Xe1phix-[Google]-Hacking-[v8.4.5].sh

1. #!/bin/sh
2. ## ------------------------------------------ ##
3. ##   [+] Xe1phix-Google-Hacking-[v8.4.5].sh
4. ## ------------------------------------------ ##
5.  
6.  
7.  
8.  
9. ## ------------------------------------------------------------------------------------------------ ##
10.     site:$Domain                            ## Approximate web presence of an organization
11.     site:$Domain -site:$Domain              ## Locate Subdomains
12.     filetype:pdf                            ## Locate all pdf files
13.     intitle:
14.     inurl:
15. ## ------------------------------------------------------------------------------------------------ ##
16.  
17.  
18.  
19.  
20. cache:$Domain                           ## Cached version
21.  
22. filetype:pdf                            ##
23.  
24. site:$Domain $SearchTerm                ## Search within webaddress
25.  
26. inurl:$Domain                           ## Find in url
27.  
28.  
29.  
30.  
31.  
32.  
33.  
34.  
35. inurl:tar filetype:gz
36. filetype:torrent torrent
37.  
38. inurl:login filetype:swf swf
39.  
40. inurl:"mjpg/video.cgi?resolution="
41. site:drive.google.com /preview intext:movie inurl:flv | wmv | mp4 -pdf -edit -view
42.    
43.    
44. ext:(doc | pdf | xls| psw | ppt | pps | xml | txt | ps | rtf | odt | sxw )
45.    
46.    
47.  
48. inurl:/_catalogs
49. inurl:/pub/ inurl:_ri_
50.  
51.  
52.  
53. intitle:"Directory Listing, Index of /*/"
54. inurl:scanned & documents intitle:"index of" IT
55.  
56.  
57.  
58. inurl:ftp://ftp
59. inurl:ftp://ftp robots.txt
60. intext:pure-ftpd.conf intitle:index of
61. site:ftp.*.com "Web File Manager"
62.  
63.  
64.  
65. intitle:"index of /" intext:/backup
66. intitle:"index of /" intext:/Download/
67. intitle:"index of" intext:login.csv
68. intitle: "Index of" intext:log
69. intext:"Please select file to upload:" ext:php
70.  
71.  
72.  
73. inurl:robots.txt site:gov + intext:password
74. ext:cgi inurl:cgi-bin intext:#!/bin/bash
75.  
76.  
77.  
78.  
79. inurl:secring ext:skr | ext:pgp | ext:bak
80. intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak"
81. intitle:index.of "keys.txt"
82. intitle:index.of "cacert.pem"
83.  
84.  
85.  
86.  
87.  
88. site:$Domain -site:$Domain                          ##
89.  
90.  
91. site:*.nextcloud.com                                    ## get the subdomains of a site.
92.  
93. site:*.nextcloud.com -site:help.nextcloud.com           ## exclude a specific subdomain
94.  
95.  
96. site:pastebin.com "targetURL"                           ## Password Dumps
97.  
98.  
99. intext:"SECRET_KEY" ext|py inurl:mysite -site:stackoverflow.com -site:github.com
100. db_password filetype:env -site:github.com -git
101. inurl:credentials.txt -github -git -gitlab
102.  
103. intext:"please find attached" "login" | password ext:pdf
104.  
105.  
106.  
107. intitle:index.of "private-key.pem"
108.  
109.  
110. "accounts.xlsx" ext:xlsx
111.  
112. intitle:index.of "userpass.txt"
113. inurl:/userlogin
114. inurl:memberlogin.php
115. site:*/AdminPanel.php
116. inurl:"/web-console/" intitle:"Administration Console"
117. inurl:"/web-console/" intitle:"Administration Console"
118. filetype:asmx inurl:(_vti_bin|api|webservice)
119. inurl:"8080/dashboard/" intitle:"Dashboard"
120. site:*/Dashboard/ intitle:"login"
121. intext:"Build dashboard" intext:"Project" intext:"Plan" intext:"Build"
122. inurl:"/index.php?enter=guest"
123. site:member.*.*/auth/login
124. inurl:public.php inurl:service ext:php
125. allintitle:"Index of /Admin/Common" | allintext:"Parent Directory"
126. inurl:"/my-account-login" | allintext:"My Account"
127. inurl:admin.php inurl:admin ext:php
128. intext:backup.sql intitle:index.of
129. intext:user.sql intitle:index.of
130.  
131.  
132.  
133.  
134.  
135. filetype:cfg "radius" (pass|passwd|password)
136. (username=* | username:* |) | ( ((password=* | password:*) | (passwd=* | passwd:*) | (credentials=* | credentials:*)) | ((hash=* | hash:*) | (md5:* | md5=*)) | (inurl:auth | inurl:passwd | inurl:pass) ) filetype:log
137. filetype:php~ (pass|passwd|password|dbpass|db_pass|pwd)
138. inurl:ftp "password" filetype:xls
139.  
140.  
141.  
142.  
143.  
144.  
145.  
146.  
147. inurl:"/user/register" "Powered by Drupal" -CAPTCHA -"Access denied"
148.  
149.  
150.  
151.  
152. filetype: log inurl:"access.log" +intext:"HTTP/1.1"
153. inurl:/files/_log/ filetype:log
154.  
155.  
156.  
157.  
158. filetype:sql "phpmyAdmin SQL Dump" (pass|password|passwd|pwd)
159. filetype:sql "PostgreSQL database dump" (pass|password|passwd|pwd)
160. filetype:sql "MySQL dump" (pass|password|passwd|pwd)
161. site:dl.dropbox.com filetype:pdf cv OR curriculum vitae OR resume
162. intitle:"Zabbix" intext:"username" intext:"password" inurl:"/zabbix/index.php"
163. inurl:"/munin/network-*.html" OR inurl:"/munin/apache-*.html" OR inurl:"/munin/disk-*.html" OR inurl:"/munin/system-*.html" OR inurl:"/munin/munin-*.html" OR inurl:"/munin/problems.html"
164. -pub -pool intitle:"index of" "Served by" "Web Server"
165. site:*/server-status intext:"Apache server status for"
166. intitle:"IIS Windows Server" -inurl:"IIS Windows Server"
167. intitle:"WAMPSERVER homepage" "Server Configuration" "Apache Version"
168. intitle: "Welcome to nginx!" + "Thank you for using nginx."
169. intitle:"apache tomcat/" "Apache Tomcat examples"
170. intitle:"apache tomcat/" + "Find additional important configuration information in:"
171. intitle:"Apache2 Debian Default Page: It works"
172. intitle:"Axis Happiness Page" "Examining webapp configuration"
173. inurl:"server-status" "Server Version: Apache/" "Server Built: " "Server uptime:" "Total accesses" "CPU Usage:"
174. intitle:"Index of" "Apache/2.4.7 (Ubuntu) Server"
175. intitle:"Test Page for the Apache HTTP Server on Fedora Core" intext:"Fedora Core Test Page"
176. intitle:"Welcome to Windows Small Business Server 2003"
177. intext:"404 Object Not Found" Microsoft-IIS/5.0
178. "Microsoft-IIS/* server at" intitle:index.of
179. "Microsoft-IIS/4.0" intitle:index.of
180.  
181. intitle:"Object not found!" intext:"Apache/2.0.* (Linux/SuSE)"
182. "About Mac OS Personal Web Sharing"
183. intitle:'Welcome to JBoss AS'
184. intitle:"Apache Status" "Apache Server Status for"
185. "PHP Credits" "Configuration" "PHP Core" ext:php inurl:info
186. intitle:"HFS" "Server Uptime" "Server time"
187. intitle:"Apache Status" | intext:"Apache Server Status"
188. intext:Apache/2.2.29 (Unix) mod_ssl/2.2.29 | intitle:"Index of /"
189. intitle:"Apache HTTP Server" intitle:"documentation"
190. intitle:QueryService Web Service
191.  
192.  
193.  
194.  
195.  
196. intitle:'System Web Interface: WATTrouter M'
197. intitle:"Management Console"
198. intitle:'Welcome to JBoss AS'
199.  
200.  
201. inurl:scgi-bin intitle:"NETGEAR ProSafe"
202. inurl:login.cgi intitle:NETGEAR
203. inurl:pls/admin_/gateway.htm
204.  
205.  
206.  
207.  
208. inurl:"/hp_login.html"
209. aboutprinter.shtml
210. intitle:"LaserJet" "Device status" "Supplies summary"
211. intext:"series Network Configuration" AND intext:"canon"
212. inurl:TOP/PRTINFO.HTML
213. inurl:"/address/speeddial.html?start" and intext:"Please configure the password" and intitle:"Brother"
214. intext:"UAA (MSB)" Lexmark -ext:pdf
215. inurl:"printer/main.html" intext:"settings"
216. intext:"MaiLinX Alert (Notify)" -site:networkprinters.com
217. intitle:"Brother" intext:"View Configuration" intext:"Brother Industries, Ltd."
218. intitle:"Network Print Server" intext:"http://www.axis.com" filetype:shtm
219.  
220.  
221.  
222.  
223.  
224.  
225.  
226. inurl:app/kibana intext:Loading Kibana
227. intitle:"Pi-hole Admin Console"
228. intitle:"Welcome to Your New Home Page!" "by the Debian release"
229. intitle:"Default Home Page"
230. "powered by openbsd" +"powered by apache"
231.  
232.  
233.  
234.  
235.  
236.  
237.  
238.  
239.  
240.  
241.  
242.  
243.  
244.  
245.  
246.  
247.  
248.  
249.  
250. intitle:"Ganglia" "Cluster Report for"
251. intitle:Host Report inurl:ganglia
252.    
253.  
254. intitle:"Cacti" AND inurl:"/monitor/monitor.php"
255. inurl:"/weathermap/weathermap-cacti-plugin.php"
256. inurl:"/cacti/graph_view.php" OR inurl:"/cacti/graph.php?"
257.  
258. inurl:nagios/cgi-bin/status.cgi
259.  
260.    
261. intext:"Icecast Administration Admin Page" intitle:"Icecast Administration Admin Page"
262.    
263.    
264.    
265.    
266.    
267.    
268.    
269.    
270.    
271.    
272.    
273.    
274. filetype:log "See `ipsec --copyright"
275. filetype:php inurl:ipinfo.php "Distributed Intrusion Detection System"
276.  
277.  
278. filetype:ns1 ns1
279. intitle:"index of" "parent directory" "desktop.ini" site:dyndns.org
280. intext:[To Parent Directory] & ext:sql | ext:cnf | ext:config | ext:log
281.    
282.    
283.    
284. Phaser numrange:100-100000 Name DNS IP "More Printers" index help filetype:html | filetype:shtml
285.  
286.  
287.  
288.  
289.  
290. intext:"M3R1C4 SHELL BACKDOOR"
291. inurl: "Mister Spy" | intext:"Mister Spy & Souheyl Bypass Shell"
292. "Application Blocked!" "Google bot"
293.  
294.  
295.  
296.  
297. intext:"@gmail.com" ext:log
298.  
299.  
300. inurl:"/fmi/webd" intitle:"FileMaker WebDirect"
301. inurl:"/includes/OAuth2" intext:"index of /"
302.  
303.  
304. site:*/oauth2/authorize
305.  
306.  
307. inurl:credentials.txt -github -git -gitlab
308.    
309. filetype:pub "ssh-rsa"
310. filetype:pub inurl:ssh
311.  
312. "BEGIN RSA PRIVATE KEY" filetype:key -github
313.  
314.  
315. inurl:"set_config_networkIPv6.html"
316.  
317. inurl:'/SSI/Auth/ip_configuration.htm'
318.  
319.  
320.  
321.  
322. intext:" - 2019 Cott Systems, Inc."
323. intitle:HTTP Server Test Page powered by CentOS
324.  
325.  
326.  
327.  
328.  
329.  
330.  
331. site:ftp.*.com "Web File Manager"
332. filetype:"xls | xlsx | doc | docx | ppt | pptx | pdf" site:gov "FOUO" | "NOFORN" | "Confidential"
333.  
334. "passport" filetype:xls site:"*.edu.*" | site:"*.gov.*" | site:"*.com.*" | site:"*.org.*" | site:"*.net.*" | site:"*.mil.*"
335.  
336.  
337.  
338. filetype:docx Domain Registrar $user $pass
339.  
340.  
341. intitle:"report" ("qualys" | "acunetix" | "nessus" | "netsparker" | "nmap") filetype:pdf
342.  
343. intext:"@gmail.com" intext:"password" inurl:/files/ ext:txt
344. filetype:txt "gmail" | "hotmail" | "yahoo" -robots site:gov | site:us
345. intext:"@gmail.com" AND intext:"@yahoo.com" filetype:sql
346. intext:"@gmail.com" intext:"password" inurl:/files/ ext:txt
347.  
348. "google confidential" filetype:pdf
349. site:docs.google.com inurl:forms | viewanalytics intext:see previous responses
350. intext:gmail invite intext:http://gmail.google.com/gmail/a
351.  
352.  
353. site:*/robots.txt intext:User-agent:
354. HTTP_USER_AGENT=Googlebot
355.  
356.  
357.  
358.  
359.  
360. s3 site:amazonaws.com intext:dhcp filetype:txt inurl:apollo
361. s3 site:amazonaws.com filetype:log
362. s3 site:amazonaws.com filetype:sql
363. site:amazonaws.com inurl:login.php
364. s3 site:amazonaws.com filetype:xls login
365.  
366.  
367. filetype:bak inurl:php "mysql_connect"
368.  
369.  
370.  
371. filetype:git -github.com inurl:"/.git"
372. filetype:svn -gitlab -github inurl:"/.svn"
373.  
374.  
375. site:github.com filetype:md | filetype:js | filetype:txt "xoxp-"
376.  
377.  
378. filetype:txt "Registration Code"
379. filetype:doc "Answer Key"
380.  
381. filetype:pdf intitle:"SSL Report"
382.  
383.  
384.  
385.  
386.  
387. intitle:VMware intext:"VMware, Inc. All rights reserved." AND "Powered by VMware Studio"
388. ntitle:VMware inurl:5480
389.  
390. intext:vmware virtual site:.gov filetype:xls | xlsx | doc | pdf
391.    
392. filetype:xls | xlsx intext:cisco -cisco.com site:.gov
393. inurl:mikrotik filetype:backup
394. intext:"Please log on to use the mikrotik hotspot service" intitle:"mikrotik hotspot >login" -github -site:mikrotik.com
395. intitle:"Live View / - AXIS" | inurl:view/view.shtml OR inurl:view/indexFrame.shtml | intitle:"MJPG Live Demo" | "intext:Select preset position"
396. inurl:axis.cgi ext:cgi
397. allintitle: Axis 2.10 OR 2.12 OR 2.30 OR 2.31 OR 2.32 OR 2.33 OR 2.34 OR 2.40 OR 2.42 OR 2.43 "Network Camera "
398. intitle:Axis inurl:"/admin/admin.shtml"
399. tilt intitle:"Live View / - AXIS" | inurl:view/view.shtml
400. intitle:"AXIS 240 Camera Server" intext:"server push" -help
401. Axis Video Manual
402. intitle:"axis storpoint CD" intitle:"ip address"
403. intitle:"Live View / - AXIS"
404. inurl:indexFrame.shtml Axis
405.  
406.  
407.  
408.  
409.  
410.  
411.  
412.  
413.  
414.  
415.  
416.  
417.  
418.  
419. inurl:":631/printers" -php -demo
420. "display printer status" intitle:"Home"
421. "RICOH Network Printer D model-Restore Factory"
422. intitle:"Dell Laser Printer M5200" port_0
423. "Phaser 6250" "Printer Neighborhood" "XEROX CORPORATION"
424. printers/printman.html
425. Phaser numrange:100-100000 Name DNS IP "More Printers" index help filetype:html | filetype:shtml
426. "This page is for configuring Samsung Network Printer" | printerDetails.htm
427. inurl:Printers/ipp_0001.asp
428. intitle:"Dell Laser Printer *" port_0 -johnny.ihackstuff
429. inurl:"printer.asp?forum="
430. inurl:printer/main.html
431. inurl:net/net/airprint.html
432. inurl:/index.htm?cat=info&printerInfo
433. inurl:"cgi-bin/dynamic/" inurl:"html" intitle:"Printer Status"
434. intitle:"Home-CUPS" intext:printers -mugs
435. intitle:"Network Print Server" intext:"http://www.axis.com" filetype:shtm
436. inurl:control/camerainfo
437.    
438.    
439.  
440. inurl:scan_result_file
441.  
442.  
443.  
444. inurl:":8080/login"
445. inurl:8000/portal/
446. intitle:"twonky server" inurl:"9000" -intext:"9000"
447. inurl::5601/app/kibana
448.  
449.  
450.  
451.  
452.  
453.  
454.  
455.  
456. inurl:"/index.php?reconnect=1"
457. intitle:"Pfsense - Login"
458. inurl:10443/remote/login
459. inurl:login.jsp intitle:login
460. inurl:"/index.php?title=Special:Userlogin"
461. inurl:"/index.php?content=login"
462. inurl:"/index.php/main/login"
463. nurl:"/index.php?pageID=login"
464. inurl:"/index.php?p=login"
465. inurl:"/index.php?content=login"
466. site:*/auth_index.htm?lang=kr&loginvalue=0&port=0
467. site:*/cgi-bin/luci intext:"Authorization Required"
468. site:*/index_signin.php
469. inurl:"/index.php?action=login"
470. site:*/Dashboard/ intitle:"login"
471. inurl:"/index.php?route=account/login"
472. inurl:"/index.php?gt=member/login"
473. inurl:"/index.php?r=site/login"
474. inurl:"/index.php/site/login"
475. inurl:/webconsole/webpages/login.jsp
476. intitle:"Page rev */*/*" inurl:"admin
477. inurl:/signin.php?ret=
478.  
479.  
480. intext:"Any time & Any where" AND "Customer Login"
481.  
482.  
483.  
484.  
485.  
486.    
487. intitle:"API Publisher- Login"
488. "Please click here to download and install the latest plug-in. Close your browser before installation."
489.  
490. -english -help -printing -companies -archive -wizard -pastebin -adult -keywords "Warning: this page requires Javascript. To correctly view, please enable it in your browser"
491.  
492.  
493.  
494.  
495.  
496. inurl:~/ftp://193 filetype:(php | txt | html | asp | xml | cnf | sh) ~'/html'
497.  
498.  
499. intext:http | https intext:login | logon intext:password | passcode filetype:xls | filetype:xlsx
500. inurl:"ftp" intext:"user" | "username" | "userID" | "user ID" | "logon" | "login" intext:"password" | "passcode" filetype:xls | filetype:xlsx  
501.  
502.  
503.  
504. "accounts.xlsx" ext:xlsx
505. intext:"@outlook.com" ext:log
506. intext:"@gmail.com" ext:log
507.  
508.  
509. filetype:xls -site:gov inurl:contact
510. inurl:log.nsf -gov
511. mail filetype:csv -site:gov intext:name
512.  
513.  
514. ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw | psw | ppt | pps | xml) (intext:confidential salary | intext:"budget approved") inurl:confidential
515.  
516.  
517.  
518.  
519.  
520.  
521.  
522.  
523. filetype:pdf "acunetix website audit" "alerts summary"
524. intext:ZAP Scanning Report Summary of Alerts ext:html
525. intitle:"Malware Analysis Report"
526. ":: Arachni Web Application Security Report"
527. "IBM Security AppScan Report" ext:pdf
528. intitle:"netsparker scan report" ext:pdf
529. intitle:"Burp Scanner Report" | "Report generated by Burp Scanner"
530. intitle:"Nessus Scan Report" ext:html
531. intext:"Web Application Report" intext:"This report was created by IBM Security AppScan" ext:pdf
532. "Web Application Assessment Report" ext:pdf
533.  
534. intitle:"Nessus Scan Report" ext:html
535. filetype:pdf "Assessment Report" nessus
536. intitle:"Nessus Scan Report" "This file was generated by Nessus"
537. "Network Host Assessment Report" "Internet Scanner"
538. "Network Vulnerability Assessment Report"
539. "Host Vulnerability Summary Report"
540. intitle: "Nexus Repository Manager"
541.  
542.  
543.  
544.  
545. filetype:pdf intitle:"SSL Report"
546. "The following report contains confidential information" vulnerability -search
547. intitle:"Retina Report" "CONFIDENTIAL INFORMATION"
548. "This report lists" "identified by Internet Scanner"
549.  
550.  
551.  
552.  
553.  
554. "Red Hat Secure/2.0"
555. "Red Hat Secure/3.0 server at"
556.  
557. "Novell, Inc" WEBACCESS Username Password "Version *.*" Copyright -inurl:help -guides|guide
558.  
559.  
560.  
561.  
562.  
563.  
564.  
565.  
566.  
567. "generated by Munin" inurl:index -intext:index localhost
568.  
569.  
570.  
571.  
572.  
573.  
574.  
575.  
576.  
577.  
578.  
579.  
580. ext:plist filetype:plist inurl:bookmarks.plist
581. intitle:Bookmarks inurl:bookmarks.html "Bookmarks
582. inurl:"bookmark.htm"
583.  
584.  
585.  
586.  
587.  
588.  
589.  
590.  
591.  
592.  
593. intext:smtp | pop3 intext:login | logon intext:password | passcode filetype:xls | filetype:xlsx
594. site:smtp.*.*/login
595. intitle:"Network Print Server" filetype:shtm ( inurl:u_printjobs | inurl:u_server | inurl:a_server | inurl:u_generalhelp | u_printjobs )   
596. "Welcome to Administration" "General" "Local Domains" "SMTP Authentication" inurl:admin
597. inurl:"smb.conf" intext:"workgroup" filetype:conf
598. inurl:"smb.conf" intext:"workgroup" filetype:conf
599. intitle:"Samba Web Administration Tool" intext:"Help Workgroup"
600.  
601.  
602.  
603.  
604.  
605.  
606.  
607.  
608.  
609.  
610.  
611.  
612.  
613.