• J. Long, “Google Hacking for Penetration Testers”. Syngress, 2005
• Google search syntax
• Filetype:doc filetype:pdf filetype:xls
• Intext:. Intitle:, inurl:
• Allintext:, allintitle:, allinurl:
• Site:gov site:mil site:abc.ro
• Related:www.abc.ro
• http://www.googleguide.com/advanced operators.html
• Google Hacking Database (GHDB)
• http://www.hackersforcharity.org/ghdb/
• Example:
https://www.googleso/search?client=safari&rls=en&q=%22Password%3D%22+inur hweb.config-F-intext:web.config+ext:config&ie=UTF-88toe=UTF-88cgws_rd=cr&ei=SW9KWd2EH4nWU8yDuoAK
curl -I https://ituniversity.ro, I flag is important
search on Goodle:
site:pastebin.com yourwebsite.com" password
Filter & Query:
site.example.com inurl:ftp "password" fileType.xls
