Welcome to the Google Hacking Database (GHDB)!
We call them \’googledorks\’: Inept or foolish people as revealed by Google. Whatever you call these fools, you\’ve found the center of the Google Hacking Universe!
These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.
Really retarded error messages that say WAY too much!
Files containing juicy info
No usernames or passwords, but interesting stuff none the less.
Files containing passwords
PASSWORDS, for the LOVE OF GOD!!! Google found PASSWORDS!
Files containing usernames
These files contain usernames, but no passwords… Still, google finding usernames on a web site..
Examples of queries that can help a hacker gain a foothold into a web server
Pages containing login portals
These are login pages for various services. Consider them the front door of a website\’s more sensitive functions.
Pages containing network or vulnerability data
These pages contain such things as firewall logs, honeypot logs, network information, IDS logs… all sorts of fun stuff!
Google\’s collection of web sites sharing sensitive directories. The files contained in here will vary from sesitive to uber-secret!
Sensitive Online Shopping Info
Examples of queries that can reveal online shopping info like customer data, suppliers, orders, creditcard numbers, credit card info, etc
Various Online Devices
This category contains things like printers, video cameras, and all sorts of cool things found on the web with Google.
HUNDREDS of vulnerable files that Google can find on websites…
These searches reveal servers with specific vulnerabilities. These are found in a different way than the searches found in the Vulnerable Files section.
Web Server Detection
These links demonstrate Google\’s awesome ability to profile web servers..