastich

2012intext:~~Joomla1.txt title:Index
05-15

intext:~~Joomla1.txt title:Index of / Get all server configs files

2011allintext:D.N.I filetype:xls
12-27

This Query contains sensitive data (D.N.I

and D.N.I for People of

) in a xls format (excel)

2011- List of Phone Numbers (In XLS File )

12-19 allinurl:tele

This is a dork for a list of Phone Private Numbers in Argentina. Author:

Luciano UNLP

2011- Microsoft-IIS/7.0 intitle:index.of name

12-19 size

IIS 7 directory listing. Author: huang

2011- Google Dork inurl:Curriculum Vitale

12-16 filetype:doc (

This dork locates Curriculum Vitale files. Author: Luciano UNLP

2011- Google Dork For Social Security Number

This dork locates social security numbers. Author: Luciano UNLP
12-16 ( In Spain
2011filetype:old (mysql_connect) ()
11-24

There are three of mysql_connects but that all search in .inc or

warnings, non search for .old

2011- filetype:old
this dork locates backed up config files filetype:php~
11-24 (define)(DB_USER|DB_PASS|DB_NAME) (define)(DB_USER|DB_PASS|DB_NAME) file
2011- filetype:reg reg HKEY_CURRENT_USER
11-19 SSHHOSTKEYS

this dork locates registry dumps

2011intitle:index.of? configuration.php.zip
11-19

this dork finds mostly backed up configuration.php files. Its possible to

change the *.zip to

2011inurl:/includes/config.php
11-19

The Dork Allows you to get data base information from config files.
Author: XeNon

2011inurl:trace.axd ext:axd Applicat

11-19

example google dork to find trace.axd, a file used for debugging asp
that reveals full http re

2011- +intext:AWSTATS DATA FILE

09-26 filetype:txt

Shows data downloads containing statistics on the site.Made by

AwstatsThe best dork for that sy

2011- filetype:ini Bootstrap.php

08-25 (pass|passw

Zend application ini, with usernames, passwords and db info love

Bastich

2011filetype:pem Microsoft
07-26

Microsoft private keys, frequently used for servers with UserID on the
same page. Sha

2011- inurl:server-info intitle:Server

07-26 Information

Juicy information about the apache server installation in the website.

*Regards, Fady

2011- inurl:/push/ .pem apns -push

07-18 notifications&q

iphone apple push notification system private keys, frequently

unencrypted, frequently with De

2011- site:stashbox.org cv Or resume OR

07-18 curriculum vitae

Searches StashBox for publicly avaliable PDFs or .doc files containing

information used in a

2011- site:mediafire.com cv Or resume OR

07-18 curriculum vita

Searches Mediafire for publicly avaliable PDFs containing information

used in a CV/Resume/Cur

2011- site:docs.google.com intitle:(cv Or

07-18 resume OR curr

Searches GoogleDocs for publicly avaliable PDFs containing

information used in a CV/Resume/Cu

2011Searches Dropbox for publicly avaliable PDFs containing

site:dl.dropbox.com filetype:pdf cv OR curriculum
07-01
information used in a CV/Resume/Curri
2011inurl:sarg inurl:siteuser.html
05-26

Submitter: pipefish Squid User Access Reports that show

users browsing history t

2011filetype:xls + password + inurl:.com

05-03

The filetype:xls never changes What is inbtween then +

sings can be what ever you are looking

2011Site: google.com/latitude This is a free application where

allinurl:http://www.google.co.in/latitude/apps/bad
05-03
you can track your PC, laptop and
2011intext:db_pass inurl:settings.ini
02-24

Submitter: Bastich mysql.nimbit.com dashboard settings

2011inurl:app/etc/local.xml
02-19

Magento local.xml sensitive information disclosure

Author: Rambaud Pierre

2010allinurl:/xampp/security.php
12-13

XAMPP Security Setting Page Information Disclosure.

Author: modpr0be

2010inurl:phpinfo.php
12-10

Locates phpinfo files. A phpinfo file Outputs a large

amount of information about the current s

2010inurl:config.php.new +vbulletin
12-07

locates the default configuration file for vBulletin

(/includes/config.php.new) Author: MaXe

2010inurl:configuration.php-dist
12-07

locates the default configuration file of JOOMLA Author:

ScOrPiOn

2010filetype: log inurl:access.log +intext

11-25

Match some apache access.log files. Author: susmab

2010Cisco PIX Security Appliance Software Versio

11-10

Google search for Pix Authorization Keys Author: fdisk

2010This search locates private SSHHostkeys. Author:

filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
11-10
loganWHD

2006intitle:AppServ Open Project * A

10-02

Often includes phpinfo and unsecured links to

phpmyadmin.

2006intitle:LOGREP Log file reporting system&q

03-21

Logrep is an open source log file Extraction and Reporting

System by ITeF!x. This dork finds t

2006(intitle:PRTG Traffic Grapher inurl:&q

03-18

PRTG Traffic Grapher is Windows software for monitoring

and classifying bandwidth usage. It pro

2006intitle:Joomla Web Installer

03-18

Joomla! is a Content Management System (CMS) created

by the same team that brought the Mambo CM

2006not for public release -.edu -.gov -.m

02-22

if you search through lots of these then you find some

really juicy things, there files from po

2006intext:ViewCVS inurl:Settings.php
01-16

CVs is a software used to keep track of changes to

websites. You can review all updates and pre

2006inurl:build.err
01-16

General build error file. Can tell what modules are

installed, the OS the compiler the language

2005inurl:/cgi-bin/pass.txt
12-22

Passwords

2005- (intitle:WebStatistica
WebStatistica provides detailed statistics about a web page. Normally you would
12-19 inurl:main.php) | (intitle: have to login
2005- inurl:wp-mail.php + There This is the WordPress script handling Post-By-Email functionality, the search is
11-24 doesnt seem to b
focussed on th
2005- intitle:Welcome to FAn attacker may want to know about the antivirus software running. The
11-16 Secure Policy Manager S description says he can
intitle:Bookmarks
2005inurl:bookmarks.html
10-22
Bookm

AFAIK are the bookmarks of Firefox, Netscape and Mozilla stored in

bookmarks.html. It is often

2005- intitle:urchin
10-04 (5|3|admin) ext:cgi

Gain access to Urchin analysis reports.

2005- rdbqds -site:.edu -site:.mil - Ceasar encryption is a rather simple encryption. You simply shift letters up or down
09-08 site:.gov
across the
2005contacts ext:wml
08-23

Forget Bluetooth Hacking! Youll be amazed, at how many people sync their Cell
Phones to the sa

2005- intitle:curriculum vitae

08-12 filetype:doc

Hello. 1. It reveals personal datas, often private addresses, phone numbers, e-mails,
how many

2005- intitle:admin panel

08-16 +Powered by

This finds all versions of RedKernel Referer Tracker(stats page) it just gives out
some nice in

2005- ext:(doc | pdf | xls | txt |

07-30 ps | rtf | odt | sxw

Although this search is a bit broken (the file extensions dont always work), it
reveals intere

2005- site:www.mailinator.com
07-24 inurl:ShowMail.do

Mailinator.com allows people to use temporary email boxes. Read the site, I wont
explain here.

2005allinurl:cdkey.txt
07-21

cdkeys

2005filetype:PS ps
07-08

PS is for postscriptwhich basically means you get the high quality press data fo

2005filetype:QBW qbw
06-21

Quickbooks is software to manage your businesss financials. Invoicing, banking,

payroll, etc,

2005inurl:XcCDONTS.asp
06-07

This query reveals an .asp script which can often be used to send anonymous
emails from fake se

2005ext:DCA DCA
04-27

IBM DisplayWrite Document Content Architecture Text File

2005ext:ccm ccm -catacomb

04-27

Lotus cc:Mail Mailbox file

2005ext:CDX CDX
04-27

Visual FoxPro database index

2005ext:DBF DBF
04-27

Dbase DAtabase file. Can contain sensitive data like any other database.

2005ext:jbf jbf
04-27

There is a full path disclosure in .jbf files (paint shop pro), which by itself is not
a vulner

2005- ext:plist filetype:plist

04-26 inurl:bookmarks.plist

These Safari bookmarks that might show very interesting info about a users
surfing habits

2005ext:ics ics
04-26

ICalender Fileder that can contain a lot of useful information about a possible
target.

2005- MacHTTP filetype:log

04-26 inurl:machttp.log

MacHTTP is an webserver for Macs running OS 6-9.x. Its pretty good for older
Macs but the defa

2005WebLog Referrers
03-30

ExpressionEngine is a modular, flexible, feature-packed web publishing system

that adapts to a

2005- #mysql dump filetype:sql

02-28 21232f297a57a

this is a mod of one of the previous queries posted in here. the basic thing is,
to add this:21

2005filetype:ora tnsnames
02-15

This searches for tns names files. This is an Oracle configuration file that sets
up connectio

2005These pages contain hotmail messages that were saved as HTML. These
inurl:getmsg.html intitle:hotmail
03-02
messages can contain anythi
2005+HSTSNR -netop.com
02-28

This search reveals NetOp license files. From the netop website: NetOp
Remote Control is

2005- intitle:web server status SSH

02-15 Telnet

simple port scanners for most common ports

2005- -site:php.net -The PHP Group scripts to view the source code of PHP scripts running on the server. Can be
02-15 inurl:sou
very interesting i
2005inurl:netscape.hst
01-27

History for Netscape So an attacker can read a users browsing history.

2005inurl:bookmark.htm
01-27

Bookmarks for Netscape and various other browsers.

2005inurl:netscape.hst
01-27

Netscape Bookmark List/History: So an attacker would be able to locate the

bookmark and history

2005inurl:netscape.ini
01-27

Theres a bunch of interesting info in netscape.ini1. Viewers: which multimedia

viewers the fir

2005- intitle:edna:streaming mp3

01-27 server -for

Edna allows you to access your MP3 collection from any networked computer.
This software stream

2005ext:reg username=* putty

01-27

Putty registry entries. Contain username and hostname pairs, as well as type
of session (sftp,

2005ext:txt inurl:dxdiag
01-22

This will find text dumps of the DirectX Diag utility. It gives an outline of the
hardware of t

2005intitle:FTP root at
01-13

This dork will return some FTP root directories. The string can be made more
specific by adding

2005- intext:gmail invite

This is a dork I did today. At first, I wanted to find out the formula for making
01-02 intext:http://gmail.google.com one, but
2005Peoples MSN contact lists
01-02

This will give msn contact lists .. modify the msn to what ever you feel is
messeng

2005filetype:ctt Contact
01-02

This is for MSN Contact lists

2004- intitle:index.of .diz .nfo last

12-30 modifi

File_id.diz is a description file uploaders use to describe packages uploaded to

FTP sites. Alt

2004filetype:blt buddylist
12-30

AIM buddylists.

2004- filetype:cnf inurl:_vti_pvt

12-30 access.cnf

The access.cnf file is a weconfigfile (webconfig file) used by Frontpage

Extentions

2004squeezebox is the easiest way for music lovers to enjoy high-quality playback
intitle:welcome.to.squeezebox
12-19
of their whole di
2004inurl:preferences.ini [emule]
12-19

This finds the emule configuration file which contains some general and proxy
information.Somet

2004- ext:conf inurl:rsyncd.conf -cvs - rsync is an open source utility that provides fast incremental file transfer.rsync
12-19 man
can also tal
2004inurl:ds.py
12-13

Affordable Web-based document and content management application lets

businesses of every size

2004ext:dat bpk.dat
12-13

Perfect Keylogger is as the name says a keylogger :)This dork finds the
corresponding datafiles

2004- intitle:Multimon UPS status

12-04 page

Multimon provide UPS monitoring services

2004- php-addressbook This is the

12-05 addressbook for

php-addressbook shows user address information without a password.

2004Generated by phpSystem
12-05

PhpSystem shows info about unix systems, including: General Info (kernel,
cpu, uptime), Connect

2004inurl:/axs/ax-admin.pl -script
12-04

This system records visits to your site. This admin script allows you to display
these records

2004ext:vmx vmx
12-03

VMWare allows PC emulation across a variety of platforms.

Theseconfiguration files describe a v

2004ext:vmdk vmdk
12-03

VMWare allows PC emulation across a variety of platforms. These files are

VMWare disk images wh

2004ext:pqi pqi -database

12-03

PQ DriveImage allows administrators to create hard rive images for lots of

purposes including b

2004ext:gho gho
12-03

Norton Ghost allows administrators to create hard rive images for lots of
purposes including ba

2004- intitle:PHP Advanced Transfer PHP Advacaned Transfer is GPLd software that claims to be the The ultimate
11-28 (inurl:i
PHP download
2004- intitle:DocuShare
11-28 inurl:docushar
2004- ext:txt Final encryption
11-28 key

some companies use a Xerox Product called DocuShare. The problem with this
is by default guest
IPSec debug/log data which contains user data and password hashes.Can be used to
crack password

2004- inurl:report EVEREST

11-20 Home Edition

Well what can be said about this one, Ive added it to the DB under Juicy info,
however it coul

2004- Microsoft (R) Windows * This file spills a lot of juicy info in some cases, passwords in the raw dump, but not
11-23 (TM) Version * DrWts
in an
2004- intitle:Apache::Status
11-21 (inurl:server-s

The Apache::Status returns information about the server software, operating

system, number of c

2004- intitle:PhpMyExplorer
11-18 inurl:inde

PhpMyExplorer is a PHP application that allows you to easily update your site online
without an

2004filetype:myd myd -CVS

11-18

MySQL stores its data for each database in individual files with the extension
MYD.An attacker

2004- filetype:config web.config - Through Web.config an IIS adminstrator can specify settings like custom 404 error
11-16 CVS
pages, authen
2004filetype:ns1 ns1
11-16

Netstunbler files contain information about the wireless network. For a cleanup add
stuff like:

2004- ext:cgi inurl:editcgi.cgi

11-16 inurl:file=

This was inspired by the K-Otic report. Only two results at time of writing. The cgi
script let

2004- filetype:pst pst -from -to - Finds Outlook PST files which can contain emails, calendaring and address
11-12 date
information.
2004inurl:putty.reg
11-07

This registry dump contains putty saved session data. SSH servers the according
usernames and p

2004ext:conf NoCatAuth -cvs

11-07

NoCatAuth configuration file. This reveals the configuration details of wirless

gateway includi

2004- Certificate Practice

11-05 Statement inurl:(

Certificate Practice Statement (CPS)A CPS defines the measures taken to secure CA
operation an

2004- filetype:inf
11-05 inurl:capolicy.inf

The CAPolicy.inf file provides Certificate Servicces configuration information, which

is read d

2004- filetype:php inurl:index

10-31 inurl:phpicalendar -site:

PHP iCalendar is a php-based iCal file parser. Its based on v2.0 of the IETF spec. It
displays

2004- intitle:Web Server

10-31 Statistics for ****

These are www analog webstat reports. The failure report shows information
leakage about databa

2004- intitle:AppServ Open

10-31 Project -site:www

AppServ is the Apache/PHP/MySQL open source software installer packages. This

normally includes

2004- intitle:Index of upload

10-24 size parent di

Files uploaded through ftp by other people, sometimes you can find all sorts of
things from mov

2004inurl:log.nsf -gov
10-20

Domino is server technology which transforms Lotus Notes into an

Internet a

2004ext:nsf nsf -gov -mil

10-20

Domino is server technology which transforms Lotus Notes into an

Internet a

2004- intitle:index.of * admin

10-19 news.asp conf

With Compulive News you can enter the details of your news items onto a webform
and upload imag

2004- inurl:cgi-bin/testcgi.exe
10-18 Please distribute

Test CGI by Lilikoi Software aids in the installation of the Ceilidh discussion engine
for the

2004- ext:mdb inurl:*.mdb

10-18 inurl:fpdb shop.mdb

The directory http:/xxx/fpdb/ is the database folder used by some versions of

Front

2004ext:ini intext:env.ini
10-16

This one shows configuration files for various applications. based on the application
an attack

2004- Installed Objects Scanner Installed Objects Scanner makes it easy to test your IIS Webserver for installed
10-16 inurl:defaul
components. In
2004- intitle:ASP Stats
10-16 Generator *.*

ASP Stats Generator is a powerful ASP script to track web site activity. It combines a
server s

2004inurl:odbc.ini ext:ini -cvs

10-09

This search will show the googler ODBC client configuration files which may contain
usernames/d

2004- intext:SQLiteManager
10-05 inurl:main.php

sQLiteManager is a tool Web multi-language of management of data bases SQLite. #

Management of

2004- +:8080 +:3128

09-29 +:80&q

With the string [+:8080 +:3128 +:80 filetype:txt] it is pos

2004inurl:/_layouts/settings
09-23

With the combined collaboration features of Windows SharePoint Services and

SharePoint Portal S

2004ext:ldif ldif
09-23

www.filext.com says LDIF = LDAP Data Interchange Format.LDAP is used for nearly
everything in o

2004- filetype:pst
09-11 inurl:outlook.pst

All versions of the popular business groupware client called Outlook have the
possibility to st

2004filetype:vcs vcs
09-22

Filext.com says: Various programs use the *.VCS extension; too many to list
individually.

ext:log Software:
2004Microsoft Internet
09-21
Informa

Microsoft Internet Information Services (IIS) has log files that are normally not in
the docroo

2004- Lotus Domino address

09-18 books

This search will return any Lotus Domino address books which may be open to the
public. This ca

2004- filetype:asp DBQ= *

09-18 Server.MapPath(*.m

This search finds sites using Microsoft Access databases, by looking for the the
database conne

2004- filetype:pdb pdb backup

09-10 (Pilot | Pluckerdb)

Hotsync database files can be found using All databases on a Palm device,
including the o

2004- filetype:xls
09-10 inurl:email.xls

Our forum members never get tired of finding juicy MS office files. Heres one by
urban that fi

2004John the Ripper is a popular cracking program every hacker knows. Its results are
filetype:pot inurl:john.pot
09-10
stored in a
2004- filetype:reg Terminal
09-07 Server Client

These are Microsoft Terminal Services connection settings registry files. They may
sometimes co

2004filetype:rdp rdp
09-07

These are Remote Desktop Connection (rdp) files. They contain the settings
and sometimes the cr

2004inurl:snitz_forums_2000.mdb
09-07

The SnitzTM Forums 2000 Version 3.4.04 Installation Guide and Readme
says: it is strongl

2004filetype:bkf bkf
09-06

This search will show backupfiles for xp/2000 machines.Of course these files
could contain near

2004filetype:qbb qbb
09-06

This search will show QuickBooks Bakup Files. Quickbook is financial

accounting software so sto

2004- ( filetype:mail | filetype:eml |

08-26 filetype:mbox | f

storing emails in your webtree isnt a good idea.with this search google will
show files contai

2004Quicken data files

08-25

The QDATA.QDF file (found sometimes in zipped QDATA archives online,

sometimes not)

2004phone * * * address * &qu

08-19

This search gives hounderd of existing curriculum vitae with names and
adress. An attacker coul

2004ext:asp inurl:pathto.asp
08-13

The UBB trial version contains files that are not safe to keep online after
going live. The ins

2004filetype:xls -site:gov inurl:contact Microsoft Excel sheets containing contact information.

08-09
2004- mail filetype:csv -site:gov
08-09 intext:name

CSV Exported mail (user) names and such.

2004- intext:Session Start * * * *:*:* * These are IRC and a few AIM log files. They may contain juicy info or just
08-09 fil
hours of good clean
2004Webmasters wanting to exclude search engine robots from certain parts of
(inurl:robot.txt | inurl:robots.
08-09
their site often choos
2004filetype:cfg auto_inst.cfg
08-05

Mandrake auto-install configuration files. These contain information about

the installed packag

2004filetype:fp7 fp7
08-05

These are Filemaker Pro version 7 databases files.

2004filetype:fp3 fp3
08-05

These are FileMaker Pro version 3 Databases.

2004- filetype:fp5 fp5 -site:gov -site:mil These are various kinds of FileMaker Pro Databases (*.fp5 applies to both
08-02 -cvs lo
version 5 and 6).
2004inurl:*db filetype:mdb
08-02

More Microsoft Access databases for your viewing pleasure. Results may
vary, but there have bee

2004- allow_call_time_pass_reference Returns publically visible pages generated by the php function phpinfo(). This
08-02 P
search differs f
2004filetype:ora ora
08-01

Greetings, The *.ora files are configuration files for oracle clients. An attacker
can identify

2004- intitle:Index Of -inurl:maillog

07-28 maill

This google search reveals all maillog files within various directories on a
webserver. This se

2004filetype:rdp rdp
09-07

These are Remote Desktop Connection (rdp) files. They contain the settings
and sometimes the cr

2004inurl:snitz_forums_2000.mdb
09-07

The SnitzTM Forums 2000 Version 3.4.04 Installation Guide and Readme
says: it is strongl

2004filetype:bkf bkf
09-06

This search will show backupfiles for xp/2000 machines.Of course these files
could contain near

2004filetype:qbb qbb
09-06

This search will show QuickBooks Bakup Files. Quickbook is financial

accounting software so sto

2004- ( filetype:mail | filetype:eml |

08-26 filetype:mbox | f

storing emails in your webtree isnt a good idea.with this search google will
show files contai

2004Quicken data files

08-25

The QDATA.QDF file (found sometimes in zipped QDATA archives online,

sometimes not)

2004phone * * * address * &qu

08-19

This search gives hounderd of existing curriculum vitae with names and
adress. An attacker coul

2004ext:asp inurl:pathto.asp
08-13

The UBB trial version contains files that are not safe to keep online after
going live. The ins

2004filetype:xls -site:gov inurl:contact Microsoft Excel sheets containing contact information.

08-09
2004- mail filetype:csv -site:gov
08-09 intext:name

CSV Exported mail (user) names and such.

2004- intext:Session Start * * * *:*:* * These are IRC and a few AIM log files. They may contain juicy info or just
08-09 fil
hours of good clean
2004Webmasters wanting to exclude search engine robots from certain parts of
(inurl:robot.txt | inurl:robots.
08-09
their site often choos
2004filetype:cfg auto_inst.cfg
08-05

Mandrake auto-install configuration files. These contain information about

the installed packag

2004filetype:fp7 fp7
08-05

These are Filemaker Pro version 7 databases files.

2004filetype:fp3 fp3
08-05

These are FileMaker Pro version 3 Databases.

2004- filetype:fp5 fp5 -site:gov -site:mil These are various kinds of FileMaker Pro Databases (*.fp5 applies to both
08-02 -cvs lo
version 5 and 6).
2004inurl:*db filetype:mdb
08-02

More Microsoft Access databases for your viewing pleasure. Results may
vary, but there have bee

2004- allow_call_time_pass_reference Returns publically visible pages generated by the php function phpinfo(). This
08-02 P
search differs f
2004filetype:ora ora
08-01

Greetings, The *.ora files are configuration files for oracle clients. An attacker
can identify

2004- intitle:Index Of -inurl:maillog

07-28 maill

This google search reveals all maillog files within various directories on a
webserver. This se

2004inurl:profiles filetype:mdb Microsoft Access databases containing (user) profiles ..

07-26
intext:(password |
2004passcode)
07-26
intext:(username | us

CSV formatted files containing all sorts of user/password combinations. Results may
vary, but a

2004- intitle:Index Of
07-26 cookies.txt size

searches for cookies.txt file. On MANY servers this file holds all cookie information,
which ma

2004inurl:forum filetype:mdb Microsoft Access databases containing forum information ..

07-26
2004inurl:backup filetype:mdb Microsoft Access database backups..
07-26
2004- data filetype:mdb 07-26 site:gov -site:mil

Microsoft Access databases containing all kinds of data.

2004inurl:email filetype:mdb
07-26

Microsoft Access databases containing email information..

2004- intitle:index of +myd

07-21 size

The MySQL data directory uses subdirectories for each database and common files
for table stora

2004sets mode: +s
07-19

This search reveals secret channels on IRC as revealed by IRC chat logs.

2004sets mode: +p
07-19

This search reveals private channels on IRC as revealed by IRC chat logs.

2004The information contained in these files depends on the actual file itself. SSL.conf
inurl:ssl.conf filetype:conf
07-15
files cont
2004private key files (.csr)
07-12

This search will find private key files Private key files are supposed to be, well
privat

2004private key files (.key)

07-12

This search will find private key files Private key files are supposed to be, well
privat

2004Loads of user information including email addresses exported in comma separated

exported email addresses
07-12
file format (.c
2004Welcome to ntop!
07-06

Ntop shows the current network usage. It displays a list of hosts that are currently
using the

2004sQL database dumps. LOTS of data in these. So much data, infact, Im pressed to
MySQL tabledata dumps
07-06
think of what e
2004- Microsoft Money Data
07-02 Files

Microsoft Money 2004 provides a way to organize and manage your personal
finances (http://www.m

2004- OWA Public Folders

06-25 (direct view)

This search looks for Outlook Web Access Public Folders directly. These links open
public folde

2004Unreal IRCd
07-06

Development of UnrealIRCd began in 1999. Unreal was created from the Dreamforge
IRCd that was f

2004MSN Messenger uses the file extension *.ctt when you export the contact list. An
filetype:ctt ctt messenger
06-22
attacker could
2004- 94FBR ADOBE
06-10 PHOTOSHOP

94FBR is part of many serials. An malicious user would only have to change the
programm name (p

2004- inurl:forward
05-26 filetype:forward -cvs

Users on *nix boxes can forward their mail by placing a .forward file in their home
directory.

2004- intitle:System Statistics

05-24 +Syste

This search reveals internal network information including network configuratino,

ping times, s

2004- inurl:cacti
05-24 +inurl:graph_view.ph

This search reveals internal network info including architecture, hosts and services
available.

2004This search reveals information about internal networks, such as configuration,

inurl:/cricket/grapher.cgi
05-24
services, bandw
2004- intitle:Big Sister +OK
05-24 Attention

This search reveals Internal network status information about services and hosts.

2004- Mecury Version

05-18 Infastructure Gro

Mecury is a centralized ground control program for research satellites. This query
simply loca

2004inurl:php.ini filetype:ini
05-17

The php.ini file contains all the configuration for how PHP is parsed on a server. It
can cont

intitle:intranet
2004inurl:intranet
05-17
+intext:phon

These pages are often private intranet pages which contain phone listings and
email addresses.

2004- filetype:blt blt

05-14 +intext:screenname

Reveals AIM buddy lists, including screenname and whos on their buddy list and
their blocke

2004These are http server access logs which contain all sorts of information ranging
filetype:log access.log -CVS
05-14
from usernames
2004filetype:log cron.log
05-14

Displays logs from cron, the *nix automation daemon. Can be used to determine
backups, full an

2004filetype:lic lic intext:key

05-13

License files for various software titles that may contain contact info and the
product version

2004- intitle:index of
05-13 mysql.conf OR mysql_c

This file contains port number, version number and path info to MySQL server.

2004- filetype:eml eml

05-12 +intext:Subject +inte

These are oulook express email files which contain emails, with full headers. The
information

2004- filetype:mbx mbx

05-11 intext:Subject

These searches reveal Outlook v 1-4 or Eudora mailbox files. Often these are made
public on pur

2004filetype:wab wab
05-10

These are Microsoft Outlook Mail address books. The information contained will
vary, but at the

2004- Request Details Control These pages contain a great deal of information including path names, session IDs,
05-06 Tree&quo
stack trace
2004- HTTP_FROM=googlebot
05-06 googlebot.com &qu

These pages contain trace information that was collected when the googlebot
crawled a page. The

2004- filetype:conf inurl:firewall - These are firewall configuration files. Although these are often examples or sample
05-05 intitle:cvs
files, in m
2004- inurl:smb.conf
05-04 intext:workgroup&

These are samba configuration files. They include information about the
network, trust relation

2004inurl:tdbin
05-03

This is the default directory for TestDirector

(http://www.mercuryinteractive.com/products/test

2004This is the MRTG traffic analysis pages. This page lists information about
intext:Tobias Oetiker traffic an
05-03
machines on the netw
2004- inurl:server-info Apache Server
04-28 Information&

This is the Apache server-info program. There is so much sensitive stuff

listed on this page th

2004inurl:perl/printenv
04-28

This is the print environemnts script which lists sensitive information such
as path names, ser

2004inurl:cgi-bin/printenv
04-28

This is the print environemnts script which lists sensitive information such
as path names, ser

2004inurl:fcgi-bin/echo
04-28

This is the fastcgi echo script, which provides a great deal of information
including port numb

2004inurl:server-status apache
04-26

This page shows all sort of information about the Apache web server. It
can be used to track pr

2004This is a Shareaza Node

04-21

These pages are from Shareaza client programs. Various data is displayed
including client versi

2004Running in Child mode

04-21

This is a gnutella client that was picked up by google. There is a lot of data
present includin

2004allinurl:servlet/SnoopServlet
04-20

These pages reveal server information such as port, server software

version, server name, full

2004These pages reveal information about the server including path

allinurl:/examples/jsp/snp/snoop.jsp
04-20
information, port information, e
2004inurl:newsletter/admin/
04-16

These pages generally contain newsletter administration pages. Some of

these site are password

2004These pages generally contain newsletter administration pages. Some of

inurl:newsletter/admin/ intitle:
04-16
these site are password
2004Index of / chat/logs
04-13

This search reveals chat logs. Depending on the contents of the logs, these
files could contain

2004This is your typical stats page listing referrers and top ips and such. This
inurl:vbstats.php page generated
04-08
information can ce
2004#mysql dump filetype:sql
04-05

This reveals mySQL database dumps. These database dumps list the
structure and content of datab

2004intitle:index.of cleanup.log
04-05

This search reveals potential location for mailbox files by keying on the
Outlook Express clean

2004intitle:index.of inbox dbx

04-05

This search reveals potential location for mailbox files. In some cases, the
data in this direc

2004intitle:index.of inbox
04-05

This search reveals potential location for mailbox files. In some cases, the
data in this direc

2004- Host Vulnerability

03-30 Summary Report

This search yeids host vulnerability scanner reports, revealing potential

vulnerabilities on ho

2004- Network Vulnerability

03-30 Assessment Report

This search yeids vulnerability scanner reports, revealing potential vulnerabilities

on hosts a

2004- Thank you for your order After placing an order via the web, many sites provide a page containing the phrase
03-29 +receipt
Thank
2004- not for distribution
03-29 confidential

The terms not for distribution and confidential indicate a sensitive document.
Resu

2004This is a common script for changing passwords. Now, this doesnt actually reveal
inurl:changepassword.asp
03-24
the password,
2004- Most Submitted Forms
03-22 and Scripts

More www statistics on the web. This one is very nice.. Lots of directory info, and
client acce

2004inurl:admin filetype:xls
03-16

This search can find Excel spreadsheets in an administrative directory or of an

administrative

2004intitle:admin intitle:login
03-14

This search can find administrative login pages. Not a vulnerability in and of itself,
this que

2004inurl:admin intitle:login
03-14

This search can find administrative login pages. Not a vulnerability in and of itself,
this que

2004intitle:index.of ws_ftp.ini
03-04

ws_ftp.ini is a configuration file for a popular FTP client that stores usernames,
(weakly) enc

2004dead.letter contains the contents of unfinished emails created on the UNIX

intitle:index.of dead.letter
03-04
platform. Emails (fi
2004- intitle:index.of Apache
03-04 server a

This is a very basic string found on directory listing pages which show the version of
the Apac

2004- intitle:wbem compaq

03-04 login Compaq

These devices are running HP Insight Management Agents for Servers which
provide device i

2004- inurl:main.php Welcome to From phpmyadmin.net : phpMyAdmin is a tool written in PHP intended to handle
03-04 phpMyAdmin
the administ
2004- inurl:main.php
03-04 phpMyAdmin

From phpmyadmin.net : phpMyAdmin is a tool written in PHP intended to handle

the administ

2004- phpMyAdmin running

03-04 on inur

From phpmyadmin.net : phpMyAdmin is a tool written in PHP intended to handle

the administ

2004- robots.txt Disallow:

03-04 filet

The robots.txt file serves as a set of instructions for web crawlers. The disallow

2004- intitle:Usage Statistics for The webalizer program shows web statistics for web servers. This information
03-04 Gen
includes who is vi
2004- intitle:statistics of
03-04 advanced w

the awstats program shows web statistics for web servers. This information
includes who is visi

2004ipsec.conf
03-04

The ipsec.conf file could help hackers figure out what uber-secure users of
freeS/WAN are prote

2004ipsec.secrets
03-04

from the manpage for ipsec_secrets: It is vital that these secrets be protected. The
file

2004ipsec.secrets
03-04

from the manpage for ipsec_secrets: It is vital that these secrets be protected. The
file

2004cgiirc.conf
03-04

This is another less reliable way of finding the cgiirc.config file. CGIIRC is a web-based
IRC

2004cgiirc.conf
03-04

CGIIRC is a web-based IRC client. Very cool stuff. The cgiirc.config file lists the options
for

2004phpMyAdmin dumps
03-04

From phpmyadmin.net : phpMyAdmin is a tool written in PHP intended to handle

the administ

2004phpMyAdmin dumps
03-04

From phpmyadmin.net : phpMyAdmin is a tool written in PHP intended to handle

the administ

2003- mystuff.xml Trillian

08-19 data files

This particular file contains web links that trillian users have entered into the tool.
Trillia

2003site:edu admin grades

07-10

I never really thought about this until I started coming up with juicy examples for
DEFCON 11..

2003- haccess.ctl (VERY

06-30 reliable)

haccess.ctl is the frontpage(?) equivalent of the .htaccess file. Either way, this file
decribe

2003haccess.ctl (one way)

06-30

this is the frontpage(?) equivalent of htaccess, I believe. Anyhow, this file describes
who can

2003More www statistics on the web. This one is very nice.. Lots of directory info, and
generated by wwwstat
06-30
client acce
2003produced by getstats
06-30

Another web statistics package. This one originated from a google scan of an ivy
league college

2003- This report was

06-27 generated by WebLog

These are weblog-generated statistics for web sites A roadmap of files, referrers,
errors, s

2003robots.txt
06-27

The robots.txt file contains rules about where web spiders are allowed (and NOT
all

2004phpinfo()
11-18

this brings up sites with phpinfo(). There is SO much cool stuff in here that you just
have to

2003AIM buddy lists

06-24

These searches bring up common names for AOL Instant Messenger buddylists.
These li

2003mt-db-pass.cgi files
06-24

These folks had the technical prowess to unpack the movable type files, but couldnt
manage to

2003sQL data dumps

06-24

sQL database dumps. LOTS of data in these. So much data, infact, Im pressed to
think of what e

2003- Financial spreadsheets:

06-24 finances.xls

Hey! I have a great idea! Lets put our finances on our website in a secret directory
so

2003- Financial spreadsheets:

06-24 finance.xls

Hey! I have a great idea! Lets put our finances on our website in a secret directory
so

2003ICQ chat logs, please

06-24

ICQ (http://www.icq.com) allows you to store the contents of your online chats into a
file. The

2003These are server cluster reports, great for info gathering. Lesse, what were those
Ganglia Cluster Reports
06-24
server names
2003- squid cache server
06-24 reports

These are squid server cache reports. Fairly benign, really except when you consider
using them

2012inurl:finger.cgi
11-02

Finger Submitted by: Christy Philip Mathew

2012- site*.*.*/webalizer
08-21 intitle:Usage Statistics

Shows usage statistics of sites. Includes monthy reports on the IP addresses, user
agents, and

2006- intitle:r57shell +uname 05-04 bbpress

compromised servers a lot are dead links, but pages cached show interesting
info, this is r5

2006- The statistics were last

05-03 updated

Results include many varius Network activity logs

2006- inurl:/counter/index.php
04-06 intitle:+PHPCounter

This is an online vulnerable web stat program called PHPCounter

7.http://www.clydebelt.org.uk/c

2006- inurl:NmConsole/Login.asp Ipswitch Whats Up Monitoring 2005!This is a console for Network Monitoring,
03-13 | intitle:&q
access beyond the p
2006- inurl:CrazyWWWBoard.cgi
02-08 intext:detailed debu

gives tons of private forum configuration information.examples: Global variables

installed, wha

2005inurl:ovcgi/jovw
12-31

An HP Java network management tool. It is a sign that a network may not be

configured properly.

2005- inurl:proxy | inurl:wpad

12-21 ext:pac | ext:dat findpro

Information about proxy servers, internal ip addresses and other network

sensitive stuff.

2005- inurl:webalizer filetype:png - ***WARNING: This search uses google images, disable images unless you want
11-21 .gov -.edu -.mil -op
your IP spewed acros
2005- intitle:Retina Report
10-26 CONFIDENTI

This googledork finds vulnerability reports produced by eEye Retina Security

Scanner. The info

2005- Shadow Security Scanner

10-26 performed a vulnerab

This is a googledork to find vulnerability reports produced by Shadow Security

Scanner. They c

2005- The following report

10-26 contains confidential i

This googledork reveals vunerability reports from many different vendors. These
reports can co

2005inurl:status.cgi?host=all
10-04

Nagios Status page. See what ports are being monitored as well as ip addresses.Be
sure to check

2005inurl:login.jsp.bak
09-30

JSP programmer anyone? You can read this!

2005- intitle:Belarc Advisor

02-15 Current Profile

People who have foolishly published an audit of their machine(s) on the net with
some server in

2005- Traffic Analysis for RMON List of RMON ports produced by MRTG which is a network traffic analysis tool. See
03-05 Port *
also #198
2005- powered | performed by
02-03 Beyond Securitys Aut

This search finds Beyond Security reports. Beyond Security sells a box which
performs automated

2004- intitle:PHPBTTracker
12-30 Statistics | inti

This query shows pages which summarise activity on PHPBT-powered BitTorrent

trackers all the

2004intitle:BNBT Tracker Info

12-30

This query shows pages which summarise activity on BNBT-powered BitTorrent

trackers including

2004- intitle:Azureus : Java BitTorrent

12-30 Client Tra

This query shows machines using the Azureus BitTorrent clients built-in
tracker the pages ar

2004inurl:install/install.php
12-29

This searches for the install.php file. Most results will be a Bulletin board like
Phpbb etc.T

2004- intext:Welcome to the Web

12-07 V.Networks i

see and control JVC webcameras, you can move the camera, zoom change
the settings, etc.

2004- intitle:start.managing.the.device MCK Communications, Inc.PBXgatewayIIHigh density central site gateway for
12-10 remo
remote PBX access(MCK

2004ext:cfg radius.cfg
12-06

Radiator is a highly configurable and flexible Radius server that supports

authentication

2004- filetype:php inurl:ipinfo.php

12-07 Distributed In

Dshield is a distributed intrusion detection system. The ipinfo.php script

includes a whois loo

2004Mercury SiteScope designed to ensure the availability and performance of

inurl:sitescope.html intitle:sit
12-03
distributed IT infrast
2004- intitle:twiki
12-02 inurl:TWikiUsers&q

TWiki has many security problems, depeding on the version installed. TWiki,
is a flexible, powe

2004- Phorum Admin Database

11-28 Connection

Phorum admin pagesThis either shows Information leakage (path info) or it

shows Unprotected Adm

2004sysWatch is a CGI to display current information about your UNIX system. It

Output produced by SysWatch *
11-28
can display drive p
2004inurl:testcgi xitami
11-28

Testpage / webserver environmentThis is the test cgi for xitami webserver. It

shows the webserv

2004- filetype:log
11-28 intext:ConnectionManager2

ISDNPM 3.x for OS/2-Dialer log files.These files contain sensitive info like ip
addresses, phon

2004- intitle:sysinfo *
11-12 intext:Genera

Lots of information leakage on these pages about active network services,

server info, network

2004- inurl:portscan.php from

11-12 Port|Por

This is general search for online port scanners which accept any IP. It does
not find a specifi

2004inurl:/adm-cfgedit.php
11-07

PhotoPost Pro is photo gallery system. This dork finds its installation
page.You can use this p

2004inurl:webutil.pl
11-07

webutil.pl is a web interface to the following services:* ping* traceroute*

whois* finger* nslo

2004inurl:statrep.nsf -gov
10-20

Domino is server technology which transforms Lotus Notes into an

Internet a

2004The finger command on unix displays information about the system users.
inurl:/cgi-bin/finger? In real life
10-19
This search displays pr
2004- inurl:/cgi-bin/finger? Enter
10-19 (account|host|user|us

The finger command on unix displays information about the system users.
This search displays th

2004- filetype:php inurl:nqt

10-18 intext:Network Query

Network Query Tool enables any Internet user to scan network information
using:* Resolve/Revers

2004- inurl:map.asp?
10-05 intitle:WhatsUp G

WhatsUp Golds new SNMP Viewer tool enables Area-Wide to easily track
variables associate

2004- ext:cgi intext:nrg- This NRG is a system for maintaining and visualizing network data and other resource
09-29 web pa
utilization dat
2004- ((inurl:ifgraph Page
09-29 generated at) OR

ifGraph is a set of perl scripts that were created to fetch data from SNMP agents
and feed a RR

2004- inurl:/catalog.nsf
09-10 intitle:catalog

This will return servers which are running versions of Lotus Domino. The catalog.nsf
is the ser

2004- Powered by
phpOpenTracker is a framework solution for the analysis of website traffic and
09-21 phpOpenTracker Statistics visitor analysis
site:netcraft.com
2004intitle:That.Site.Running
09-21
Apache

Netcraft reports a sites operating system, web server, and netblock owner together
with, if av

2004- this proxy is working

08-13 fine! ente

These are test pages for some proxy program. Some have a text field that allows
you to use that

2004apricot admin 00h

07-29

This search shows the webserver access stats as the user admin. The language
used i

2006- by Reimar Hoven. All

04-15 Rights Reserved. Discla

dork: by Reimar Hoven. All Rights Reserved. Disclaimer | inurl:log/logdb.dta&

2004- intitle:Microsoft Site

07-16 Server Analysis

Microsoft discontinued Site Server and Site Server Commerce Edition on June 1,
2001 with the in

2004- Analysis Console for

07-12 Incident Databases

ACID stands for for Analysis Console for Incident Databases. It is a php frontend
f

2004Looking Glass
06-22

A Looking Glass is a CGI script for viewing results of simple queries executed on
remote router

2004- Version Info Boot

06-04 Version

This is the status page for a Belkin Cable/DSL gateway. Information can be retrieved
from this

2004- intitle:ADSL Configuration This is the status screen for the Solwise ADSL modem. Information available from
06-04 page
this page incl
2004- filetype:vsd vsd network - Reveals network maps (or any other kind you seek) that can provide sensitive
05-13 samples -examples
information such a
2004- filetype:pdf Assessment
05-03 Report nessus

These are reports from the Nessus Vulnerability Scanner. These report contain
detailed informat

2004- inurl:phpSysInfo/ created This statistics program allows the an admin to view stats about a webserver. Some
04-16 by phpsysinfo
sites leave t
2004SnortSnarf alert page
04-16

snort is an intrusion detection system. SnorfSnarf creates pretty web pages from
intrusion dete

2004- Network Host Assessment This search yeids ISS scan reports, revealing potential vulnerabilities on hosts and
03-30 Report I
networks.
2004- This report lists
03-30 identified by

This search yeids ISS scan reports, revealing potential vulnerabilities on hosts and
networks.

201
4inurl:typo3conf/localconf.php
0407

typo3 passwords

Bruno Schmid

201
4- inurl:/backup intitle:index of
03- backup intext:*sql
31

Google
Search:https://www.google.com/search?client=opera&q=admin+username+and
+pass&sour

201
3filetype:password jmxremote
1125

Passwords for Java Management Extensions (JMX Remote) Used by jconsole,

Eclipses MAT, Java Vi

201
3- ext:sql intext:@gmail.com
11- intext:password
25

author:haji

201
3- site:github.com inurl:sftp11- config.json
25

Find disclosed FTP login credentials in github repositories Credit: RogueCoder

201
3- site:github.com inurl:sftp11- config.json intext:/wp-
25

Finds disclosed ftp FTP for WordPress installs, which have been pushed to a
public repo on GitH

201
3- BEGIN RSA PRIVATE KEY
09- filetype:key -gi
24

To find private RSA Private SSL Keys

201
3filetype:sql insite:pass && user
0422

Google Dork: filetype:sql insite:pass && user We Can get login username and
password

201
3- ext:sql intext:@hotmail.com
04- intext :password
09

By , NItish Mehta , www.illuminativeworks.com/blog

https://www.facebook.com/illuminativework

201
3- filetype:config inurl:web.config This google dork to find sensitive information of MySqlServer , uid, and
04- inurl:ftp
password
09
201
3- filetype:inc OR filetype:bak OR
02- filetype:old mysql
05

Aggregates previous mysql_(p)connect google dorks and adds a new filetype.

Searches common fil

201
*Google Search:*
3- ext:xml (proto=prpl- | prplhttps://www.google.com/search?q=ext:xml%20(%22proto=prpl02- ya
%22%20|%20%22prp
05
201
2- allinurl:User_info/auth_user_fil Google dork for find user info and configuration password of DCForum
11- e.txt
allinurl:User_info/
05
201
2inurl:/dbman/default.pass
1102

A path to a DES encrypted password for DBMan ( http://www.gossamerthreads.com/products/archiv

201
2- parent directory
11- proftpdpasswd intitle
02

This dork is based on this: http://www.exploit-db.com/ghdb/1212/ but

improved cause that is u

201
2- filetype:xls username |
11- password
02

filetype:xls username | password This search reveals usernames and/or

passwords of

201
ext:xml
2(mode_passive|mode_defau OffSec: So the dork is: ext:xml (mode_passive|mode_default) Th
11
02
201
2- intext:charset_test= email=
08- default_persistent=
21
201
2- inurl:passes OR
08- inurl:passwords&
21

find facebook email and password

Hack the $cr1pt kiddies. There are a lot of Phishing pages hosted on internet ,
this dork wi

201
2- filetype:cfg radius
05- (pass|passwd|passw
15

Find config files with radius configs and passwords and secrets Love Bastich

2011- (username=* | username:* |) | (

12-27 ((password=* | pas

Logged username, passwords, hashes Author: GhOsT-PR

2011filetype:sql inurl:wp-content/backup-*
12-14

Search for WordPress MySQL database backup. Author: AngelParrot

2011My RoboForm Data index of

12-12

This dork looks for Roboform password files. Author: Robert

McCurdy

2011inurl:/Application Data/Filezilla/* OR
11-19

this dork locates files containing ftp passwords

2011- filetype:php~
Backup or temp versions of php files containing you guessed it
10-11 (pass|passwd|password|dbpass|db_pass passwords or other ripe for the
2011inurl:ftp password filetype:xls
09-26

this string may be used to find many low hanging fruit on FTP sites
recently indexed by google.

2011- filetype:sql phpmyAdmin SQL Dump

06-28 (pass

phpMyAdmin SQL dump with passwords Bastich

2011- filetype:sql MySQL dump

06-28 (pass|password

MySQL database dump with passwords Bastich

2011filetype:sql PostgreSQL database dump PostgreSQL database dump with passwords Bastich
06-28
2011Asian FTP software -, run the password hash through John etc.
filetype:ini [FFFTP] (pass|passwd|pass
04-18
Author: Bastich
2011Total commander wxc_ftp.ini run has through John etc. or even
filetype:ini FtpInBackground (pass|pas
04-18
better use http://wcxftp.org.ru/
2011filetype:ini precurio (pass|passwd|pas plain text passwods
04-18
2011filetype:ini SavedPasswords (pass|pass Unreal Tournament config, plain text passwords Author: Bastich
04-18
2011- filetype:ini pdo_mysql
04-18 (pass|passwd|pa

full details dbname dbuser dbpass all plain text Author:Bastich

2011inurl:web/frontend_dev.php -trunk
01-09

Google search for web site build with symfony framework and in
development environment. In

2011- inurl:config/databases.yml -trac -trunk 01-09 Goo

Google search for web site build with symfony framework. This file
contains the login / passwo

2010inurl:-cfg intext:enable password

11-10

Google search for Cisco config files (some variants below):

inurl:router-confg inurl:-confg

2006login: * password: * filet

09-06

This returns xls files containing login names and passwords. it works
by showing all the xls fi

2006ext:php intext:$dbms$dbhost
08-10

Hacking a phpBB forum. Here you can gather the mySQL connection
information for their forum dat

2006inurl:calendarscript/users.txt
03-21

CalenderScript is an overpriced online calender system written in

perl. The passwords are encry

2006- filetype:sql insert into

03-06 (pass|passwd|

Looks for SQL dumps containing cleartext or encrypted passwords.

2006- filetype:reg reg

02-05 +intext:

This can be used to get encoded vnc passwords which can otherwise be
obtained by a local regist

2006- ext:asa | ext:bak intext:uid

01-02 intext:pwd -uid

search for plaintext database credentials in ASA and BAK files.

2006- enable password | secret

01-02 current configurati

Another Cisco configuration search. This one is cleaner, gives complete

configuration files and

2006- ext:passwd -intext:the -sample - Various encrypted passwords, some plaintext passwords and some private
01-02 example
keys are revealed by thi
2006- inurl:editor/list.asp |
01-02 inurl:da

This search finds CLEARTEXT usernames/passwords for the Results Database

Editor. The log in po

2006filetype:bak createobject sa
01-01

This query searches for files that have been renamed to a .bak extension
(obviously), but inclu

2005- inurl:ventrilo_srv.ini
12-19 adminpassword

This search reveals the ventrilo (voice communication program used by many
online gamers) passw

2005- parent directory

11-30 +proftpdpasswd

User names and password hashes from web server backups generated by
cpanel for ProFTPd. Passwo

2005ext:yml database inurl:config

11-14

Ruby on Rails is a MVC full-stack framework for development of web

applications. Theres a conf

2005inurl:Sites.dat+PASS=
11-03

FlashFXP has the ability to import a Sites.dat file into its current Sites.dat file,
using this

2005server-dbs intitle:index of
10-30

Yes, people actually post their teamspeak servers on websites. Just look for
the words superadm

2005This search will show you the Administrator password (very first line) on YaBB
inurl:/yabb/Members/Admin.dat
09-28
forums whose own

2005- admin account info

09-25 filetype:log

searches for logs containing admin server account information such as

username and password.

2005your password is filetype:log

09-24

This search finds log files containing the phrase (Your password is). These files
often contain

2005intitle:rapidshare intext:login
09-18

Rapidshare login passwords.

2005intext:enable password 7
09-13

some people are that stupid to keep their Cisco routers config files on site.
You can easly fin

2005filetype:dat inurl:Sites.dat
09-13

If you want to find out FTP passwords from FlashFXP Client, just type this
query in google and

2005ext:inc pwd= UID=

08-31

Database connection strings including passwords

2005- [WFClient] Password=

07-27 filetype:ica

The WinFrame-Client infos needed by users to connect toCitrix Application

Servers (e.g. Metafra

2005- inurl:cgi-bin
06-24 inurl:calendar.cfg

CGI Calendar (Perl) configuration file reveals information including passwords for
the program.

2005- intitle:phpinfo()
06-05 +mysql.default

This will look throught default phpinfo pages for ones that have a default mysql
password.

2005inurl:pass.dat
06-04

Accesses passwords mostly in cgibin but not all the timeCan find passwords +
usernames (sometim

2005mIRC Passwords For Nicks & Channels in channel\[chanfolder] section of mirc.ini

inurl:perform.ini filetype:ini
06-06
you can fin
2005- intext:powered by
05-11 EZGuestbook

HTMLJunction EZGuestbook is prone to a database disclosure vulnerability.

Remote users may down

2005- inurl:server.cfg rcon

05-06 password

Counter strike rcon passwords, saved in the server.cfg.

!Host=*.*
2005some people actually keep their VPN profiles on the internetomg Simply
intext:enc_UserPassword=*
05-02
donwload the pcf f
ext:pcf
wwwboard WebAdmin
2005inurl:passwd.txt
03-28
wwwboard|webad

This is a filtered version of previous inurl:passwd searches, focusing on

WWWBoard [1]. Ther

2005filetype:inf sysprep
03-20

sysprep is used to drive unanttended MS Windows installations. The files contain

all informatio

2005ext:txt inurl:unattend.txt
03-20

the unattend.txt is used to drive unanttended MS Windows installations. The files

contain all i

2005- filetype:sql ("passwd Find insert statements where the field (or table name) preceding the operator
02-23 values" |
VALUES will be
2005- filetype:sql (values * MD5 Locate insert statements making use of some builtin function to encrypt a
02-23 | val
password. PASSWORD(),
2005- intitle:Index of
02-10 sc_serv.conf sc_serv

This dork lists sc_serv.conf files. These files contain information for Shoutcast
servers and o

2005- Powered by Link

02-15 Department

Link management script with advanced yet easy to use admin control panel, fully
template driven

"Powered by
2005DUpaypal" 02-07
site:duwa

Here is another DUware product, DUpaypal. Once you get hold of the database it
contains the adm

2005- filetype:inc mysql_connect INC files have PHP code within them that contain unencrypted usernames,
02-09 OR mysql_pconnect
passwords, and addresse
2005- ext:ini Version=4.0.0.4
01-27 password

The servU FTP Daemon ini file contains setting and session information including
usernames, pas

2004ext:ini eudora.ini
12-19

Well, this is the configuration file for Eudoramay contain sensitive information
like pop se

2004- intext:powered by Web

12-13 Wiz Journal

Web Wiz Journal ASP Blog. The MDB database is mostly unprotected and can be
downloaded directly

2004inurl:filezilla.xml -cvs
12-02

filezilla.xml contains Sites,Logins and crypted Passwords of ftp connections made

with the open

2004- inurl:GRC.DAT
11-28 intext:password&qu

symantec Norton Anti-Virus Corporate Edition data file containing encrypted passwords.

2004- filetype:log See `ipsec

11-28 copyright

BARF log filesMan page:Barf outputs (on standard output) a collection of debugging informa

2004- powered by dudownload Most duware products use Microsoft Access databases in default locations without instructi
11-23 -site:duware.com
th

2004- intitle:dupics inurl:(add.asp Most duware products use Microsoft Access databases in default locations without instructi
11-23 | default.asp | view
th

2004- powered by duclassmate Most duware products use Microsoft Access databases in default locations without instructi
11-23 -site:duware.co
th

2004- Powered by Duclassified - Most duware products use Microsoft Access databases in default locations without instructi
11-23 site:duware.c
th

2004- Powered by Dudirectory - Most duware products use Microsoft Access databases in default locations without instructi
11-23 site:duware.co
th

2004- Powered by Duclassified - Most duware products use Microsoft Access databases in default locations without instructi
11-23 site:duware.c
th

2004- powered by ducalendar - Most duware products use Microsoft Access databases in default locations without instructi
11-23 site:duware.com
th
2004intext:enable secret 5 $
11-16

sometimes people make mistakes and post their cisco configs on help sites and dont

2004- liveice configuration file

11-08 ext:cfg -si

This finds the liveice.cfg file which contains all configuration data for an Icecast server. P

2004filetype:ini inurl:serv-u.ini serv-U is a ftp/administration server for Windows. This file leaks info about the version, user
11-06
2004inurl:pap-secrets -cvs
11-06

linux vpns store there usernames and passwords for PAP authentification in a file called

2004inurl:chap-secrets -cvs
11-06

linux vpns store their usernames and passwords for CHAP authentification in a file called

2004filetype:ini inurl:flashFXP.ini FlashFXP offers the easiest and fastest way to transfer any file using FTP, providing an excep
10-10
2004- Powered By Elite Forum
09-24 Version *.*

Elite forums is one of those Microsoft Access .mdb file based forums. This one is particularly

2004filetype:mdb wwforum
09-24

Web Wiz Forums is a free ASP Bulletin Board software package. It uses a Microsoft Access
databa

2004index of/ ws_ftp.ini This search is a cleanup of a previous entry by J0hnny. It uses parent directory to
09-17
2004- filetype:config config
09-16 intext:appSettings Us

These files generally contain configuration information for a .Net Web Application. Things lik

2004filetype:ini wcx_ftp
08-25

This searches for Total commander FTP passwords (encrypted) in a file called wcx_ftp.ini. On

2004- LeapFTP intitle:index.of./ sites.ini

08-20 m

The LeapFTP client configuration file sites.ini holds the login credentials
for tho

2004filetype:conf oekakibbs
08-16

Oekakibss is a japanese anime creation application. The config file tells an

attacker the encry

2004http://*:*@www domainname
08-14

This is a query to get inline passwords from search engines (not just
Google), you must type in

2004- filetype:bak
This will search for backup files (*.bak) created by some editors or even by
08-14 inurl:htaccess|passwd|shadow|ht the administrator

2004inurl:/db/main.mdb
08-13

ASP-Nuke database file containing passwords.This search goes for the

direct location and has fe

2004inurl:nuke filetype:sql
08-10

This search reveals database dumps that most likely relate to the phpnuke or postnuke content

2004filetype:ini ServUDaemon
08-06

The servU FTP Daemon ini file contains setting and session information
including usernames, pas

2004filetype:pass pass intext:userid

08-06

Generally, these are dbman password files. They are not cleartext, but still
allow an attacker

2004AutoCreate=TRUE password=*
08-05

This searches the password for Website Access Analyzer, a Japanese

software that cr

2004inurl:/wwwboard
08-01

The software wwwboard stores its passwords in a file called

passwd.txt.An attacker

2004filetype:pwl pwl
07-29

These are Windows Password List files and have been known to be easy to
crack since the release

2004- # -FrontPage- ext:pwd

07-26 inurl:(service |

Frontpage.. very nice clean search results listing !!No further comments
required..changelog:22

2004sets mode: +k
07-19

This search reveals channel keys (passwords) on IRC as revealed from IRC
chat logs.

2004- intitle:Index of passwords

07-16 modified

These directories are named password. I wonder what you might find in
here. Warning

2004- inurl:lilo.conf filetype:conf password LILO is a general purpose boot manager that can be used to boot multiple
07-16 -tatercount
operating systems, inc
2004NickServ registration passwords
07-12

NickServ allows you to register a nickname (on some IRC networks) and
prevent other

2004psyBNC config files

07-06

psyBNC is an IRC-Bouncer with many features. It compiles on Linux,

FreeBSD, SunOs and Solaris.

2004filetype:mdb inurl:users.mdb
06-16

Everyone has this problem, we need to remember many passwords to

access the resources we use. S

2004inurl:ccbill filetype:log
06-18

CCBill.com sells E-tickets to online entertainment and subscription-based

websites. CCBill.com

2004- inurl:ospfd.conf intext:password 06-10 sample -test -tu

GNU Zebra is free software that manages TCP/IP based routing protocols.
It supports BGP-4 proto

inurl:zebra.conf
2004GNU Zebra is free software that manages TCP/IP based routing protocols. It supports
intext:password -sample 06-10
BGP-4 prot
test -tu

2004filetype:pwd service
06-10

Microsoft Frontpage extensions appear on virtually every type of scanner. In the late
90s peop

2004filetype:sql password
06-04

Database maintenance is often automated by use of .sql files that contain many lines
of batched

2004- filetype:sql +IDENTIFIED Database maintenance is often automated by use of .sql files wich may contain
06-04 BY -cvs
many lines of bat
2004filetype:ldb admin
06-02

According to filext.com, the ldb file is A lock file is used to keep muti-user databases

2004- filetype:cfg mrtg

06-02 target[*] -sample -c

Mrtg.cfg is the configuration file for polling SNMP enabled devices. The community
string (ofte

2004filetype:dat wand.dat
05-27

The world-famous web-browser Opera has the ability to save the password for you,
and it call th

2004signin filetype:url
05-26

Javascript for user validation is a bad idea as it shows cleartext user/pass combos.
There is

2004filetype:netrc password
05-26

The .netrc file is used for automatic login to servers. The passwords are stored in
cleartext.

2004filetype:ini ws_ftp pwd

05-26

The encryption method used in WS_FTP is _extremely_ weak. These files can be
found with the &qu

2004- inurl:slapd.conf
05-25 intext:rootpw&q

slapd.conf is the configuration file for slapd, the opensource LDAP deamon. You can
view a clea

2004- inurl:slapd.conf
05-25 intext:credenti

slapd.conf is the configuration file for slapd, the opensource LDAP deamon. The key
crede

2004filetype:inc dbconn
05-26

This file contains the username and password the website uses to connect to the db.
Lots of th

2004- inurl:wvdial.conf
05-24 intext:passwor

The wvdial.conf is used for dialup connections.it contains phone numbers,

usernames and passwor

2004- filetype:pem
05-17 intext:private

This search will find private key files Private key files are supposed to be, well
privat

2004filetype:conf slapd.conf
05-17

slapd.conf is the file that contains all the configuration for OpenLDAP, including the
root pas

2004- filetype:dat
05-17 password.dat

This file contains plaintext usernames and password. Deadly information in the
hands of an atta

2004- filetype:log
05-13 inurl:password.log

These files contain cleartext usernames and passwords, as well as the sites
associated with tho

2004- filetype:url +inurl:ftp:// These are FTP Bookmarks, some of which contain plaintext login names and
05-12 +inurl:&qu
passwords.

2004- inurl:vtund.conf
05-12 intext:pass -cvs

Theses are vtund configuration files (http://vtun.sourceforge.net). Vtund is an

encrypted tunne

filetype:reg reg
2004HKEY_CURRENT_USER
05-11
SSHHOSTKEYS

This search reveals SSH host key fro the Windows Registry. These files contain
information abou

2004- filetype:reg reg

These pages display windows registry keys which reveal passwords and/or
05-07 +intext:defaultusername&quo usernames.
2004- filetype:inc
05-05 intext:mysql_connect

INC files have PHP code within them that contain unencrypted usernames,
passwords, and addresse

2004- filetype:properties inurl:db

05-04 intext:password

The db.properties file contains usernames, decrypted passwords and even

hostnames and ip addres

2004- intitle:index of
05-03 intext:globals.inc

contains plaintext user/pass for mysql database

2004inurl:perform filetype:ini
05-03

Displays the perform.ini file used by the popular irc client mIRC. Often times
has channel pass

2004- intitle:index of
04-26 intext:connect.inc

These files often contain usernames and passwords for connection to mysql
databases. In many ca

2004eggdrop filetype:user user

04-26

These are eggdrop config files. Avoiding a full-blown descussion about

eggdrops and IRC bots, s

2004- filetype:cfm cfapplication

04-19 name passwo

These files contain ColdFusion source code. In some cases, the pages are
examples that are foun

2004allinurl: admin mdb

04-16

Not all of these pages are administrators access databases containing

usernames, passwords and

2004intitle:Index.of etc shadow

03-04

This file contains usernames and (lame) encrypted passwords! Armed with
this file and a decent

2004- inurl:secring ext:skr | ext:pgp |

03-04 ext:bak

This file is the secret keyring for PGP encryption. Armed with this file (and
perhaps a passphr

2004- intitle:index.of
03-04 administrators.pwd

This file contains administrative user names and (weakly) encrypted password
for Microsoft Fron

2004htpasswd
03-04

This is a nifty way to find htpasswd files. Htpasswd files contain usernames
and crackable pass

2004passlist.txt (a better way)

01-23

Cleartext passwords. No decryption required!

2003trillian.ini
08-19

Trillian pulls together all sort of messaging clients like AIM MSN, Yahoo, IRC,
ICQ, etc. The v

2003- inurl:config.php dbuname

07-29 dbpass

The old config.php script. This puppy should be held very closely. It should
never be viewable

2003auth_user_file.txt
07-11

DCForums password file. This file gives a list of (crackable) passwords,

usernames and email a

2003- filetype:xls username password This search shows Microsoft Excel spreadsheets containing the words
06-30 email
username, password and emai
2003etc (index.of)
06-27

This search gets you access to the etc directory, where many many many
types of password files

2003passlist
06-27

Im not sure what uses this, but the passlist and passlist.txt files contain passwords
in CLEAR

2003config.php
06-24

This search brings up sites with config.php files. To skip the technical discussion

2003passwd / etc (reliable)

06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003spwd.db / passwd
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003htpasswd / htgroup
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003htpasswd / htpasswd.bak
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003pwd.db
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003master.passwd
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003passwd
06-24

Theres nothing that defines a googleDork more than getting your PASSWORDS
grabbed by Google fo

2003people.lst
06-24

*sigh*

2003- intitle:index.of
06-24 intext:secring.skr|&q

PGP is a great encryption technology. It keeps secrets safe. Everyone from drug
lords to the he

2003mysql history files

06-24

The .mysql_history file contains commands that were performed against a mysql
database. A

2014intitle:Zimbra Web Client Log In

04-21

Open Source Zimbra Webmail Login pages

2014intitle:Zimbra Web Client Sign In

04-21

Open Source Zimbra Webmail Login pages

2014inurl:typo3/install/index.php?mode=
04-07

typo3 install logins Bruno Schmid

2014inurl:Citrix/XenApp/auth/login.aspx
03-31

Finds login portals for Citrix XenApp. Andy G

twitter.com/vxhex

2014intitle:Admin inurl:login.php site:.co.in

02-28

dork submitted by M4RKM3N aka Osama Mahmood revels

admin login panels of sites

2014allinurl:zimbra/?zinitmode=http -googl
02-05

zimbra webmail login page lookup

allinurl:zimbra/?zinitmode=http -google -github

2014allinurl:/main/auth/profile.php -githu
01-03

[+] This dork will help you find Chamilo login portals.
Depending on the version, the site co

2013inurl:/administrator/index.php?autologin=1
12-03

Title: google hacking username and password of joomla

Google Dork: inurl:/administrator/index.

2013inurl:/data/nanoadmin.php
11-25

Hi, I would like to submit this GHDB which allow to find out
nanoCMS administration pages :

2013inurl:/jenkins/login Page genera

11-25

Finds login pages for Jenkins continuous integration servers.

Andy G twitter.com/vxhex

2013Finds SimpleSAMLphp login pages. Andy G

inurl:/module.php/core/loginuserpass.php&quo
11-25
twitter.com/vxhex
2013allinurl:owa/auth/logon.aspx -google -
11-25

[+] Description Find OWA login portals Regards,

necrodamus http://www.twitter.com/ne

2013intitle:Comrex ACCESS Rack

09-24

IP Codecs offering studio quality audio and video over

wired and wireless IP circuits&qu

2013- inurl:phpmyadmin/index.php & (intext:username #Summary: PHP Admin login portals #Author: g00gl3 5c0u7
08-08

2013intitle:::: Login ::: & intext:&qu

08-08

#Summary: Surveillance login portals #Author: g00gl3 5c0u7

2013inurl:8080 intitle:login intext:

08-08

#Summary: VoIP login portals #Category: Pages containing

login portals #Author: g00gl3 5c0u7

2013intitle:WebMail | Powered by Winmail Server

08-08

#Summary: Winmail login portals #Author: g00gl3 5c0u7

2013intitle:Login OTRS inurl:pl

08-08

#Summary: OTRS login portals #Author: g00gl3 5c0u7

2013inurl:/secure/login.aspx
08-08

#Summary: Several Web Pages Login Portal #Category:

Pages containing login portals #Author: g

2013intext:Im using a public or shared computer

08-08

#Summary: Windows Business Server 2003 Login portal

#Category: Pages containing login portals

2013- intitle:.:: Welcome to the

08-08 Web-Based Configu

#Summary: ZyXEL router login portal #Category: Pages containing login portals
#Author: g00gl3

2013- intitle:Internet Security

08-08 Appliance &a

#Summary: ZyWall Firewall login portal #Category: Various Online Devices

#Author: g00gl3 5c0u

2013inurl:5000/webman/index.cgi Synology nas login

08-08
2013- Welcome to phpMyAdmin +
Finds cPanel login pages. Andy G twitter.com/vxhex
08-08 Username
2013- inurl:/secure/Dashboard.jspa Finds login pages and system dashboards for Atlassians JIRA. Andy G
08-08 intitle:System
twitter.com/vxhex
2013- intitle:Cisco Integrated
08-08 Management Controll

intitle:Cisco Integrated Management Controller Login The Cisco Integrated

Manage

2013inurl:dasdec/dasdec.csp
08-08

inurl:dasdec/dasdec.csp DASDEC II Emergency Alert System User Manual:

http://www.

2013intitle:VNC Viewer for Java VNC Viewer for Java ~4N6 Security~
08-08
2013- Serv-U (c) Copyright 199504-22 2013 Rhino Software, Inc

# Category: FTP Login Portals # Description : Dork for finding FTP Login portals #
Google Dor

2013- intext:Computer Misuse Act

04-09 inurl:login.aspx

Category : Pages containing login portals Description : Dork for finding sensitive
login porta

intext:YOU ARE ACCESSING A

2013Category : Pages containing login portals Description : Dork for finding
GOVERNMENT INFORMATION
04-09
government login port

intext:THIS IS A PRIVATE
2013Category : Pages containing login portals Description : Dork for finding sensitive
SYSTEM AUTHORISED ACCESS
04-09
login porta

2013- allintext: Please login to

04-09 continue

Reported by: Jasper Briels

2013site:login.*.*
02-05

DORK:site:login.*.* Description: Allow User To View Login Panel Of Many

WebSites.. Author:MT

2012- you really should fix this

12-31 security hole by settin

Gives sites with default username root and no password nitish mehta

2012inurl:phpliteadmin.php
11-02

The default password is admin

2012inurl:InfoViewApp/logon.jsp Google Hacking *SAP Business Object 3.1 XI* inurl:InfoViewApp/logon.jsp tw

11-02
2012intitle:DVR+Web+Client
08-21

This dork will find most Linux-based DVR web clients that are accessible to the
web and throug

2012- Please-logon intitle:zarafa

08-21 webaccess

Zarafa Webaccess logon pages. Greetings, Alrik.

2012- intitle:Log In Access

08-21 unsecured

iOmega Storcenter login page: intitle:Log In Access unsecured content with

2012- inurl:/app_dev.php/login
08-21 Environment

Search for login screen in web aplications developed with Symfony2 in

a development environment

2012inurl:cgi-bin/webcgi/main
08-21

inurl:cgi-bin/webcgi/main This dork finds indexed public facing Dell

Remote Acce

2012mailing list memberships reminder

05-15

Hi, By default, while subscribing to a mailing list on a website, running

Mailman (GNU) for

2012Welcome to Sitecore + License Ho Sitecore CMS detection.

05-15
2011intitle:cyber recruiter User ID&
05-11

Search for login screen of default instance: Cyber Recruiter (applicant

tracking and recruitin

2011- intitle:Enabling Self-Service

05-11 Procurement&qu

Search for login screen of default instance: Puridiom (A Procurement

Web Application)

2011- Login Name Repository Webtop

05-11 intitle:l

Search for login screen of default instance: Documentum Webtop by

EMC

2011intitle:cascade server inurl:login.act

03-15

Search for login screen of default instance: Cascade Server CMS by

Hannon Author: Erik Horton

2010inurl:src/login.php
11-13

Locates SquirrelMail Login Pages Author: 0daydevilz

2010inurl:/dana-na/auth/
11-12

Juniper SSL Author: bugbear

2010- Remote Supervisor Adapter II

11-10 inurl:use

IBM e-servers login pages. Author: DigiP

2010||Powered by [ClipBucket 2.0.91]

11-10

This search identifies clpbpucket installations. They frequently have an

admin/admin default pa

2006- intitle:ARI Phone System

10-02 Administrator

Login page for Asterisk Recording Interface (ARI).

2006- intitle:AdventNet ManageEngine

10-02 ServiceDesk P

serviceDesk Plus is a 100 % web-based Help Desk and Asset

Management software.vendor: h**p://ma

2006inurl:/?pagename=CustomerLogin
09-20

Customer login pages for what looks like an inhouse eshop. More
information here:h**p://catalin

2006Powered by Bariatric AdvantageAdmin Login:Admin login pages for

inurl:/?pagename=AdministratorLogin
09-20
what looks like an inhouse esho
2006inurl:+:8443/login.php3
09-27

Plesk is a multi platform control panel solution for hosting.More

information: hxxp://www.swsof

2006- (intitle:SilkyMail by Cyrusoft

08-03 International

silkyMail is a free internet email client, from www.cyrusoft.com, that

runs in your browser. Th

2006Webmail is a http based email server made by atmail.com. To get to

intitle:Login to @Mail (ext:pl | inurl
08-03
the admin login instead of t
2006SurgeMAIL inurl:/cgi/user.cgi ext:cgi
08-03

surgemail is an email server from netwinsite.com that can be accessed

by a web browser. This do

2006intitle:Ampache intitle:love of music

06-29

Ampache is a Web-based MP3/Ogg/RM/Flac/WMA/M4A

manager. It allows you to view, edit, and play y

2006FlashChat v4.5.7
07-29

This simple search brings up lots of online Flash Chat clients.

Flash Chats administration dir

2006intitle:eXist Database Administration

05-03

Login Pages eXist is an Open Source native XML database

featuring efficient, index-based

2006(intitle:WmSC e-Cart Administration)|(

05-03

Login Pages for WebMyStyle.WebMyStyle offers a full range of

web hosting and dedicated se

2006(intitle:Please login Forums powered by UB Logins for Forums powered by UBB.threads

05-03
2006intitle:SHOUTcast Administrator inurl:
05-03

Login pages for SHOUTcastSHOUTcast is a free-of-charge audio

homesteading solution. It pe

2006intitle:IMP inurl:imp/index.php3
05-03

Webmail Login pages for IMPIMP is a set of PHP scripts that

implement an IMAP based webma

2006intitle:TWIG Login
05-03

TWIG is a Web-based groupware suite written in PHP,

compatible with both PHP3 and PHP4. I

2006SquirrelMail version By the Squi

05-03

More SquirrelMail Logins

2006intitle:(TrackerCam Live Video)|(

05-03

TrackerCam is a software application that lets you

put your webcam on

2006(intitle:rymo Login)|(intext:We
05-03

rymo is a small but reliable webmail gateway. It contacts a

POP3-server for mail reading

2006- (intitle:Please login Forums powered by

05-03 WW

WWWthreads is a high powered, full scalable, customizable

open source bulletin board pack

2006Customer login pagesSalesLogix is the Customer Relationship

inurl:/slxweb.dll/external?name=(custportal|
05-03
Management Solution that driv
2006intitle:Employee Intranet Login
05-03

Intranet login pages by decentrix.com

2006inurl:php121login.php
05-03

PHP121 is a free web based instant messenger written

entirely in PHP. This means that i

2006Please enter a valid password! inurl:polladmin

04-25

The PHP Poll Wizard 2 ist a powerful and easy-to-use PHP-Script

for creating and managing polls

2006intitle:EZPartner -netpond
03-21

EZPartner is a great marketing tool that will help you increase

your sales by sending webmaster

2006intitle:Login to @Mail (ext:pl | inurl

03-21

Webmail is a http based email server made by atmail.com. To

get to the admin login instead of r

2006inurl:vsadmin/login | inurl:vsad
03-21

Ecommerce templates makes a online shopping cart solution.

This search finds the admin login.

2006Web-Based Management Please inpu

03-21

This dork finds firewall/vpn products from fiber logic. They only
require a one-factor authent

inurl:2000
2006RemotelyAnywhere is a program that enables remote control, in the same matter
intitle:RemotelyAnywhere 03-21
as VNC. Once Log
site:realvnc.
2006- inurl:/admin/configuration. simply google inurl trick for Oscommerce for open administrator page.If no
03-07 php? Mysto
.htpassword is set f
2006inurl:ids5web
02-09

EasyAccess Web is a application to view radiological images online.Like in hospitals

or univers

2006- intext:Fill out the form

02-08 below completely to

The page to change admin passwords. Minor threat but the place to start an
attack.

2006- Powered by Midmart

01-16 Messageboard

Midmart Messageboard lets you run a highly customizable bulletin board with a
very nice user in

2006- intitle:Ovislink
01-16 inurl:private/login

Ovislink vpn login page.

2006- intitle:3300 Integrated

01-14 Communications Platf

logon portal to the mitel 330 integrated communications

platform.[Mitel 330

2006- bp blog admin intitle:login betaparticle (bp) blog is blog software coded in asp. This google dork finds the
01-02 | intitle:
admin logins.
Emergisoft web
2005applications are a part of
12-31
ou

Hospital patient management system, in theory it could be dangerous.

2005- intitle:b2evo > Login form b2evolution is a free open-source blogging system from b2evolution.net. This dork
12-19 Lo
finds the ad
2005- intitle:Admin login Web sift Group makes a web site administration product which can be accessed via a
12-19 Site Adm
web browser. Th
2005- inurl:/Merchant2/admin.mv Miva Merchant is a product that helps buisnesses get into e-commerce. This dork
12-19 | inurl:/Merchant2/admin locates their
2005- site info for Enter Admin This will take you to the cash crusader admin login screen. It is my first google
11-21 Passwo
hack.. also t
2005- Establishing a secure
11-16 Integrated Lights Out

iLo and related login pages !? Whoops..

2005- inurl:webvpn.html login

11-16 Please e

The Cisco WebVPN Services Module is a high-speed, integrated Secure Sockets

Layer (SSL) VPN ser

2005- This is a restricted Access

11-16 Server &qu

Mostly Login Pages for iPlanet Messenger Express, which is a web-based electronic
mail program

2005- intitle:Merak Mail Server

11-16 Web Administration

User login pages for Merak Email Server Suite which consists of Merak Email
Server core and opt

2005- Powered by Merak Mail

11-13 Server Software

Webmail login portals for Merak Email ServerMerak Email Server Suite consists of
multiple award

2005iCONECT 4.1 :: Login

11-12

This search finds the login page for iCONECTnxt, it enables firms to search,
organize, and revi

2005- intitle:Novell Web

11-12 Services Grou

Novell GroupWise is a complete collaboration software solution that provides

information worker

2005- intitle:*- HP WBEM Login HP WBEM Clients are WBEM enabled management applications that provide the
11-12 | You a
user interface and fu
2005- intitle:EXTRANET login 11-12 .edu -.mil -.g

This search finds many different Extranet login pages.

2005- intitle:EXTRANET *
11-12 Identification

WorkZone Extranet Solution login page. All portals are in french or spanish I
belive.

2005- intitle:OnLine Recruitment This is the Employers Interface of eRecruiter, a 100% Paper Less Recruitment
11-12 Program Login&q
Solution implemen
2005- intitle:Docutek ERes
10-26 Admin Login -ed

Docutek Eres is software that helps libaries get an internet end to them. This dork
finds the a

2005WEBppliance is a software application designed to automate the deployment and

inurl:ocw_login_username
10-13
management of Web
2005- intitle:Supero Doctor III - Supero Doctor III Remote Management by Supermicro, Inc.info:
09-26 inurl:super
http://www.supermicro.
2005- intitle:iDevAffiliate
09-25 admin -demo

Affiliate Tracking Software Adding affiliate tracking software to your site is one of
the most

2005- Please login with admin

09-25 pass -le

PHPsFTPd is a web based administration and configuration interface for the

SLimFTPd ftp serverI

2005- intitle:Admin Login

09-25 admin login&

Blogware Login Portal: An exciting and innovative tool for creating or enhancing
your web

2005- intitle:Login Forum

09-23 Powered By AnyBoard

Anyboard Login Portals. In addition,A vulnerability has been reported in Netbula

Anyboard 9.x &

2005- intitle:Login to the forums Aimoo Login Pages. Looking for a free message board solution? Aimoo provides
09-23 @www.aimoo.com
one of the m
2005intitle:i-secure v1.1 -edu I-Secure Login Pages
09-23
2005- inurl:/modcp/
there have been several dorks for vBulletin, but I could not find one in the search
09-23 intext:Moderator+vBulletin that target
2005- intitle:PHProjekt login
09-21 login passwo

PHProjekt is a group managing software for online calenders, chat, forums, etc. I
looked aroun

2005GreyMatter is prone to an HTML injection vulnerability. This issue is due to a failure

login prompt inurl:GM.cgi
09-13
in the a
2005- Powered by Monster Top 2 Step dork Change url to add filename admin.php (just remove
09-13 List MTL numran
index.php&stuff
2005- intext:Master Account
09-13 Domain Na

There seems to be several vulns for qmail.

intitle:Content
2005Management System
09-13
&quo

iCMS Content Management SystemCreate dynamic interactive websites in

minutes without knowi

2005- Please authenticate

08-30 yourself to get access t

Photo gallery managment system login

2005- intitle:*- HP WBEM Login HP WBEM Clients are WBEM enabled management applications that provide the
11-12 | You a
user interface and fu
2005- intitle:EXTRANET login 11-12 .edu -.mil -.g

This search finds many different Extranet login pages.

2005- intitle:EXTRANET *
11-12 Identification

WorkZone Extranet Solution login page. All portals are in french or spanish I
belive.

2005- intitle:OnLine Recruitment This is the Employers Interface of eRecruiter, a 100% Paper Less Recruitment
11-12 Program Login&q
Solution implemen
2005- intitle:Docutek ERes
10-26 Admin Login -ed

Docutek Eres is software that helps libaries get an internet end to them. This dork
finds the a

2005WEBppliance is a software application designed to automate the deployment and

inurl:ocw_login_username
10-13
management of Web
2005- intitle:Supero Doctor III - Supero Doctor III Remote Management by Supermicro, Inc.info:
09-26 inurl:super
http://www.supermicro.
2005- intitle:iDevAffiliate
09-25 admin -demo

Affiliate Tracking Software Adding affiliate tracking software to your site is one of
the most

2005- Please login with admin

09-25 pass -le

PHPsFTPd is a web based administration and configuration interface for the

SLimFTPd ftp serverI

2005- intitle:Admin Login

09-25 admin login&

Blogware Login Portal: An exciting and innovative tool for creating or enhancing
your web

2005- intitle:Login Forum

09-23 Powered By AnyBoard

Anyboard Login Portals. In addition,A vulnerability has been reported in Netbula

Anyboard 9.x &

2005- intitle:Login to the forums Aimoo Login Pages. Looking for a free message board solution? Aimoo provides
09-23 @www.aimoo.com
one of the m
2005intitle:i-secure v1.1 -edu I-Secure Login Pages
09-23
2005- inurl:/modcp/
there have been several dorks for vBulletin, but I could not find one in the search
09-23 intext:Moderator+vBulletin that target
2005- intitle:PHProjekt login
09-21 login passwo

PHProjekt is a group managing software for online calenders, chat, forums, etc. I
looked aroun

2005GreyMatter is prone to an HTML injection vulnerability. This issue is due to a failure

login prompt inurl:GM.cgi
09-13
in the a
2005- Powered by Monster Top 2 Step dork Change url to add filename admin.php (just remove
09-13 List MTL numran
index.php&stuff

2005- intext:Master Account

09-13 Domain Na

There seems to be several vulns for qmail.

intitle:Content
2005Management System
09-13
&quo

iCMS Content Management SystemCreate dynamic interactive websites in

minutes without knowi

2005- Please authenticate

08-30 yourself to get access t

Photo gallery managment system login

2005- You have requested to

Terracotta web manager admin login portal.
08-30 access the management
2005- intitle:web-cyradm|by
08-30 Luc de Lou

Web-cyradm is a software that glues topnotch mailing technologies together. The

focus is on adm

2005- intext:Master Account

08-30 Domain Nam

qmail mail admin login pages.There are several vulnerabilities relating to this
software

intitle:Content
2005Management System
08-30
&quo

iCMS Content Management SystemCreate websites without knowing HTML or

web programming.

2005inurl:csCreatePro.cgi
08-28

Create Pro logon pages.

2005- intitle:xams 0.0.0..15

08-14 Login

This is the login for xams it should catch from 0.0.1-0.0.150.0.15 being the latest
version as

2005- HostingAccelerator
08-14 intitle:login

This will find the login portal for HostingAccelerator ControlPanel I have not looked
for explo

2005- inspanel intitle:login 08-15 &q

This finds all versions of the inspanel login page.

2005- intitle:communigate pro * Just reveals the login for Communigate Pro webmail. A brute force attack could be
08-11 * intitle:&q
attempted. Th
2005intitle:AlternC Desktop
08-15

This finds the login page for AlternC Desktop I dont know what versions.

2005intitle:phpnews.login
08-10

Vulnerable script auth.php (SQL injection) from rst.void.ru Possible scenario of

attack:[

2005- intitle:Cisco CallManager

08-08 User Options Log O

[quote]Cisco CallManagerCallManager is a FREE web application/interface included

with your VoIP

2005- inurl:default/login.php
07-26 intitle:

This dork reveals login pages for Kerio Mail server. Kerio MailServer is a state-ofthe-art gro

2005- intitle:Member Login

07-24 NOTE: Your

Pretty standered login pages, they all have various differences but it appears that
they use th

2005- This section is for

07-24 Administrators only. If

Nothing special, just one more set of login pages, but the Administrators only
line

2005- intitle:Welcome to
07-22 Mailtraq WebMail

Mailtraq WebMail is just another a web-based e-mail client. This is the login
page.

2005- intitle:TOPdesk
07-22 ApplicationServer

Topdesk is some kind of incident ticket system with a webinterface. It requires:

Windows 98 and

2005- You have requested access BackgroundEasySite is a Content Management System (CMS) build on PHP and
07-20 to a restricted ar
MySQL. Many easysite s
2005inurl:textpattern/index.php Login portal for textpattern a CMS/Blogger tool.
06-09
2005intitle:Login to Cacti
06-24

Cacti is a complete network graphing solution designed to harness the power of

RRDTools data s

2005- intitle:XMail Web Administration

06-09 Interface&q

This search will find the Web Administration Interface for servers
running XMail.XMail is

2005intext:Welcome to inurl:cp
06-05

This gives results for hosting plans that dont have associated fees,
so anyone can sign up wit

2005intitle:XcAuctionLite | DRIVEN B
06-07

This query reveals login pages for the administration of XcAuction

and XcClassified Lite..

2005allintitle:Welcome to the Cyclades

06-02

This search reveals the login page for the Cyclades TS1000 and
TS2000 Web Management Service. T

2005intitle:VisNetic WebMail inurl:/

06-06

VisNetic WebMail is a built-in web mail server that allows VisNetic

Mail Server account holders

2005- inurl:/SUSAdmin intitle:Microsoft Software Microsoft SUS Server is a Patch Management Tool for Windows
05-23 U
2000, XP and 2003 systems.It can be
2005inurl:exchweb/bin/auth/owalogon.asp
05-15

Outlook Web Access Login POrtal

2005inurl:Citrix/MetaFrame/default/default.aspx MetaFrame Presentation Server

05-15
2005inurl::2082/frontend -demo
05-11

This allows you access to CPanel login dialogues/screens.

2005intitle:WorldClient intext:
05-02

MDaemon , Windows-based email server software, contains full

mail server functionality and cont

2005intitle:open-xchange inurl:login.pl
05-02

Open-Xchange 5 is a high performance substitute for costly and

inflexible Microsoft Exchange de

2005- intitle:site administration: please log

05-02 in&q

Real Estate software package, with the admin login screen

2005inurl:gnatsweb.pl
05-02

GNU GNATS is a set of tools for tracking bugs reported by users to

a central site. It allows pr

2005- Powered by DWMail password

05-02 intitle:dwm

What is DWmail?: DWmail is

an

2005intitle:SFXAdmin sfx_global | intitl

04-27

Just another logon page search, this one is for SFX, a link
server from Ex

2005intitle:Zope Help System inurl:HelpSys

04-27

By itself, this returns Zopes help pages. Manipulation of the URL,

changing HelpSys to mana

2005intitle:ilohamail Powered by IlohaMail

04-17

IlohaMail is a light-weight yet feature rich multilingual webmail

system designed for ease of u

2005intitle:ilohamail intext:Version 0.8.10

04-11

some version of ilohamail are vulnerable.

2005- intitle:"inc. vpn 3000

04-11 concentrator&q

This search will show the login page for Cisco VPN 3000
concentrators. Since the default user

2005intext:"vbulletin" inurl:admincp vBulletin Admin Control Panel

04-09
2005Dell OpenManage enables remote execution of tasks such as system configuration,
inurl:usysinfo?login=true
01-25
imaging, applic
2005- intext:Mail admins login
01-24 here to administrat

Another way to locate Postfix admin logon pages.

2005PhotoPost PHP Upload

01-13

PhotoPost was designed to help you give your users exactly what they want. Your
users will be t

2005PHPhotoalbum Statistics
01-13

PHPhotoalbum is a picturegallery script. You can upload pictures directly from your
webbrowser.

2005PHPhotoalbum Upload
01-13

Homepage: http://www.stoverud.com/PHPhotoalbum/PHPhotoalbum is a
picturegallery script. You can

2005- inurl:631/admin
01-18 (inurl:op=*

Administration pages for CUPS, The Common UNIX Printing System. Most are
password protected.

2005- intitle:VNC viewer for

01-15 Java

VNC (Virtual Network Computing) allows a pc to be controlled remotely over the

Internet. These

2005- inurl:Activex/default.htm This search will reveal the active X plugin page that allows someone to access PC
01-15 Demo&q
Anywhere from

2005- pcANYWHERE EXPRESS

01-15 Java Client

This search will reveal the java script program that allows someone to access PC
Anywhere from,

2004- intext:BiTBOARD v2.0

12-19 BiTSHiFTERS

The bitboard2 is a board that need no database to work. So it is useful for

webmaster that have

2004- intitle:Login intext:RT is

12-19

RT is an enterprise-grade ticketing system which enables a group of people to

intelligently and

2004- intitle:Athens
12-19 Authentication Point

Athens is an Access Management system for controlling access to web based

subscription services

2004- intitle:Novell Web

12-19 Services intext:&qu

Novell GroupWise is an enterprise collaboration system that provides

2004- inurl:1810 Oracle

12-19 Enterprise Manager

Enterprise Manager 10g Grid Control provides a single tool that can monitor and
manage not only

2004- intitle:WebLogic Server

12-19 intitle:

BEA WebLogic Server 8.1 provides an industrial-strength application infrastructure

for developi

2004- intitle:MX Control

12-19 Console If yo

MX Logics customizable and easy-to-use MX Control

Console

2004Quicktime streaming server is uhhhhh..well its a streaming server and it can be

inurl:1220/parse_xml.cgi?
12-10
managed via
2004- intitle:vhost intext:vHost vHost is a one-step solution for all virtual hosting needs. It enables a Linux/BSD
12-13 . 200
server with
2004- intitle:VitalQIP IP
12-07 Management System

The VitalQIP Web Client Interface provides a World Wide Web interface for the
VitalQIP IP Manag

2004- intext:Storage
These pages can reveal information about the operating system and patch level, as
11-30 Management Server for i well as provi
2004- intitle:PHP Advanced Transfer PHP Advacaned Transfer is GPLd software that claims to be the The ultimate
11-28 inurl:&q
PHP download
2004- inurl:coranto.cgi intitle:Login
11-28 (Authorized Users

Coranto is one of the most powerful Content Management System (CMS)

available on the market. It

2004- inurl:/webedit.* intext:WebEdit

WebEdit is a content management system. This is the login portal search.
11-18 Professional -html
2005- intitle:phpPgAdmin Login
03-03 Language

phpPgAdmin is a web-based administration tool for PostgreSQL. It is perfect

for PostgreSQL DBAs

2004- inurl:postfixadmin intitle:postfix

Postfix Admin login pages. Duh.
11-16 admin&quo

2004- intitle:Icecast Administration

11-07 Admin Page&qu

Icecast streaming audio server web admin.This gives you a list of connected
clients. Interestin

2004inurl:irc filetype:cgi cgi:irc

11-04

CGIIRC is a web-based IRC client. Using a non-transparent proxy an attacker

could communicate a

2004- intitle:php icalendar

10-31 administration -

This is the adminstration login portal search for PHP iCalendar. It is

compatible with Evolutio

2004- intitle:php icalendar

10-31 administration -

PHP iCalendar is a php-based iCal file parser. Its based on v2.0 of the IETF
spec. It displays

2004- inurl:login.php SquirrelMail

10-20 version

squirrelMail is a standards-based webmail package written in PHP4. It

includes built-in pure PH

2004- inurl:/dana10-20 na/auth/welcome.html

Neoteris Instant Virtual Extranet (IVE) has been reported prone to a cross-site
scripting vulne

2004intitle:plesk inurl:login.php3
10-20

Plesk is server management software developed for the Hosting Service

Industry. Various vulnera

2004- OPENSRS Domain

10-19 Management inurl:manage

OpenSRS Domain Management SystemNo vulnerabilities are reported to

security focus.

2004Login Sun Cobalt RaQ

10-19

The famous Sun linux appliance. Nice clean portal search.Various

vulnerabilities are reported t

2004- intitle:ISPMan : Unauthorized

10-19 Access prohibi

ISPMan is a distributed system to manage components of ISP from a central

management interface.

2004SysCP login
10-19

sysCP: Open Source server management tool for Debian LinuxNo

vulnerabilities are reported to se

2004- intitle:Virtual Server

10-19 Administration System

VISAS, German control panel software like confixx.No vulnerabilities are

reported to security f

2004VHCS Pro ver -demo

10-19

VHCS is professional Control Panel Software for Shared, Reseller, vServer and
Dedicated Servers

2004- inurl:confixx
10-19 inurl:login|anmeldung

Confixx is a webhosting management tool and has the following features: *

create resellers, * e

2004aspWebCalendar is a browser based software package that runs over a

inurl:calendar.asp?action=login
10-06
standard web browser, such
2004- IMail Server Web
10-19 Messaging intitle:log

IMail Server from Ipswitch is a messaging solution with 60 million users worldwide.
It contains

intitle:remote
2004assessment OpenAanval
10-16
C

The Aanval Intrusion Detection Console is an advanced intrusion detection monitor

and alerting

2004- WebExplorer Server

10-16 Login Welco

WebExplorer Server is a web-based file management system for sharing files with
user permission

2004- intitle:Philex 0.2* -script - Philex (phile file explorer) is a web content manager based php what philex can
10-14 site:free
do ? eas
2004- inurl:default.asp
10-14 intitle:WebCommander

Polycom WebCommander gives you control over all aspects of setting up

conferences on Polycom MG

2004intitle:MailMan Login
10-11

MailMan is a product by Endymion corporation that provides a web based

interface to email via P

2004- intitle:oMail-admin
oMail-webmail is a Webmail solution for mail servers based on qmail and
10-05 Administration Login&q optionally vmailmgr or
2004- intitle:microsoft certificate Microsoft Certificate Services Authority (CA) software can be used to issue digital
09-24 services
certificate
2004inurl:mewebmail
09-23

MailEnable Standard Edition provides robust SMTP and POP3 services for Windows
NT/2000/XP/2003

2005W-Nailer Upload Area

01-13

What is W-Nailer?W-Nailer is a PHP script which can create galleries for you.It uses
a graphica

2004- inurl:typo3/index.php?u= TYPO3 is a free Open Source content management system for enterprise purposes
09-21 -demo
on the web and in
2004- inurl:administrator
09-21 welcome to mambo

Mambo is a full-featured content management system that can be used for

everything from simple

2004ez Publish administration

09-21

Thousands of enterprises, governmental offices, non-profit organizations, small

and middle size

2004- intitle:Tomcat Server

09-18 Administration

This finds login portals for Apache Tomcat, an open source Java servlet container
which can run

2004- intitle:Login powered by Easy File Sharing Web Server is a file sharing software that allows visitors to
09-18 Easy File Sharing
upload/download
2004- Login to Usermin
09-18 inurl:20000

Usermin is a web interface that can be used by any user on a Unix system to easily
perform task

2004intitle:TUTOS Login
09-18

TUTOS stands for The Ultimate Team Organization Software. This search finds
the log

2004- filetype:pl Download: SuSE this search will get you on the web administration portal of linux open exchange
09-10 Linux Openexchang
servers.
2004- 4images Administration
08-25 Control Panel

4images Gallery 4images is a web-based image gallery management system. The

4images administr

intitle:Novell
2004intitle:WebAccess
08-21
Copyright *

search to show online Novell Groupwise web access portals.

2004inurl:gs/adminlogin.aspx
08-20

GradeSpeed seems to be a .NET application to administer school results for

several schools usin

2004intitle:Login * Webmailer
08-20

1&1 Webmail login portals. This is made by a german company called Internet
United active i

2004- Login (Powered by Jetbox

08-20 One CMS

Jetbox is a content management systems (CMS) that uses MySQL or equivalent

databases. There is

2004- intitle:ITS System

08-16 Information P

Frontend for SAP Internet Transaction Server webgui service.

Novell NetWare
2004intext:netware
08-16
management por

Netware servers ( v5 and up ) use a web-based management utility called Portal

services, which

2004- powered by CuteNews

08-16 2003..2005 C

This finds sites powered by various CuteNews versions. An attacker use this list
and search the

2004- inurl:cgiThese are login pages for Infopops message board UBB.classic. For the
08-13 bin/ultimatebb.cgi?ubb=login UBB.threads you can use
2004- intitle:please login your
08-13 passwo

These administrators were friendly enough to give hints about the password.

2004Ultima Online loginservers

08-09

This one finds login servers for the Ultima Online game.

2004- WebSTAR Mail Please Log @stake, Inc. advisory: 4D WebSTAR is a software product that provides Web,
08-09 In
FTP, and Mail
2004- intitle:teamspeak server08-09 administration

TeamSpeak is an application which allows its users to talk to each other over the
internet and

2004- inurl:/cgisQWebmail login portals.

08-06 bin/sqwebmail?noframes=1
2004- (inurl:ars/cgi08-05 bin/arweb?O=0 | inurl:a

From the vendor site: Remedys Action Request System

2004- intitle:Node.List
08-05 Win32.Version.3.11

synchronet Bulletin Board System Software is a free software package that can
turn your persona

2004From the marketing brochure: UltiPro Workforce Management offers you the
inurl:utilities/TreeView.asp
07-29
most comprehensi
2004- ASP.login_aspx
07-26 ASP.NET_SessionId

.NET based login pages serving the whole environment and process trace for your
viewing pleasur

2004Powered by INDEXU
07-22

From the sales department: INDEXU is a portal solution software that allows you
to build

2004phpWebMail
07-12

PhpWebMail is a php webmail system that supports imap or pop3. It has been
reported that PHP

2004- filetype:php
07-09 inurl:webeditor.php

This is a standard login portal for the webadmin program.

2004CGI:IRC Login
06-22

CGIIRC is a web-based IRC client. Using a non-transparent proxy an attacker could

communicate a

2004According to Microsoft Microsoft (R) Outlook (TM) Web Access is a

Outlook Web Access (a better way)
06-18
Microsoft Exchange Acti
2004ttawlogin.cgi/?action=
06-04

Tarantella is a family of enterprise-class secure remote access software

products. This Google-

2004- intitle:Welcome Site/User

06-10 Administrator

service providers worldwide use Ensims products to automate the

management of their hosting s

2004intitle:ZyXEL Prestige Router En This is the main authentication screen for the ZyXEL Prestige Router.
06-04
2004filetype:r2w r2w
06-04

WRQ Reflection gives you a standard desktop that includes web- and
Windows-based terminal emula

2004inurl:search/admin.php
05-30

phpMySearch is a personal search engine that one can use to provide a

search feature for ones

2004inurl:/eprise/
05-26

silkRoad Eprise is a dynamic content management product that simplifies

the flow of content to

2004- intitle:Dell Remote Access

05-17 Controller

This is the Dell Remote Access Controller that allows remote

administration of a Dell server.

2004please log in
05-13

This is a simple search for a login page. Attackers view login pages as the
front door&qu

2004inurl:login filetype:swf swf

05-12

This search reveals sites which may be using Shockwave (Flash) as a login
mechanism for a site.

2004inurl:webadmin filetype:nsf
05-11

This is a standard login page for Domino Web Administration.

2004This iks the login page for eMule, the p2p file-sharing program. These
intitle:eMule * intitle:- Web Co
05-11
pages forego the login n
2004inurl:/Citrix/Nfuse17/
05-10

These are Citrix Metaframe login portals. Attackers can use these to profile
a site and can use

2004- inurl:metaframexp/default/login.asp These are Citrix Metaframe login portals. Attackers can use these to profile
05-10 | intitle:&quo
a site and can use
2004inurl:names.nsf?opendatabase
05-04

A Login portal for Lotus Domino servers. Attackers can attack this page or
use it to gather inf

2004- intitle:Remote Desktop Web

04-28 Connection

This is the login page for Microsofts Remote Desktop Web Connection,
which allows remote users

2004- intitle:MikroTik RouterOS

04-26 Managing Webpage&q

This is the front page entry point to a Mikro Tik Router.

2004VNC Desktop inurl:5800

04-21

VNC is a remote-controlled desktop product. Depending on the

configuration, remote users may no

2004inurl:/admin/login.asp
04-21

This is a typical login page. It has recently become a target for SQL
injection. Comsecs artic

2004inurl:login.asp
04-21

This is a typical login page. It has recently become a target for SQL
injection. Comsecs artic

2004Webmin is a html admin interface for Unix boxes. It is run on a proprietary web
inurl::10000 intext:webmin
04-20
server listenin
2004inurl:login.cfm
04-19

This is the default login page for ColdFusion. Although many of these are secured,
this is an i

2004- intitle:ColdFusion
04-19 Administrator Login

This is the default login page for ColdFusion administration. Although many of
these are secure

2004According to Microsoft Microsoft (R) Outlook (TM) Web Access is a Microsoft

allinurl:exchange/logon.asp
04-16
Exchange Acti
2014- intitle:not accepted
02-05 inurl:union+select

Find IDS and Mod security dork: intitle:not accepted inurl:union+select

inurl:

2013filetype:jnlp
11-25

Java Web Start (Java Network Launch Protocol) -[Voluntas Vincit Omnia]website http:/

2013- intitle:RT at a glance

11-25 intext:qu

RT Request Tracker Ticket Database http://www.bestpractical.com/rt/ [Voluntas Vincit

2013intitle:IPCam Client
11-25

Foscam IPCam By default these cameras attach to the myfoscam.org DDNS.

So you could add sit

2013- inurl:*/graphs* intitle:Traffic

09-24 and system r

With this search you can view results for mikrotik graphics interfaces
*Obrigado,*

2013intitle:Web Client for EDVS

09-24

Yet another DVR system. Probably requires Java to display. 4N6 Security

2013inurl:/webcm?getpage=
09-24

Returns various Actiontec (and often Qwest) branded routers login pages.
4N6 Security

2013- intitle:RouterOS router

09-24 configuration page&q

Returns login portals for Microtik routers running RouterOS version 5 and up.
4N6 Security

2013inurl:/cgi-mod/index.cgi
09-24

Returns login pages for various Barracuda Networks branded hardware spam
filters and mail arch

2013Dork : intitle:SPA504G Configuration Result : Gives access to Cisco SPA504G

intitle:SPA504G Configuration
09-24
Config
2013- intitle:Web Image Monitor &
08-08 inurl:

#Summary: Several printers that use Web Image Monitor control panel (
http://ricoh

2013- intitle:Transponder/EOL
08-08 Configuration:

#Summary: Cheeta Technologies Transponder Configuration Portal (*

http://www.cheetahtech.com).

2013- intitle:NetBotz Network

08-08 Monitoring Appliance

#Summary:Various Online Divices #Category: Pages containing login portals

#Author: g00gl3 5c0

2013intitle:Weather Wing WS-2

08-08

#Summary:Weather Wing (http://www.meteo-system.com/ws2.php) Portal.

#Category: Various Online

2013- inurl:/voice/advanced/
04-22 intitle:Linksys SPA configu

This allows you to look at linksys VOIP Router Config pages.

2013inurl:/control/userimage.html
02-05

Mobotix webcam search. yet another newer search

2012- inurl:Orion/SummaryView.aspx Hello, Enumerate Solarwinds Orion network monitoring portals. In some
11-02 intext:&q
cases, the portal ca
2012inurl:/level/13|14|15/exec/
11-02

inurl:/level/13|14|15/exec/ Cisco IOS HTTP Auth Vulnerability .. Command

before

2012- intitle:dd-wrt info

11-02 intext:Firmw

This dork finds web interfaces of various routers using custom firmware DDWRT. Default login

2012inurl:32400/web/index.html
11-02

Submitting this for the GHDB. These are web accessible Plex Media Servers
where you can watch

2012- intitle:Pyxis Mobile Test Page

11-02 inurl:&

Pyxis Mobile Test Page intitle:Pyxis Mobile Test Page

inurl:mpTest.aspx&qu

2012apc info apc.php?SCOPE=

08-21

This dork will locate Unsecured PHP APC Installations. With regards, Shubham
Mittal (Hack

2012- intext:You may also donate

08-21 through the Money

Still find alot of equipment running v24 sp1

2012- intitle:hp laserjet

08-21 inurl:info_configu

HP LaserJet printers

2012- inurl:Settings.aspx intitle:Beyond Beyond TV gives you the capability to turn your PC into a high quality, digital
05-15 TV
video recorder
2012This dork finds Wireless Security/Webcams that are accessible from the web.
intitle:HtmlAnvView:D7B039C1
05-15
The interesting p
2011inurl:cgi-bin/cosmobdf.cgi?
12-28

COSMOView for building management. Author: GhOsT-PR

2011- inurl:RgFirewallRL.asp |
12-27 inurl:RgDmzHost.asp | inu

Gateway Routers Author: GhOsT-PR

2011intitle:SpectraIV-IP
12-26

Google dork for pelco SpectraIV-IP Dome Series cameras Default

username/password admin/a

2011inurl:/cgi-bin/makecgi-pro
12-12

Brings up listings for Iomgea NAS devices. Password protected folders are
susceptible to authe

2011- allintitle:UniMep Station

12-10 Controller

UniMep is a device for managing fuel station. You can see process of fueling
cars and you can

2011- inurl::9000 PacketVideo

07-26 corporation

inurl::9000 PacketVideo corporation About: This provides Twonky Server

Media int

2010inurl:/level/15/exec/11-21

Default Cisco 2800 Series page

2010- inurl:/exec/show/tech11-21 support/cr

Default Cisco 2800 Series page

2010- inurl:/level/15/exec/11-21 /configure/http

Default Cisco 2800 Series page

2010allintitle:SyncThru Web Service This search finds Internet-connected Samsung printer control panels.
11-11
2010- intitle:EvoCam
11-10 inurl:webcam.html

This search identifies EvoCam cameras accessible over the Internet. There are
also public explo

2006- intitle:Top Vantage Service

10-02 Gateway -i

VSG1200 Vantage Service Gateway (topframe), go up one level for the login
page. Vendor page at

2006intitle:Net2Phone Init Page

10-02

Net2Phone CommCenter is software that allows you to make phone

calls and se

2006- intitle:Your Network Device

10-02 Status (LA

Login page for the Solwise Sar715+ ADSL Router from solwise.co.uk. Thanks to
jeffball55 for the

2006- SnapGear Management

10-02 Console Welc

Welcome to the SnapGear Unit! To begin configuring your SnapGear unit now,
use the menu t

2006- Welcome to the CyberGuard Welcome to the CyberGuard unit! To begin configuring your CyberGuard unit
10-02 unit!
now, use the me
2006- LANCOM DSL/*-* Office *
10-02 Entry Pa

h**p://www.lancom-systems.de/Login page for these Lancom online DSL

devices.

2006inurl:wrcontrollite
09-11

Browse up to 16 security cameras at one time :)

2006allintitle:DVR login
06-30

softwell Technology Wit-Eye DVR.Default user/pass is admin:adminRequires

ActiveX

2006- intitle:stingray fts login | (

06-29 login.j

The Stingray File Transfer Server: Open communication regardless of platform,

protocol or locat

2006Near broadcast quality video over the internet. A full 30fps at the 320 X 240 size.
intitle:BlueNet Video Viewer
06-25
12fps at th
2006- allintitle: Axis 2.10 OR 2.12 OR
No one search will reveal all Axis cameras. This is a variant for the 2xxx series.
06-25 2.30 OR 2.31 OR 2
2006- intitle:Live View / AXIS |
06-25 inurl:vie

No one search will reveal all Axis cameras. This is my mod of one of the queries. It
usualy ret

2006intitle:Divar Web Client

06-25

Boshe/Divar Net Cameras. Uses ActiveX IE only.

2006- allintitle: EDR400 login |

06-25 Welcome

Everfocus EDR400

2006- allintitle: EDR1600 login |

06-25 Welcome

Everfocus EDR1600

2006- allintitle:Edr1680 remote

06-25 viewer

Everfocus EDR1680. Only returns 2 or 3 results, but submitted for completeness

sake.

2006- allintitle: EverFocus | EDSR |

06-25 EDSR400 Applet

Modified Everfocus search, pulls in EDSR400s as well s a few strays missed by

original query.

2006- intitle:SNC-RZ30 HOME 06-22 demo

This search will reveal Sonys SNC-RZ30 IP cameras web interface. Quite a few of
these camera

2006inurl:cgi-bin/guestimage.html just more more MOBOTIXs

05-04
2006- (intitle:(EyeSpyFX|OptiCamFX)
just more cameras vendor site: http://www.eyespyfx.com/
05-04 go to camera&q

2006- intitle:Veo Observer XT 05-04 inurl:shtml|p

just more results for

this:http://johnny.ihackstuff.com/index.php?module=prodreviews&func=s

2006- intitle:iGuard Fingerprint

05-04 Security System&q

vendor:http://www.iguardus.com/dome information disclosure: employeers list

& free camera a

2006- intitle:Device Status

05-03 Summary Page -de

hxxp://www.netbotz.com/products/index.htmlNetwork/server/room security
and enviromental alarm d

(intitle:MOBOTIX
2006intitle:PDAS) |
04-19
(intitle:MOBOTIX

more camsvendor site:

http://www.mobotix.com/layout/set/index/language/index

2006intitle:IVC Control Panel

04-18

this searches for security cameras, vendor site:http://www.ivcco.com/

2006- intitle:Edr1680 remote

03-21 viewer

This search finds the 1680 series digital video recorder from EverFocus.

2006- OK logout
03-21 inurl:vb.htm?logout=1

This is a google dork for Hunt Electronics web cams. To get to the cameras remove
the vb.htm?l

2006- intitle:DVR Client -the 03-21 free -pdf -do

This dork finds digital video recording client from Nuvico.

2006intitle:GigaDrive Utility
03-18

Linksys GigaDrive network storage utility.

2006- intitle:Ethernet Network

03-18 Attached Storage U

Linksys network storage utility.

2006- intitle:Skystream Networks

skystream Networks Edge Media Router.
03-18 Edge Media Router
2006- intitle:NAS
03-18 inurl:indexeng.html

Disk Online Server NAS device.

2006- intext:you to handle

03-18 frequent configuration

ELSA DSL lan modems.

2006- intitle:WxGoos- (Camera This is used in serverrooms and such where climate conditions are crucial to
03-18 image&qu
hardware health. I
2006- intitle:AR-* browser of
03-18 frame de

A few Sharp printers ..

2006- intitle:Webview Logon

03-18 Page

This is the web interface for Alcatels Omniswitch. Default login is: admin/switch.

2006- inurl:setdo.cgi intext:Set

02-08 DO OK

Dcs-2100 camerasBy removing intext:Set DO OK you will get more hits but they
will r

2006- intext:Welcome to Taurus Celestix Networks, Inc., the premier supplier of network server appliance,
02-08 The Tau
announces the Taurus
2006- intitle:::::: INTELLINET IP
01-16 Camera Homepage

A variation on Jeffball55s original Intellinet Ip Camera.This search finds several

more web ca

2006- intitle:Dell Laser Printer *

Dell laser printers. This search finds different results that dork id 1077.
01-02 port_0 -j
2005Login pages for the DCS-950 Web Camera. Even comes with a built in
DCS inurl:/web/login.asp
12-31
microphone.
2005- intitle:Axis
similar searchs exist. This search finds a few more results as well as access to the
12-31 inurl:/admin/admin.shtml Admin area
2005inurl:/img/vr.htm
12-31

Linksys wireless G Camera.

2005inurl:Printers/ipp_0001.asp
12-08

Thanks to Windows 2003 Remote Printing

2005intitle:Snap Server intitle:Home

11-28

This an online device, you can search for unpassworded shares on

Snap Appliance Server.Moderato

2005- intitle:Sony SNT-V304 Video Network

11-21 Station&

The SNT-V304 Video Network Station.Sonys network camera control

station.

2005- Display Cameras intitle:Express6 Live

11-21 Image&

Express6 live video controller.Displays video from Netlive Cameras

found in this se

2005- intitle:Iomega NAS Manager 11-16 ihackstuff

Login page dork for Iomega NAS Manager.. Theres only 1 result for it
now, but this could chang

2005- intitle:Cisco You are using an old

11-16 browser o

Login pages for Ciso VPN Concentrator stuff

2005- intitle:Summit Management Interface Extreme Networks Summit Switches Web admin pages. Server:
11-16 -g
Allegro-Software-RomPager/2.10
2005- intitle:SNOIE Intel Web Netport
11-16 Manager

Intel Netport Express Print Server.

2005- This page is for configuring Samsung

11-11 Network

several different samsung printers

2005(port_255/home)|(inurl:home?port standered printer search. Moderator note: see also dork id=1221
11-05
2005- intitle:IQeye302 | IQeye303 |
10-03 IQeye601 | IQe

This is a googledork for IQeye netcams. Some of which you can control
how they tilt/zoom. The

2005- (intitle:VisionGS Webcam

09-29 Software)|(in

I dont know if the google query got submitted right because it looks
truncated. here it is ag

2005- intitle:Biromsoft WebCam -4.0 -serial Brimsoft webcam software enables anyone with a webcam to easily
09-29
create a webcam http server. T
2005intitle:Netcam intitle:user logi
09-26

just yet other online cam.

2005intitle:Orite IC301 | intitle:OR

09-21

This search finds orite 301 netcams with audio capabilities.

2005- Phaser numrange:100-100000 Name

09-21 DNS IP More

This is a search for various phaser network printers. With this search
you can look for printe

2005Netbotz devices are made to monitor video, temperature, electricity

intitle:netbotz appliance -inurl:.php
09-16
and door access in server r
2005- intitle:NetCam Live Image -.edu -.gov This is a googledork for StarDot netcams. You can watch these cams
09-06
and if you have the admin p
2005intitle:INTELLINET intitle:IP Ca
08-27

This googledork finds INTELLINET ip cameras. They are used to monitor

things and have a web in

2005Online camera. Default login is administrator and password blank.

intitle:iDVR -intitle:com | net | shop
08-17
Video server runs default on
2005intitle:Network Storage Link for USB 2.0 Dis
08-12

Networked USB hard drives (NSLU2). Be sure to

disable Googles filter (&filters=0) as that

2005Summary View of Sensors | sensor

08-07

sensorProbe is a SNMP enabled and Web based

Environmental Monitoring Device. The sensors
attach

2005intitle:HP ProCurve Switch * Thi

08-07

HP ProCurve Switch web management pages, found by

their [noscript] html tags. Please note: this

2005intitle:V1 welcome to phone sett

08-07

This is a small search for the Italk BB899 Phone

Adaptor login page. iTalkBB is a local and lon

2005intitle:WEBDVR -inurl:product -inurl:d

07-22

DVR is a generic name used to describe the recording

process with a digital cam (digitial video

2005intitle:Java Applet Page inurl:ml

07-22

Another Standalone Network Camera.Default Login:

remove wg_jwebeye.ml to get a nice clue ..Serv

2005intitle:Veo Observer Web Client

07-22

Another online camera search. This one uses ActiveX

thingies, so you need a M$ browser. Append

2005intitle:Middle frame of Videoconference Mana

07-22

Tandberg is a manufacturer of videoconferencing A

videoconference (also known as a video teleco

2005intitle:TANDBERG This page requi

07-22

Tandberg is a manufacturer of videoconferencing A

videoconference (also known as a video teleco

2005tilt intitle:Live View / AXIS | inur

07-07

A small modification to the AXIS camera search it

now returns cameras with pan / tilt, which

2005intitle:AXIS 240 Camera Server intext:

06-10

This search finds AXIS 240 Camera Servers (as opposed

to just the cameras) which can host many

2005intitle:GCC WebAdmin -gcc.ru

06-08

All sorts of various printer status information

2005RICOH Network Printer D model-Restore Factor

06-07

Not a whole lot here.

2005printers/printman.html
06-07

some interesting information on printer status

including Name, Location, Model, Pagecount, Acti

2005intitle:Dell Laser Printer M5200 port_

06-07

Dell Laser Printer M5200

2005intitle:configuration inurl:port_0
06-07

More dell and lexmark printers, The usual things

included.

2005inurl:CgiStart?page=
06-08

This search reveals even more Panasonic IP cameras!

2005inurl:S=320240 | inurl:S=16012
06-07

Mobile cameras? Not sure what camera type this is for

but they are all from Asia and no passwor

2005Kpix Java Based Traffic Cameras. Based at CBS

(cam1java)|(cam2java)|(cam3java)|(cam4java)|(cam5j
06-01
broadcasting for San Fransisco, Oakland, and San
2005intitle:Netopia Router (*.)to vi
06-03

Web admin for netopia routersThis Web tool provides

access to information about the current sta

2005- ( intitle:PacketShaper
05-20 Login)|(intitle

Packeteers PacketShaper is an application traffic management system that

monitors, controls, a

2005- intitle:PacketShaper
05-19 Customer Login

PacketShaper Login.Provides login access for PacketShaper Customers.

2005oA few Online Dell Printers, status, paper, toner levels, ips macs, the usual..
intitle:Dell * inurl:port_0
05-31
(Lexmark and De
To view the Web
2005interface of the
05-20
SpeedTouch,

speedtouch 510 DSL modem devices that were once unprotected. That may have
changed by now.

2005inurl:start.htm?scrw=
05-14

VPON (Video Picture On Net) is a video surveillance setup which seems to be used
by a lot of bu

2005- intitle: VIDEO WEB

05-14 SERVER intex

AVTech Video Web Server is a surveillance producted that is directly connected to

the internet

2005- intext:Powered by: Adobe Printers equipped with Adobes PrintGear technologyAdobes PrintGear technology
05-14 PrintGear inu
is a new printi
2005- intitle:InterJak Web
05-20 Manager

A router device by Uroam (formerly FilaNet), with email and VPN possibilities.

2005- intitle:SWW link Please

Zyxel Zywall
05-02 wait.
2005inurl:port_255 -htm
05-02

Another way to dig up some not yet dorked Lexmark and a couple of Dell
printers.http://johnny.i

2005- intitle:Freifunk.Net
05-02 Status -site:co

Hacked WRT54G Freifunk firmware. The router is based on Linux so after the GPL
the source code

ext:dhtml
2005intitle:"document
05-02
centre|(home)

Various Online Devices>Xerox (*Centre)

2005- Please use Netscape 2.0

04-27 or enhance !!

A search for some HTML code used in a variety of D-link network devices (webcams
and such).

2005- intitle:NeroNET burning NeroNet is an online burning device by Nero. Basically with this query youll get a
04-20 online
listing of
2005Winamp Web Interface
04-11

Just a bit of fun, should reveal a few instances of a Winamp HTTP control program.
Without logi

2005- intitle:OfficeConnect
04-16 Cable/DSL Gateway

This query allows you to find OfficeConnect Cable/DSL Gateways, by locating the
browser-check p

2005inurl:JPGLogin.htm
04-12

webserver detection for GeoHttpServer, the page is the login page or guest cam.
Dont ask why t

2005- display printer status

04-16 intitle:H

Xerox Phaser printers.

2005- intitle:jdewshlp Welcome

HP Officejet help page. Remove help.html for main page.
04-12 to the Embedded Web
2005inurl:/en/help.cgi ID=*
04-12

Aficio printers (this search locates the help pages)..

2005intitle:Lexmark * inurl:port_0
04-12

Lexmark printers (4 models)

2005- intitle:OfficeConnect Wireless

04-12 11g Access Po

OfficeConnect Wireless 11g Access Point

2005Webthru User Login

03-20

samsung webthru cameras

2005- intitle:actiontec main setup

03-20 status &q

Actiontec Routers.

2005- intitle:BorderWare MXtreme

03-20 Mail Firewall Log

BorderWare MXtreme Mail firewallMXtreme is a hardened appliance with a

highly robust mail trans

2005- intitle:Service Managed Gateway

service Managed Gateway from VirtualAccess login page
03-20 Login
2005- intitle:Flash Operator Panel 03-20 ext:php

Flash Operator Panel is a switchboard type application for the Asterisk PBX.
It runs on a web b

2005- intitle:asterisk.management.portal Coalescent Systems Inc. launched The Asterisk Management Portal project
03-20 web-access
to bring together best-
2005- intitle:HomeSeer.Web.Control |
03-18 Home.Status.Events.

HomeSeer (http://www.homeseer.com/) provides a well known home

automation solution (software +

2005intitle:active webcam page

02-15

searches for Active Webcam feeds on websites, a popular USB webcam

interface.

2005intitle:Dell Laser Printer ews

03-04

Finds Dells printers with EWS.EWS : Embedded Web Server technology

enables the usage of a stan

2005allintitle:Brains, Corp. camera

03-05

mmEye webcam / cam servermmEye is a multifunction multimedia server

equipped with 32bit RISC CP

2005inurl:camctrl.cgi
03-05

Vivotec web cams

2005- intext:Please enter correct

02-12 password for Adm

Finds SMC Routers.

2005SupervisionCam captures and compares images from video cameras,

intitle:supervisioncam protocol
02-22
(internet) image files or
2005intitle:Linksys site:ourlinksys.com Ourlinksys.com DDNS entries pointing to Linksys web enabled cameras
02-15
2005intitle:DEFAULT_CONFIG HP
02-15

High scalable Ethernet switches by HP running in the default configuration

2005- intitle:switch login IBM Fast

02-15 Et

IBM 8275 Model 416 High Performance Ethernet Workgroup Switch

2005- intitle:"Brother"
02-04 intext:&qu

Finds a real bunch of Brother printers

2005- intitle:"Connection
02-02 Status" inte

This is an intriguing way of finding various 5861 DMT Routers the

presence of a web-interfa

2005inurl:na_admin
02-01

This searches for the admin pages for a Network Appliance box. An
authenticated use

2005intitle:EpsonNet WebAssist Rev This reveals the Epson Web Assist page (internal to the machine)
01-28
2005intitle:EverFocus.EDSR.applet
01-27

The new EDSR-1600 (16-channel), EDSR-900 (9-channel) and EDSR-600 (6channel) digital video rec

2005inurl:8003/Display?what=
01-27

Norton AntiVirus for GatewaysEasily administered from anywhere via an

HTML interface, it scans

2005allinurl:index.htm?cus?audio
01-27

This will find webcams made by Sweex, Orite and others. Supports motion
detection, ftp, smtp an

2005intitle:Browser Launch Page

01-21

An ActiveX based webcam so use MS IE

2005- intitle:Network Print Server

01-12 intext:&q

Axis Network Print Server devices (a better shorter search).

2005- intitle:Network Print Server

01-12 filetype:

Axis Network Print Server devices. This search has all the possible urls (more
than strictly ne

2005- intitle:Setup Home You will

01-10 need

This should reveal Belkin routers. Interestingly, Belkin routers by default

have remote adminis

2005filetype:cgi transcoder.cgi
01-11

Digital Video Recorder by SnapStream. It is possible on misconfigured

machines to stream video

2004- inurl:next_file=main_fs.htm
12-30 inurl:img

Linksys Wireless-G web cams.

2005- intitle:SpeedStream *
01-08 Management Interface&q

a lot of Speed stream routers :)

2004- intitle:Sipura.SPA.Configuration Query returns configuration pages for online Voice over IP devices. Discloses
12-30 -.pdf
an obscene amount
200412-08

some of the sites are very, very interesting try a search substituting
site:gov instead of si

2004intitle:Cayman-DSL.home
12-19

Cayman DSL modems. Many Cayman units have a weakness where even if
remote administration is dis

2004- intitle:Spam Firewall

12-13 inurl:8000

The Barracuda Spam Firewall is an integrated hardware and software

solution for complete protec

2004intitle:iVISTA.Main.Page
12-13

And again another webcam search. MOst of these cams seem to be security
cams

2004inurl::631/printers -php -demo

12-13

CUPS provides a portable printing layer for UNIX-based operating

systems. I

2004Audio ReQuest home CD/MP3 player. Various information about the

intitle:AudioReQuest.web.server
12-06
configuration of the host and s
2004intitle:V-Gear BEE
12-06

V-Gear Bee Web Cameras

2004- intitle:Live NetSnap CamNetsnap Online Cameras

12-06 Server feed
2004- axis storpoint file view
12-04 inurl:/volume

The Axis Storpoint device turns a SCSI or ATA box with lots of cdrom players (or
writers) into

2004- inurl:printer/main.html
12-03 intext:s

Brother HL Printers.

2004- intext:MaiLinX Alert

12-03 (Notify) -site:ne

Xerox DocuPrint printer models.

2004- Copyright (c) Tektronix,

12-03 Inc. pr

Captain, the Phasers are online :)

2004inurl:ipp/pdisplay.htm
11-30

Providing a standout printing solution, Novell iPrint offers secure print services that
extend

intext:Videoconference
2004Management
11-28
System&quo

Tandberg video conferencing appliancesThe webinterface enables you to drop calls

and to browse

2004- intitle:Smoothwall
11-24 Express inurl:cgi-b

smoothwall is a firewall operating system distribution based on Linux. (Not many

results for th

2004intitle:ipcop main
11-23

IPCop Firewall is a Linux firewall for home and SOHO users. IPCop can be managed
from a simple

2004- intitle:EvoCam
11-18 inurl:webcam.html

Evocams !

2004Starting SiteZAP 6.0

11-16

siteZap webcams !

2004inurl:axis-cgi
11-16

Just another search string to detect the infamous Axis netcams. This company
actually changed t

2004- intitle:Cisco Systems, Inc. The Cisco VPN 3000 Concentrator is a remote access VPN. The Concentrator is a
11-09 VPN 3000 Concent
piece of hardw

2004- intext:UAA (MSB)

11-13 Lexmark -ext:pdf

Lexmark printers (T620, T522, Optra T614, E323, T622, Optra T610, Optra T616,
T520 and Optra S

2004- intext:Ready with 10/100T

Xerox 860 and 8200 Printers.
11-13 Ethernet
2004- intitle:Home Xerox
11-07 Corporation&q

CentreWare Internet Services is an interactive service that uses Internet technology

to extend

2004- WebControl intitle:AMX

11-06 NetLinx

AMX Netlink is a server appliance which connects various devices like a beamer,
laptop or video

2004- please visit intitle:i11-03 Catcher C

CCTV webcams by ICode.

2004- intitle:toshiba network

10-25 camera User Login&

Web interface of Toshiba network cameras.

2004- inurl:level/15/exec/10-20 /show

This search finds Cisco devices which have level 15 access open via webinterface. If
an attacke

2004- site:.viewnetcam.com 10-19 www.viewnetcam.com

The FREE viewnetcam.com service allows you to create a personal

web address (e.g., http://bob.v

2004intitle:DVR Web client

10-19

This embedded DVR is quick plug and play. Just plug it in and it will
start recording. You can

2004Tivo is a the digital replacement for your analog videorecorder. Its a

inurl:TiVoConnect?Command=QueryServer
10-18
digital media system th
2004inurl:netw_tcp.shtml
10-12

An Axis Network Camera captures and transmits live images directly

over an IP network (e.g. LAN

2004- (inurl:webArch/mainFrame.cgi ) |
10-11 (intitle:we

The Ricoh Aficio 2035 (fax/scanner) web interface.Attackers may

read faxes and can get informat

2004- intitle:my webcamXP server!

10-11 inurl:&quo

my webcamXP server!Is there really an explantation needed?

2004camera linksys inurl:main.cgi

10-10

Another webcam, Linksys style.

2004intitle:DEFAULT_CONFIG HP
10-09

searches for the web interface of HP switches.

2004intitle:switch home page cisco s

10-09

Most cisco switches are shipped with a web administration

interface. If a switch is reachable f

2004intitle:axis storpoint CD intitle:&quo

10-05

Axis network CD/DVD servers are faster, less costly and easier to
manage than using full-blown

2004intitle:webeye inurl:login.ml
10-05

This one gets you on the webinterface of Webeye webcams.

2004inurl:hp/device/this.LCDispatcher
10-05

This one gets you on the web interface of some more HP Printers.

2004Canon ImageReady machines

09-29

The large Canon ImageReady machines with model versions 3300,

5000 & 60000.

2004intitle:lantronix web-manager
09-29

The Lantronix web manager home pages show the print server
configuration (Server Name, Boot Cod

2004- intitle:RICOH intitle:Network

09-29 Administration

Network Administration pages for several Ricoh Afficio printer

models, for example the Aficio 1

2004Aficio 1022
09-29

The Ricoh Aficio 1022 is a digital multifunctional B&W copier, easily

upgraded to include n

2004Konica Network Printer Administration

09-29

This finds Konica Network Printer Administration pages. There is one

result at the time of writ

2004Fiery WebTools offers many of the same capabilities of the

(Fiery WebTools inurl:index2.html) | &
09-29
Command WorkStation
2004intitle:The AXIS 200 Home Page
09-29

The Axis 200 HOME pages reside within the AXIS 200 device and
hold information about the curre

2004More Axis netcams !

09-29

More Axis Netcams, this search combines the cams with the default
title (Live View) and extends

2004intitle:dreambox web
09-10

this search will show web administration interfaces of linux dream boxes.The
Dreambox is one of

2004- Phasers
08-05 4500/6250/8200/8400

More Xerox printers (Phasers 4500/6250/8200/8400). An attacker can access the

webinterface with

2004Canon has a series of netcams that all use the WebView LiveScope software. They
Canon Webview netcams
07-29
are
2004- Xerox Phaser
07-22 840 Color Printer

This product is supported but no longer sold by Xerox in the United States. Support
and supplie

2004Xerox Phaser 8200

07-22

Brochure info: The Phaser 8200 uses solid ink, an alternative technology to laser
printin

2004- Xerox Phaser

07-22 740 Color Printer

This product is supported but no longer sold by Xerox in the United States.
Replacement Product

2004Xerox Phaser 6250

07-22

Base Specifications Phaser 6250N: Letter/Legal Size Color Printer 110V, 26ppm
Color/B&W (24

2004- intitle:BorderManager
07-19 Information alert

This is an Informational message produced by the Novell BorderManager

firewall/proxy server. At

2004These AXIS cams seem to run their own http server (Boa/0.94.13). The setup button
intitle:Live View / AXIS
07-19
can be hidden
2004- powered by webcamXP webcamXP PRO:http://www.webcamxp.com/productsadv.htmlThis is the most
07-16 Pro|Broadcas
advanced version of the s
2004- Panasonic WJ-NT104
07-10 netcams

The Panasonic WJ-NT104 allows easy monitoring with a conventional browser. More
vendor informat

2004Mobotix netcams
07-10

Mobotix netcams use the thttpd-2.x. server

(http://www.acme.com/software/thttpd/). The latest v

2004- sony SNC-RZ20 network

07-10 cameras

sony NC RZ20 cameras, only one result for this cam at the moment, a nice street
view from a sky

2004- seyeon FlexWATCH

07-10 cameras

seyeon provides various type of products and software to build up a remote video
monitoring and

2004- sony SNC-RZ30 Network

07-10 Cameras

sony NC RZ30 cameras require a java capable browser. The admin panel is found at
http://[siten

2004- Panasonic Network

07-10 Cameras

Panasonic Network Cameras can be viewed and controlled from a standard web
browser. These camer

2004- intitle:View and

07-08 Configure PhaserLink

These printers configuration is wide open. Attackers can change just about any
value through t

2004Axis Network Cameras

06-06

The AXIS 2400 is a Web server of its own. This means that the server is secured like
any other

Taken from http://www.exploit-db.com/google-dorks/ all categories in 1