-
Notifications
You must be signed in to change notification settings - Fork 35
/
Target.Recon.Dorks.txt
47 lines (28 loc) · 2.09 KB
/
Target.Recon.Dorks.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
`` Google
`` Notes
For more narrow search replace "VAR_ORGANIZATION_STRING" with site:VAR_TARGET_HOST
`` Generics
"Directory Listing for" "VAR_ORGANIZATION_STRING"
intitle:"Index of" "VAR_ORGANIZATION_STRING"
`` Exposed services
(site:*/admin OR site:*/signin OR site:*/login) "VAR_ORGANIZATION_STRING"
("password" OR "admin" OR "panel") (intitle:signin OR intitle:login OR intitle:panel) "VAR_ORGANIZATION_STRING"
(allinurl:"/*/_vti_pvt/" OR allinurl:"/*/_vti_cnf/") "VAR_ORGANIZATION_STRING"
intext:"Index of /.git" "VAR_ORGANIZATION_STRING"
intext:"Index of /.svn" "VAR_ORGANIZATION_STRING"
`` Configuration and backups
(".xml" OR ".yml" OR ".yaml" OR ".json" OR ".sql" OR ".cfg" OR ".conf" OR ".cnf" OR ".config" OR ".inf" OR ".ini" OR ".cgi" OR ".bak" OR ".csv" OR ".dll" OR ".sys") intitle:"Index of" "VAR_ORGANIZATION_STRING"
(".log" OR ".zip" OR ".7z" OR ".rar" OR ".tar" OR ".gz" OR ".mdb" OR ".pem" OR ".rdp" OR ".ovpn" OR ".kdbx" OR ".key") intitle:"Index of" "VAR_ORGANIZATION_STRING"
`` Specific files
`` Web applications
("web.config" OR "config.py" OR "settings.py" OR ".dockerignore" OR "wwwroot" OR "wp-config.php" OR "access_log" OR "error_log" OR ".htaccess" OR "WEB-INF" OR "accounts.xml") intitle:"Index of" "VAR_ORGANIZATION_STRING"
intitle:"Index of" (".asp" OR ".rb" OR ".php" OR ".py" OR ".jsp" OR ".env") "VAR_ORGANIZATION_STRING"
`` Credentials
("authorized_keys" OR "id_rsa") -"id_rsa.pub" intitle:"Index of" "VAR_ORGANIZATION_STRING"
`` Home dirs
(".zshrc" OR ".bashrc" OR "desktop.ini" OR "trash" OR "My Documents") intitle:"Index of" "VAR_ORGANIZATION_STRING"
`` Content-based
("INSERT INTO" OR "PRIVATE KEY") "VAR_ORGANIZATION_STRING"
`` Communications and documents
(".ods" OR ".odt" OR ".doc" OR ".docx" OR ".pdf" OR ".xls" OR ".xlsx" OR ".ppt" OR ".pptx") "VAR_ORGANIZATION_STRING"
(".eml" OR ".ica" OR ".mbx" OR ".wab" OR ".ost" OR ".pst" OR ".txt") "VAR_ORGANIZATION_STRING"