Google Dorking list 2020
Google hacking, also named Google dorking, is a hacking technique that uses Google Search and other applications to find security holes in the configurations that websites use.
A well curated list of google dorks:
XSS GOOGLE DORKS
allinurl:/scripts/cart32.exe
allinurl:/CuteNews/show_archives.php
allinurl:/phpinfo.php
WEBCAM GOOGLE DORKS
inurl:/view.index.shtml
inurl:/view.shtml
intitle:”Live View / — AXIS” | inurl:view/view.shtml^
inurl:ViewerFrame?Mode=
inurl:ViewerFrame?Mode=Refresh
PHP GOOGLE DORKS
intitle:index.of config.php
intitle:”Index of” phpinfo.php
inurl:download.php?=filename
intitle:index.of upload.php
inurl:upload.php
WORDPRESS GOOGLE DORKS
inurl:Editor/assetmanager/assetmanager.asp
inurl:index.of thumb.php
inurl:thumb.php
inurl:wp-content/plugins/
inurl:wp-content/themes/
PASSWORD FILE GOOGLE DORKS
“Login: *” “password =*” filetype: xls
allinurl: auth_user_file.txt
filetype: xls inurl: “password.xls”
intitle: login password
intitle: “Index of” master.passwd
index of /backup
intitle:index.of passwd.bak
intitle:index.of pwd.db
intitle:”index of” pwd.db
intitle:”index of .. etc” passwd
index.of passlist.txt
inurl:passlist.txt
index.of.secret
index.of.private
”# PhpMyAdmin MySQL-Dump” filetype: txt
inurl:ipsec.secrets-history-bugs
inurl:ipsec.conf-intitle:manpage
filetype:ldb admin
inurl:search/admin.php
inurl:password.log filetype:log
intitle: “Index Of”-inurl: maillog
MISC. DORKS
inurl:rte/my_documents/my_files
inurl:ezfilemanager/ezfilemanager.php
”software name” 94FBR
FIND FREE SWAG
site:*.com intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.net intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.co intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.org intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.biz intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.tv intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.co.uk intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.org.uk intitle:”Thank You For Your Order” intext:Click Here to Download
site:*.eu intitle:”Thank You For Your Order” intext:Click Here to Download
intitle:Thank you for your purchase! intext:PLR OR MRR OR Package OR Bonus
intitle:Thank you for your order! intext:PLR OR MRR OR Package OR Bonus
intitle:Thank you for your order! intext:PLR OR MRR
intitle:Thank you for your Purchase! intext:PLR OR MRR
inurl:/thankyou*.html intitle:Thank you for your order!
intext:Click Here To Download
inurl:thanks intext:”Thank You For Your Order!” “Click Here” filetype:html
intitle:Thank You For Your Order! intext:Private Label
intitle:Thank You For Your Purchased! intext:Private Label
intext:”Thank You For Your Order” intext:PLR
intitle:”Thank You For Your Order!” intext:download
intitle:”Thank You For Your Order” intext:Click Here To Download Now
intitle:Thank you for your purchase! intext:Click Here to Download
intitle:Thank you for your Purchase! intext:PLR OR MRR OR Package OR Bonus
intitle:Thank you for your order! intext:PLR OR MRR
intitle:Thank You For Your Purchase! intext:Click Here to Download
inurl:index.of .mp3
inurl:index.of .mov
inurl:index.of .iso
?intitle:index.of? mp3
?intitle:index.of? mov
?intitle:index.of? iso
inurl:”insert filetype”:iso+OR+exe+OR+zip+OR+rar+OR+gzip+OR+tar
intext:”parent directory” intext:”[EXE]“
intext:”parent directory” index of:”[EXE]“
intext:”parent directory” index of:”[RAR]“
intext:”parent directory” intext:”[VID]“
intext:”parent directory” index of:”[VID]“
intext:”parent directory” intext:”[MP3]“
intext:”parent directory” index of:”[MP3]“
intext:”parent directory” index of:”[Gamez]“
FTP PASSWORD GOOGLE DORKS
intitle : index.of ws_ftp.ini
filetype : ini ws_ftp pwd
“index of/” “ws_ftp.ini” “parent directory”
+htpasswd +WS_FTP.LOG filetype:log
“allinurl : “Vulnerablesite.com” WS_FTP.LOG filetype:log”
