Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
GoogleDorks
Posted by: digi7al64
Date: October 05, 2006 08:20PM

Starting this thread in relation to RSnakes blog post {http://ha.ckers.org/blog/20061005/google-dorks-strike-again/}

XSS in ASP (querystrings)
http://www.google.com/codesearch?hl=en&lr=&q=%3C%25%3Drequest.querystring

SQL Injections in ASP (querystrings)
http://www.google.com/codesearch?hl=en&lr=&q=%3D%22%26request.querystring

XSS in ASP (cookies)
http://www.google.com/codesearch?hl=en&lr=&q=%3DRequest.Cookies&btnG=Search

Default password in connection strings ASP
http://www.google.com/codesearch?q=+lang:asp+uid%3D+pwd%3D&start=20&sa=N

Database locations in ASP
http://www.google.com/codesearch?q=+lang:asp+server.MapPath+.mdb&start=10&sa=N

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'



Edited 4 time(s). Last edit at 10/05/2006 08:49PM by digi7al64.

Options: ReplyQuote
Re: GoogleDorks
Posted by: kirke
Date: October 06, 2006 01:47AM

web developers can't do it much more worse:

http://www.google.com/search?hl=en&lr=&q=inurl%3A%22SQL+Where%22+inurl%3Aasp

(shameless stolen from webappsec mailing list)

Options: ReplyQuote
Re: GoogleDorks
Posted by: digi7al64
Date: October 06, 2006 02:07AM

http://www.google.com/search?hl=en&lr=&q=filetype%3Avb+password%3D << Filetype vb & password
http://www.google.com/search?q=filetype%3Acs+password%3D&hl=en&lr= << Filetype cs & password

Great way to "research" .net applications

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'

Options: ReplyQuote
Re: GoogleDorks
Posted by: kirke
Date: October 06, 2006 03:01AM

should we really start GoogleDorks here too?
A very good resource is already at johnny.ihackstuff.com

Options: ReplyQuote
Re: GoogleDorks
Posted by: rsnake
Date: October 07, 2006 02:49PM

Do whatever feels right... If you guys want to start throwing up some relevant google dorks that's fine, I'm not worried about cataloging them since it's in flux given nature of a search engine anyway, but it is interesting for some things.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: GoogleDorks
Posted by: wwweirdo
Date: October 18, 2006 09:22AM

I can't take credit for this (saw it on a mailing list) but it's interesting in that it's using Google to take advantage of in a common implementation flaw in a Google designed file format which is now seeing wide use.

http://www.quietmove.com/blog/google-sitemap-directory-enumeration-0day/

"There are a LOT of automagic-generation Sitemap scripts out there which create Sitemap.xml files not by spidering a site, as they should… but by reading the contents of directories inside the web root from the local filesystem and creating the Sitemap.xml file from that."

I was able to use it to enumerate the contents of "protected" admin areas on a number of well known sites. Cool stuff.

Results 1 - 10 of about 1,200 for "admin" inurl:sitemap filetype:xml

Sitemap queries return a lot of files which, despite being in the sitemap file, are not indexed by Google who apparently makes no promise to index it's contents. (so what good is it other than for googledorking...?)

Options: ReplyQuote
Re: GoogleDorks
Posted by: rsnake
Date: October 18, 2006 10:28AM

Hahah... good point. I've read about this before, but anyone who auto generates files without any logic has issues anyway, regardless if they are search engine accessable only or not.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: GoogleDorks
Posted by: digi7al64
Date: October 18, 2006 07:09PM

@wwwweirdo

thanks for posting that link (im off to dl databases)

http://www.google.com/search?q=%22.mdb%22+inurl:sitemap+filetype:xml&hl=en&lr=&start=10&sa=N

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'

Options: ReplyQuote


Sorry, only registered users may post in this forum.