Google-Hack-Db Vulnerable_Systems

1. Readme:
2. SecPoint.com Google Penetration Testing Hack Database v 1.5
3.  
4. Database of Google Hacks and a tool for manipulating it.
5. Database is separated to files by categories. You could use DB alone, or
6. make some manipulations using our tool like generating URLs for Google
7. search engine or generating pretty HTML output with links. The tool
8. could also help in analysing your own site by adding site search option
9. to all queries.
10.  
11. This tool will take source file (file with a list of queries) and generate
12. website-specific queries (-s option) by adding site:sitename.com to each
13. query. Not only queries, but full Google URLs could be generated for each
14. query (-q). Output could be saved to file in text format (-o) or in HTML with
15. links format (-t) which will automatically create URLs list.
16.  
17. run as
18. ./googleDB-tool.py <source file> <options>
19.  
20. <source file> queries source file from GoogleDB (files in db directory)
21.  
22. Options are:
23. -o output.txt save output to file
24. -s sitename.com generate queries for this site only
25. -q generate google query urls for each line
26. -t generate output in HTML format (implies -q)
27. -m LISTFILE generate queries for multiple sites listed in LISTFILE
28.  
29.  
30. Command line examples:
31. 1-generate list of search strings for finding login pages
32. ./googleDB-tool.py "login_pages.txt"
33.  
34. 2-generate list of Google queries for finding login pages
35. ./googleDB-tool.py "login_pages.txt" -q
36.  
37. 3-same as 2, but in HTML format
38. ./googleDB-tool.py "login_pages.txt" -q -t
39.  
40. 4-same as 3, but save to "OUT.html"
41. ./googleDB-tool.py "login_pages.txt" -q -t -o "OUT.html"
42.  
43. 5-generate queries as in 4, but only for site.com
44. ./googleDB-tool.py "login_pages.txt" -q -t -o "OUT.html" -s site.com
45.  
46. 6-all of the above, for multiple sites from "sites.txt" list
47. ./googleDB-tool.py "login_pages.txt" -q -t -o OUT.html -s site.com -m sites.txt
48.  
49.  
50.  
51. History:
52. # ## 1.0 initial release
53. # ## 1.1 google query generating option (-q)
54. # ## 1.2 generating HTML output (-t)
55. # ## 1.3 added support for multiple sites generation (-m option), database update - 7824 records
56. # ## 1.5 friendly output and examples, database update
57.  
58. Copy Paste At Google:
59. Vulnerable_Systems:
60.  
61. """CGI-Telnet Unit-x Team Connected to *.com"" OR ""CGI-Telnet Unit-x Team Connected to"""
62. """File Upload Manager v1.3"" ""rename to"""
63. """Mail-it Now!"" intitle:""Contact form"" | inurl:contact.php"
64. """Please re-enter your password It must match exactly"""
65. """Powered By: Simplicity oF Upload"" inurl:download.php | inurl:upload.php"
66. """Powered by FlexPHPNews"" inurl:news | inurl:press"
67. """Powered by FunkBoard"""
68. """Powered by Gravity Board"""
69. """Powered by Land Down Under 601"""
70. """Powered by PHPFM"" filetype:php -username"
71. """Powered by SilverNews"""
72. """Powered by Xcomic"""
73. """Powered by: vBulletin Version 1.1.5"""
74. """Select a database to view"" intitle:""filemaker pro"""
75. """There are no Administrators Accounts"" inurl:admin.php -mysql_fetch_row"
76. """Warning:"" ""Cannot execute a blank command in"""
77. """Welcome to Administration"" ""General"" ""Local Domains"" ""SMTP Authentication"" inurl:admin"
78. """Welcome to Intranet"""
79. """Welcome to PHP-Nuke"" congratulations"
80. """Welcome to the Prestige Web-Based Configurator"""
81. """YaBB SE Dev Team"""
82. """[ phpinfo ] [ php.ini ] [ cpu ] [ mem ] [ users ] [ tmp ] [ delete ]"""
83. """adding new user"" inurl:addnewuser -""there are no domains"""
84. """create the Super User"" ""now by clicking here"""
85. """e107.org 2002/2003"" inurl:forum_post.php?nt"
86. """ftp://"" ""www.eastgame.net"""
87. """html allowed"" guestbook"
88. """index of /"" ( upload.cfm | upload.asp | upload.php | upload.cgi | upload.jsp | upload.pl )"
89. """maxwebportal"" inurl:""default"" ""snitz forums"" +""homepage"" -intitle:maxwebportal"
90. """powered by YellDL"""
91. """powered by mailgust"""
92. """powered by my little forum"""
93. """r57shell 1.4"""
94. """r57shell"""
95. """safe_mode: * PHP version: * cURL: * MySQL: * MSSQL: * PostgreSQL: * Oracle: *"""
96. """set up the administrator user"" inurl:pivot"
97. """www.*.com - c99shell"" OR ""www.*.net - c99shell"" OR ""www.*.org - c99shell"""
98. """you can now password"" | ""this is a special page only seen by you. your profile visitors"" inurl:imchaos"
99. "(""Indexed.By""|""Monitored.By"") hAcxFtpScan"
100. "(intitle:""SHOUTcast Administrator"")|(intext:""U SHOUTcast D.N.A.S. Status"")"
101. "(intitle:""WordPress › Setup Configuration File"")|(inurl:""setup-config.php?step="")"
102. "(inurl:81/cgi-bin/.cobalt/) | (intext:""Welcome to the Cobalt RaQ"")"
103. "allintext:""fs-admin.php"""
104. "allinurl:""index.php"" ""site=sglinks"""
105. "ext:asp ""powered by DUForum"" inurl:(messages|details|login|default|register) -site:duware.com"
106. "ext:asp inurl:DUgallery intitle:""3.0"" -site:dugall"
107. "ezBOO ""Administrator Panel"" -cvs"
108. "filetype:cgi inurl:""Web_Store.cgi"""
109. "filetype:cgi inurl:""fileman.cgi"""
110. "filetype:mdb ""standard jet"" (password | username | user | pass)"
111. "filetype:mdb inurl:""news/news"""
112. "filetype:php HAXPLORER ""Server Files Browser"""
113. "filetype:php inurl:""viewfile"" -""index.php"" -""idfil"
114. "filetype:pl -intext:""/usr/bin/perl"" inurl:webcal (inurl:webcal | inurl:add | inurl:delete | inurl:config)"
115. "filetype:pl intitle:""Ultraboard Setup"""
116. "intext:""Warning: * am able * write ** configuration file"" ""includes/configure.php"" -Forums"
117. "intitle:""ASP FileMan"" Resend -site:iisworks.com"
118. "intitle:""CJ Link Out V1"""
119. "intitle:""Control panel"" ""Control Panel Login"" ArticleLive inurl:admin -demo"
120. "intitle:""Directory Listing"" ""tree view"""
121. "intitle:""ERROR: The requested URL could not be retrieved"" ""While trying to retrieve the URL"" ""The following error was encountered:"""
122. "intitle:""Gallery in Configuration mode"""
123. "intitle:""Gateway Configuration Menu"""
124. "intitle:""Horde :: My Portal"" -""[Tickets"""
125. "intitle:""Index of /"" modified php.exe"
126. "intitle:""Mail Server CMailServer Webmail"" ""5.2"""
127. "intitle:""MvBlog powered"""
128. "intitle:""PHP Explorer"" ext:php (inurl:phpexplorer.php | inurl:list.php | inurl:browse.php)"
129. "intitle:""PHP Shell *"" ""Enable stderr"" filetype:php"
130. "intitle:""PHPstat"" intext:""Browser"" intext:""PHPstat setup"""
131. "intitle:""Remote Desktop Web Connection"""
132. "intitle:""SSHVnc Applet""OR intitle:""SSHTerm Applet"""
133. "intitle:""Samba Web Administration Tool"" intext:""Help Workgroup"""
134. "intitle:""Terminal Services Web Connection"""
135. "intitle:""Uploader - Uploader v6"" -pixloads.com"
136. "intitle:""Web Data Administrator - Login"""
137. "intitle:""YALA: Yet Another LDAP Administrator"""
138. "intitle:""[EasyPHP] - Administration"""
139. "intitle:""net2ftp"" ""powered by net2ftp"" inurl:ftp OR intext:login OR inurl:login"
140. "intitle:""phpremoteview"" filetype:php ""Name, Size,"
141. "intitle:Locus7shell intext:""Software:"""
142. "intitle:gallery inurl:setup ""Gallery configuration"""
143. "intitle:mywebftp ""Please enter your password"""
144. "intitle:osCommerce inurl:admin intext:""redistributable under the GNU""intext:""Online Catalog"" -demo -site:oscommerce.com"
145. "intitle:phpMyAdmin ""Welcome to phpMyAdmin ***"" ""running on * as root@*"""
146. "inurl:"" WWWADMIN.PL"" intitle:""wwwadmin"""
147. "inurl:""/NSearch/AdminServlet"""
148. "inurl:""amfphp/browser/servicebrowser.swf"""
149. "inurl:""index.php?module=ew_filemanager"""
150. "inurl:""nph-proxy.cgi"" ""Start browsing through this CGI-based proxy"""
151. "inurl:""phpOracleAdmin/php"" -download -cvs"
152. "inurl:""plog/register.php"""
153. "inurl:""simplenews/admin"""
154. "inurl:""tmtrack.dll?"""
155. "inurl:guestbook/guestbooklist.asp ""Post Date"" From"
156. "inurl:newsdesk.cgi? inurl:""t="""
157. "inurl:php intitle:""Cpanel , FTP CraCkeR"""
158. "inurl:shop ""Hassan Consulting's Shopping Cart Version 1.18"""
159. "inurl:updown.php | intext:""Powered by PHP Uploader Downloader"""
160. (inurl:/shop.cgi/page=) | (inurl:/shop.pl/page=)
161. +htpasswd +WS_FTP.LOG filetype:log
162. MySQL: ON MSSQL: OFF Oracle: OFF MSSQL: OFF PostgreSQL: OFF cURL: ON WGet: ON Fetch: OFF Perl: ON
163. PHPFreeNews inurl:Admin.php
164. PHPKonsole PHPShell filetype:php -echo
165. XOOPS Custom Installation
166. allinurl:forcedownload.php?file=
167. allinurl:install/install.php
168. allinurl:intranet admin
169. ext:cgi inurl:ubb6_test.cgi
170. filetype:cgi inurl:cachemgr.cgi
171. filetype:cnf my.cnf -cvs -example
172. filetype:inc inc intext:setcookie
173. filetype:lit lit (books|ebooks)
174. filetype:php inanchor:c99 inurl:c99 intitle:c99shell -seeds -marijuana
175. filetype:php inurl:tiki-index.php +sirius +1.9.*
176. filetype:php inurl:vAuthenticate
177. filetype:wsdl wsdl
178. http://www.google.com/search?q=inurl%3Aindex.php%3Fpagedb%3Drss
179. intitle:#k4raeL - sh3LL
180. intitle:MyShell 1.1.0 build 20010923
181. intitle:admin intitle:login
182. intitle:cyber anarchy shell
183. intitle:m1n1 1.01
184. inurl:/vb/install/install.php
185. inurl:/vb/install/upgrade.php
186. inurl:ConnectComputer/precheck.htm | inurl:Remote/logon.aspx
187. inurl:ManyServers.htm
188. inurl:aol*/_do/rss_popup?blogID=
189. inurl:cartwiz/store/index.asp
190. inurl:cgi-bin inurl:bigate.cgi
191. inurl:cgi.asx?StoreID
192. inurl:changepassword.cgi -cvs
193. inurl:click.php intext:PHPClickLog
194. inurl:footer.inc.php
195. inurl:info.inc.php
196. inurl:nquser.php filetype:php
197. inurl:php.exe filetype:exe -example.com
198. inurl:pls/admin_/gateway.htm
199. inurl:polly/CP
200. inurl:robpoll.cgi filetype:cgi
201. inurl:rpSys.html
202. inurl:search.php vbulletin
203. inurl:servlet/webacc
204. inurl:view.php?board1_sn=
205. ionCube Loader Wizard information disclosure
206. link:http://www.toastforums.com/
207. natterchat inurl:home.asp -site:natterchat.co.uk
208. vBulletin Install Page Detection