What is Google Hacking?
Google hacking is the term used when a hacker tries to find vulnerable targets or sensitive data by using the Google search engine. In Google hacking hackers use search engine commands or complex search queries to locate sensitive data and vulnerable devices on the Internet.
google_hackGoogle advanced operators:
Google allows the use of certain operators to help refine searches. The use of advanced operators is very simple as long as attention is given to the syntax. The basic format is: operator:search_term
find search term only on site specified by search_term
search documents of type search_term
display the cached version of page
find sites containing search_term as a link
find sites containing search_term in the title of a page
find sites containing search_term in the URL of the page
1. site: find web pages on a specific web site:-
This advanced operator instructs Google to restrict a search to a specific web site or domain. When using this operator, an addition search argument is required.
Example: site:harvard.edu fees
This query will return results from harvard.edu that include the fees tuition anywhere on the page.
2. filetype: search only within files of a specific type.:-
This operator instructs Google to search only within the text of a particular type of file. This operator requires an additional search argument.
Example: filetype:pdf communication
This query searches for the word ‘communication’ within standard pdf documents. This query is very helpful for you to finding presentation, seminar etc.. In place of pdf you can give any extension which you want like doc,txt,ppt etc…
3. link: search within links:-
The hyperlink is one of the cornerstones of the Internet. A hyperlink is a selectable connection from one web page to another. Most often, these links appear as underlined text but they can appear as images, video or any other type of multimedia content. This advanced operator instructs Google to search within hyperlinks for a search term. This operator requires no other search arguments.
This query query would display web pages that link to microsoft.com’s main page.
4. cache: display Google’s cached version of a page:-
This operator displays the version of a web page as it appeared when Google crawled the site. This operator requires no other search arguments.
These queries would display the cached version of apple web page.
5. intitle: search within the title of a document:-
This operator instructs Google to search for a term within the title of a document. Most web browsers display the title of a document on the top title bar of the browser window.
This query would only display pages that contained the word ‘hack’ in the title.
6. inurl: search within the URL of a page:-
This operator instructs Google to search only within the URL, or web address of a document. This operator requires no other search arguments.
This query would display pages with the word ‘download’ inside the web address. One returned result, ‘http://www.abc.in/images/download/’ contains the word ‘download’ as the name of a directory.
The site: search is invaluable in all directed Google searches. Combined with a host or domain name, the results are listed in page-ranked order. Type site:pacific.edu into the Google search bar.
After site:pacific.edu, type in login | logon and run the search. login | logon finds login pages associated with any particular website – the significance of this is that login pages are the “front door” and often reveal the nature of the operating system, software, and even offer clues for gaining access to the site.
intitle: The intitle prefix will cause Google to search for any terms within the title (the html tag) of the document. As with inurl, intitle can be used with any other search term to produce useful results. intitle:index.of.config – These directories can give information about a web servers configuration, such as ports, security permissions, etc. intitle:index.of.etc – The /etc/ directory often contains password files which are usually protected with an md5 hash.
intitle:index.of mp3 jackson – Brings up listings of files and directories that contain “mp3” and “jackson.”
intitle:index.of passwd passwd.bak – similar to above, only with password files
intitle:error/intitle:warning – Finds error and warning pages, often revealing server version numbers
phonebook: – Gives the home phone and often the address of any name you put in.
“robots.txt” “disallow:” filetype:txt – searches for the text file “robots,” which specifies to the Google crawler what pages on a particular website the webmaster does not want searchable;
using this search returns a list of all those locations.
intitle:”Live View / – AXIS 206W”
WebcamXP – “powered by webcamXP” “Pro|Broadcast“
Above are some searches for servers with network cameras, including traffic, weather, office, and pet-cams. Unsecured cameras allow the camera to be tilted, panned, zoomed, etc. Look for results that use an IP address, beware of malware sites.