API tools faq
paste
Guest User

RVNCRACK

a guest
Jul 29th, 2018
52
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 6.80 KB | None | 0 0
raw download clone embed print report
  1. ---------cracked by Kensizo
  2.    -- leaked by kensizo
  3. -- selling for 1.20$ USD!
  4. THE CODE:
  5. 1. "Login: *" "password =*" filetype: xls (searching data command to the system files that are stored in Microsoft Excel)
  6.  
  7. 2. allinurl: auth_user_file.txt (to find files auth_user_file.txt containing password on server).
  8.  
  9. 3. filetype: xls inurl: "password.xls" (looking for username and password in ms excel format). This command can change with admin.xls)
  10.  
  11. 4. intitle: login password (get link to the login page with the login words on the title and password words anywhere. If you want to the query index more pages, type allintitle)
  12.  
  13. 5. intitle: "Index of" master.passwd (index the master password page)
  14.  
  15. 6. index of / backup (will search the index backup file on server)
  16.  
  17. 7. intitle: index.of people.lst (will find web pages that contain user list).
  18.  
  19. 8. intitle: index.of passwd.bak ( will search the index backup password files)
  20.  
  21. 9. intitle: "Index of" pwd.db (searching database password files).
  22.  
  23. 10. intitle: "Index of .. etc" passwd (this command will index the password sequence page).
  24.  
  25. 11. index.of passlist.txt (will load the page containing password list in the clear text format).
  26.  
  27. 12. index.of.secret (google will bring on the page contains confidential document). This syntax also changed with government query site: gov to search for government secret files, including password data) or use syntax: index.of.private
  28.  
  29. 13. filetype: xls username password email (will find spreadsheets filese containing a list of username and password).
  30.  
  31. 14. "# PhpMyAdmin MySQL-Dump" filetype: txt (will index the page containing sensitive data administration that build with php)
  32.  
  33. 15. inurl: ipsec.secrets-history-bugs (contains confidential data that have only by the super user). or order with inurl: ipsec.secrets "holds shared secrets"
  34.  
  35. 16. inurl: ipsec.conf-intitle: manpage (useful to find files containing important data for hacking)
  36.  
  37. 17. inurl: "wvdial.conf" intext: "password" (display the dialup connection that contain phone number, username and password)
  38.  
  39. 18. inurl: "user.xls" intext: "password" (showing url that save username and passwords in spread sheet files)
  40.  
  41. 19. filetype: ldb admin (web server will look for the store password in a database that dos not delete by googledork)
  42.  
  43. 20.inurl: search / admin.php (will look for php web page for admin login). If you are lucky, you will find admin configuration page to create a new user.
  44.  
  45. 21. inurl: password.log filetype:log (this keyword is to search for log files in a specific url)
  46.  
  47. 22. filetype: reg HKEY_CURRENT_USER username (this keyword used to look for reg files (registyry) to the path HCU (Hkey_Current_User))
  48.  
  49.  
  50. In fact, there are many more commands that google can crawl in use in the password. One who has the ability google reveals in this case is http://johnny.ihackstuff.com. For that, visit the web to add insight about the google ability.
  51.  
  52. Here, some of the other syntax google that we need to look for confidential data :
  53.  
  54. "Http://username: password @ www ..." filetype: bak inurl: "htaccess | passwd | shadow | ht users"
  55. (this command is to take the user names and passwords for backup files)
  56.  
  57. filetype:mdb inurl:”account|users|admin|administrators|passwd|password” mdb files (this command is to take the password information)
  58.  
  59. filetype:ini ws_ftp pwd (searching admin password with ws_ftp.ini file)
  60.  
  61. intitle: "Index of" pwd.db (searching the encrypted usernames and passwords)
  62.  
  63. inurl:admin inurl:backup intitle:index.of (searching directories whose names contain the words admin and backup)
  64.  
  65. “Index of/” “Parent Directory” “WS _ FTP.ini” filetype:ini WS _ FTP PWD (WS_FTP configuration files is to take FTP server access passwords)
  66.  
  67. ext:pwd inurl:(service|authors|administrators|users) “# -FrontPage-” (there is Microsoft FrontPage passwords)
  68.  
  69. filetype: sql ( "passwd values ****" |" password values ****" | "pass values ****") searching a SQL code and passwords stored in the database)
  70.  
  71. intitle:index.of trillian.ini (configuration files for the Trillian IM)
  72.  
  73. eggdrop filetype:user (user configuration files for the Eggdrop ircbot)
  74.  
  75. filetype:conf slapd.conf (configuration files for OpenLDAP)
  76.  
  77. inurl:”wvdial.conf” intext:”password” (configuration files for WV Dial)
  78.  
  79. ext:ini eudora.ini (configuration files for the Eudora mail client)
  80.  
  81. filetype: mdb inurl: users.mdb (potentially to take user account information with Microsoft Access files)
  82.  
  83. intext:”powered by Web Wiz Journal” (websites using Web Wiz Journal, which in its standard configuration allows access to the passwords file – just enter http:///journal/journal.mdb instead of the default http:///journal/)
  84.  
  85. “Powered by DUclassified” -site:duware.com "Powered by DUclassified"-site: duware.com
  86. “Powered by DUcalendar” -site:duware.com "Powered by DUcalendar"-site: duware.com
  87. “Powered by DUdirectory” -site:duware.com "Powered by DUdirectory"-site: duware.com
  88. “Powered by DUclassmate” -site:duware.com "Powered by DUclassmate"-site: duware.com
  89. “Powered by DUdownload” -site:duware.com "Powered by DUdownload"-site: duware.com
  90. “Powered by DUpaypal” -site:duware.com "Powered by DUpaypal"-site: duware.com
  91. “Powered by DUforum” -site:duware.com "Powered by DUforum"-site: duware.com
  92.  
  93. intitle:dupics inurl:(add.asp | default.asp |view.asp | voting.asp) -site:duware.com (websites that use DUclassified, DUcalendar, DUdirectory, DUclassmate, DUdownload, DUpaypal, DUforum or DUpics applications, by default allows us to retrieve passwords file)
  94.  
  95. To DUclassified, just visit http:///duClassified/ _private / duclassified.mdb
  96. or http:///duClassified/ or http:///duClassified/
  97.  
  98. intext: "BiTBOARD v2.0" "BiTSHiFTERS Bulletin Board" (Bitboard2 use the website bulletin board, the default settings make it possible to retrieve the passwords files to be obtained with the ways http:///forum/admin/data _ passwd.dat
  99. or http:///forum/forum.php) or http:///forum/forum.php)
  100.  
  101. Searching for specific documents :
  102.  
  103. filetype: xls inurl: "email.xls" (potentially to take the information contact)
  104.  
  105. “phone * * *” “address *” “e-mail” intitle:”curriculum vitae”
  106. CVs "not for distribution" (confidential documents containing the confidential clause
  107. buddylist.blt)
  108.  
  109. AIM contacts list AIM contacts list
  110.  
  111. intitle:index.of mystuff.xml intitle: index.of mystuff.xml
  112.  
  113. Trillian IM contacts list Trillian IM contacts list
  114.  
  115. filetype:ctt “msn” filetype: Note "msn"
  116.  
  117. MSN contacts list MSN contacts list
  118.  
  119. filetype:QDF (QDF database files for the Quicken financial application)
  120.  
  121. intitle: index.of finances.xls (finances.xls files, potentially to take information on bank accounts, financial Summaries and credit card numbers)
  122.  
  123. intitle: "Index Of"-inurl: maillog (potentially to retrieve e-mail account)
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!