Starting this thread in relation to RSnakes blog post {http://ha.ckers.org/blog/20061005/google-dorks-strike-again/}

XSS in ASP (querystrings)
http://www.google.com/codesearch?hl=en&lr=&q=%3C%25%3Drequest.querystring

SQL Injections in ASP (querystrings)
http://www.google.com/codesearch?hl=en&lr=&q=%3D%22%26request.querystring

XSS in ASP (cookies)
http://www.google.com/codesearch?hl=en&lr=&q=%3DRequest.Cookies&btnG=Search

Default password in connection strings ASP
http://www.google.com/codesearch?q=+lang:asp+uid%3D+pwd%3D&start=20&sa=N

Database locations in ASP
http://www.google.com/codesearch?q=+lang:asp+server.MapPath+.mdb&start=10&sa=N

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'



Edited 4 time(s). Last edit at 10/05/2006 08:49PM by digi7al64.

web developers can't do it much more worse:

http://www.google.com/search?hl=en&lr=&q=inurl%3A%22SQL+Where%22+inurl%3Aasp

(shameless stolen from webappsec mailing list)

http://www.google.com/search?hl=en&lr=&q=filetype%3Avb+password%3D << Filetype vb & password
http://www.google.com/search?q=filetype%3Acs+password%3D&hl=en&lr= << Filetype cs & password

Great way to "research" .net applications

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'

should we really start GoogleDorks here too?
A very good resource is already at johnny.ihackstuff.com

Do whatever feels right... If you guys want to start throwing up some relevant google dorks that's fine, I'm not worried about cataloging them since it's in flux given nature of a search engine anyway, but it is interesting for some things.

- RSnake
Gotta love it. http://ha.ckers.org

I can't take credit for this (saw it on a mailing list) but it's interesting in that it's using Google to take advantage of in a common implementation flaw in a Google designed file format which is now seeing wide use.

http://www.quietmove.com/blog/google-sitemap-directory-enumeration-0day/

"There are a LOT of automagic-generation Sitemap scripts out there which create Sitemap.xml files not by spidering a site, as they should… but by reading the contents of directories inside the web root from the local filesystem and creating the Sitemap.xml file from that."

I was able to use it to enumerate the contents of "protected" admin areas on a number of well known sites. Cool stuff.

Results 1 - 10 of about 1,200 for "admin" inurl:sitemap filetype:xml

Sitemap queries return a lot of files which, despite being in the sitemap file, are not indexed by Google who apparently makes no promise to index it's contents. (so what good is it other than for googledorking...?)

Hahah... good point. I've read about this before, but anyone who auto generates files without any logic has issues anyway, regardless if they are search engine accessable only or not.

- RSnake
Gotta love it. http://ha.ckers.org

@wwwweirdo

thanks for posting that link (im off to dl databases)

http://www.google.com/search?q=%22.mdb%22+inurl:sitemap+filetype:xml&hl=en&lr=&start=10&sa=N

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'