Google Dork List

1. ***************************************************
2. ** GOOGLE DORKS ***********************************
3. ***************************************************
4.  
5. -= Contents =-
6.  
7. 1.) FTP PASSWORD DORKS
8. 2.) PHP DORKS
9. 3.) SQL DORKS
10. 4.) WORDPRESS DORKS
11. 5.) PASSWORD FILE DORKS
12. 6.) MISC. DORKS
13. 7.) FREE SWAG DORKS
14. 8.) WEBCAM DORKS
15.  
16.  
17. ************************
18. ** FTP PASSWORD DORKS **
19. ************************
20.  
21. 1.) ws_ftp.ini configuration file search:
22.  
23. intitle:index.of ws_ftp.ini
24.  
25.  
26. 2.) ws_ftp.ini configuration file with "Parent Directory" search:
27.  
28. filetype:ini ws_ftp pwd
29.  
30.  
31. 3.) Variation:
32.  
33. "index of/" "ws_ftp.ini" "parent directory"
34.  
35.  
36. 4.) Variation:
37.  
38. +htpasswd +WS_FTP.LOG filetype:log
39.  
40.  
41. 5.) Variation:
42.  
43. (Substitute vulnerablesite.com with your site you want to search)
44. "allinurl: "Vulnerablesite.com" WS_FTP.LOG filetype:log"
45.  
46.  
47. ***************
48. ** PHP DORKS **
49. ***************
50.  
51. 1.) config.php file search:
52.  
53. intitle:index.of config.php
54.  
55.  
56. 2.) PHP file contents search:
57.  
58. intitle:"Index of" phpinfo.php
59.  
60.  
61. 3.) download.php directory transversal vulneralbilities:
62.  
63. inurl:download.php?=filename
64.  
65.  
66. 4.) upload.php search:
67.  
68. intitle:index.of upload.php
69.  
70. inurl:upload.php
71.  
72.  
73. *****************************
74. ** SQL PASSWORD DUMP DORKS **
75. *****************************
76.  
77. 1.) SQL dumps saved to database search. (Some of the more common passwords for you):
78.  
79. a.) "123456" = hashed password
80. ext:sql intext:@gmail.com intext:e10adc3949ba59abbe56e057f20f883e
81.  
82. b.) "654321" = hashed password
83. ext:sql intext:@gmail.com intext:c33367701511b4f6020ec61ded352059
84.  
85. c.) "password" = hashed password
86. ext:sql intext:@gmail.com intext:5f4dcc3b5aa765d61d8327deb882cf99
87.  
88. d.) "12345678" = hashed password
89. ext:sql intext:@gmail.com intext:25d55ad283aa400af464c76d713c07ad
90.  
91. e.) "iloveyou" = hashed password
92. ext:sql intext:@gmail.com intext:f25a2fc72690b780b2a14e140ef6a9e0
93.  
94.  
95. 2.) Variation of above search:
96.  
97. a.) ext:sql intext:"INSERT INTO" intext:@gmail.com intext:password
98.  
99. b.) ext:sql intext:"INSERT INTO" intext:@yahoo.com intext:password
100.  
101. c.) ext:sql intext:"INSERT INTO" intext:@hotmail.com intext:password
102.  
103. d.) ext:sql intext:"INSERT INTO" intext:@att.net intext:password
104.  
105. e.) ext:sql intext:"INSERT INTO" intext:@comcast.net intext:password
106.  
107. f.) ext:sql intext:"INSERT INTO" intext:@verizon.net intext:password
108.  
109.  
110. *********************
111. ** WORDPRESS DORKS **
112. *********************
113.  
114. 1.) Asset Manager Plugin Exploit - Unprotected Remote File Upload Vuleralbility.
115.  
116. inurl:Editor/assetmanager/assetmanager.asp
117.  
118.  
119. 2.) Timthumb Plugin Exploit - Attacker can attach a shell to a image file and upload the shell. (It has been patched, but there are still a lot of webmasters who have NOT updated!)
120.  
121. inurl:index.of thumb.php
122.  
123. inurl:thumb.php
124.  
125.  
126. 3.) Search for plugins directory:
127.  
128. inurl:wp-content/plugins/
129.  
130.  
131. 4.) Search for themes directory:
132.  
133. inurl:wp-content/themes/
134.  
135.  
136. *************************
137. ** PASSWORD FILE DORKS **
138. *************************
139.  
140. 1.) Search for Microsoft Excel data file:
141.  
142. "Login: *" "password =*" filetype: xls
143.  
144.  
145. 2.) Search for auth_user_file:
146.  
147. allinurl: auth_user_file.txt
148.  
149.  
150. 3.) Search for username/password saved in Microsoft Excel files:
151.  
152. filetype: xls inurl: "password.xls"
153.  
154.  
155. 4.) Search for login pages:
156.  
157. intitle: login password
158.  
159.  
160. 5.) Search for "master password" page:
161.  
162. intitle: "Index of" master.passwd
163.  
164.  
165. 6.) Search for backup directory:
166.  
167. index of /backup
168.  
169.  
170. 7.) Search for password backup file index:
171.  
172. intitle:index.of passwd.bak
173.  
174.  
175. 8.) Search for password databases:
176.  
177. intitle:index.of pwd.db
178.  
179. intitle:"index of" pwd.db
180.  
181.  
182. 9.) Search for /etc/passwd/ index:
183.  
184. intitle:"index of .. etc" passwd
185.  
186.  
187. 10.) Search for plaintext password file:
188.  
189. index.of passlist.txt
190.  
191. inurl:passlist.txt
192.  
193.  
194. 11.) Search for hidden documents/password files:
195.  
196. index.of.secret
197.  
198. index.of.private
199.  
200.  
201. 12.) Search for PhpMyAdmin files:
202.  
203. "# PhpMyAdmin MySQL-Dump" filetype: txt
204.  
205.  
206. 13.) Hidden Superuser (root) data files:
207.  
208. inurl:ipsec.secrets-history-bugs
209.  
210. inurl:ipsec.secrets "holds shared secrets"
211.  
212.  
213. 14.) Find the information files:
214.  
215. inurl:ipsec.conf-intitle:manpage
216.  
217.  
218. 15.) Search for a stored password in a database:
219.  
220. filetype:ldb admin
221.  
222.  
223. 16.) Search for admin.php file:
224.  
225. inurl:search/admin.php
226.  
227.  
228. 17.) Search for password log files:
229.  
230. inurl:password.log filetype:log
231.  
232.  
233. 18.) Search for Hkey_Current_User in registry files:
234.  
235. filetype: reg HKEY_CURRENT_USER username
236.  
237.  
238. 19.) Search for username/password file backups:
239.  
240. "Http://username: password @ www ..." filetype: bak inurl: "htaccess | passwd | shadow | ht users"
241.  
242.  
243. 20.) Search for username/password files:
244.  
245. filetype:mdb inurl:”account|users|admin|administrators|passwd|password” mdb files
246.  
247.  
248. 21.) Search for Microsoft Frontpage passwords:
249.  
250. ext:pwd inurl:(service|authors|administrators|users) “# -FrontPage-”
251.  
252.  
253. 22.) Search for SQL database Code and passwords:
254.  
255. filetype: sql ( "passwd values ****" |" password values ****" | "pass values ****")
256.  
257.  
258. 23.) Search for e-mail account files:
259.  
260. intitle: "Index Of"-inurl: maillog
261.  
262.  
263.  
264.  
265. *****************
266. ** MISC. DORKS **
267. *****************
268.  
269. 1.) WebWiz Rich Text Editor (RTE) - Remote file upload vulneralbility:
270.  
271. inurl:rte/my_documents/my_files
272.  
273.  
274. 2.) EZFilemanager - Remote file upload vulneralbility:
275.  
276. inurl:ezfilemanager/ezfilemanager.php
277.  
278.  
279. 3.) robots.txt - See directories hidden from crawlers. Also sometimes you can pull off a directory transversal with this:
280.  
281. inurl:robots.txt
282.  
283.  
284. 4.) Serial Numbers - Look for software serial numbers
285.  
286. "software name" 94FBR
287.  
288.  
289. *********************
290. ** FIND FREE SWAG! **
291. *********************
292.  
293. This is because the webmaster has a robots.txt file that allows Google, Yahoo, Bing, etc. to crawl their whole site. Instead of restricting certain directories! Their loss is our gain!
294.  
295.  
296. 1.) site:*.com intitle:”Thank You For Your Order” intext:Click Here to Download
297.  
298. 2.) site:*.net intitle:”Thank You For Your Order” intext:Click Here to Download
299.  
300. 3.) site:*.co intitle:”Thank You For Your Order” intext:Click Here to Download
301.  
302. 4.) site:*.org intitle:”Thank You For Your Order” intext:Click Here to Download
303.  
304. 5.) site:*.biz intitle:”Thank You For Your Order” intext:Click Here to Download
305.  
306. 6.) site:*.tv intitle:”Thank You For Your Order” intext:Click Here to Download
307.  
308. 7.) site:*.co.uk intitle:”Thank You For Your Order” intext:Click Here to Download
309.  
310. 8.) site:*.org.uk intitle:”Thank You For Your Order” intext:Click Here to Download
311.  
312. 9.) site:*.eu intitle:”Thank You For Your Order” intext:Click Here to Download
313.  
314. 10.) intitle:Thank you for your purchase! intext:PLR OR MRR OR Package OR Bonus
315.  
316. 11.) intitle:Thank you for your order! intext:PLR OR MRR OR Package OR Bonus
317.  
318. 12.) intitle:Thank you for your order! intext:PLR OR MRR
319.  
320. 13.) intitle:Thank you for your Purchase! intext:PLR OR MRR
321.  
322. 14.) inurl:/thankyou*.html intitle:Thank you for your order!
323.  
324. 15.) intext:Click Here To Download
325.  
326. 16.) inurl:thanks intext:”Thank You For Your Order!” “Click Here” filetype:html
327.  
328. 17.) intitle:Thank You For Your Order! intext:Private Label
329.  
330. 18.) intitle:Thank You For Your Purchased! intext:Private Label
331.  
332. 19.) intext:”Thank You For Your Order” intext:PLR
333.  
334. 20.) intitle:”Thank You For Your Order!” intext:download
335.  
336. 21.) intitle:”Thank You For Your Order” intext:Click Here To Download Now
337.  
338. 22.) intitle:Thank you for your purchase! intext:Click Here to Download
339.  
340. 23.) * thank you for your order download
341.  
342. 24.) * intitle:Thank you for your Purchase! intext:PLR OR MRR OR Package OR Bonus
343.  
344. 25.) * intitle:Thank you for your order! intext:PLR OR MRR
345.  
346. 26.) * intitle:Thank You For Your Purchase! intext:Click Here to Download
347.  
348. 27.) * intitle:Thank You For Your Order! intext:download
349.  
350. 28.) inurl:index.of .mp3
351.  
352. 29.) inurl:index.of .mov
353.  
354. 30.) inurl:index.of .iso
355.  
356. 31.) ?intitle:index.of? mp3
357.  
358. 32.) ?intitle:index.of? mov
359.  
360. 33.) ?intitle:index.of? iso
361.  
362. 34.) inurl:"insert filetype":iso+OR+exe+OR+zip+OR+rar+OR+gzip+OR+tar
363.  
364.  
365. ******************
366. ** WEBCAM DORKS **
367. ******************
368.  
369. 1.) inurl:/view.index.shtml
370.  
371. 2.) inurl:/view.shtml
372.  
373. 3.) intitle:”Live View / - AXIS” | inurl:view/view.shtml^
374.  
375. 4.) inurl:ViewerFrame?Mode=
376.  
377. 5.) inurl:ViewerFrame?Mode=Refresh