background preloader

Google Hacking Database, GHDB, Google Dorks

Google Hacking Database, GHDB, Google Dorks
We call them 'googledorks': Inept or foolish people as revealed by Google. Whatever you call these fools, you've found the center of the Google Hacking Universe! Latest Google Hacking Entries Google Hacking Database Categories Footholds (31) Examples of queries that can help a hacker gain a foothold into a web server Files containing usernames (17) These files contain usernames, but no passwords... Sensitive Directories (74) Google's collection of web sites sharing sensitive directories. Vulnerable Files (61) HUNDREDS of vulnerable files that Google can find on websites... Vulnerable Servers (80) These searches reveal servers with specific vulnerabilities. Error Messages (77) Really retarded error messages that say WAY too much! Sensitive Online Shopping Info (10) Examples of queries that can reveal online shopping info like customer data, suppliers, orders, creditcard numbers, credit card info, etc Network or vulnerability data (63) Pages containing login portals (289) Various Online Devices (244)

http://www.exploit-db.com/google-dorks/

Related:  technology

Cloud Evolution: From Internal Efficiencies to Better Customer Experiences It's been fascinating to observe the evolution of cloud computing. Although I've only been focused on it for about three years, in those three years I've seen drastic changes in the way cloud is perceived -- and employed. Already we've moved from more narrow, opportunistic usages to broad platform-level thinking that benefits companies seeking to innovate their business models. In some cases it's entire industries that are impacted. In fact, a recent IBM study of business and IT leaders found that the number of organizations which will be using cloud for business model innovation will double within the next three years. In addition, even though cloud is often perceived as being an IT concern, respondents perceive cloud's value in its ability to help them with business capabilities such as increased collaboration (62%), new delivery channels/markets (56%), new/enhanced revenue streams (54%), competitive differentiation through specialization (51%), and so on.

How to use Google for Hacking. Google serves almost 80 percent of all search queries on the Internet, proving itself as the most popular search engine. However Google makes it possible to reach not only the publicly available information resources, but also gives access to some of the most confidential information that should never have been revealed. In this post I will show how to use Google for exploiting security vulnerabilities within websites. How to use Google for Hacking. Google serves almost 80 percent of all search queries on the Internet, proving itself as the most popular search engine. However Google makes it possible to reach not only the publicly available information resources, but also gives access to some of the most confidential information that should never have been revealed. In this post I will show how to use Google for exploiting security vulnerabilities within websites. The following are some of the hacks that can be accomplished using Google. 1.

Painfully Computer Pranks ~ Computer Hacking Computer pranks to freak out your friends and make them crying for mummy I've been posting many articles about computer pranks on this blog (Deadly Virus Prank, The Ultimate Virus, How to Create a Fake and Harmless Virus and Facebook Virus Prank). Today , I will show you 5 great computer pranks that will frustrate your victims very much. These pranks could be very painfully, so please use them at your own risk ;) Nmap Evade Firewall & Scripting Nmap is the most powerful scanner that is used to perform so many functions including port scanning, service detection, and even vulnerability detection. Nmap from beginner to advanced has covered many basic concepts and commands, and in this second part of this series of articles I will discuss some advanced techniques of Nmap. How to Evade a Firewall/IDS Firewalls and IDS (intrusion detection systems) normally play an important role to defend the remote target very well from a security point of view because these hardwares and softwares are capable of blocking the intrusion, but in the case of penetration testing you need to bypass these tools to get the right result otherwise you will be misled.

HakShop — USB Rubber Ducky Since 2010 the USB Rubber Ducky has been a favorite amongst hackers, penetration testers and IT professionals. With origins as a humble IT automation proof-of-concept using an embedded dev-board, it has grown into a full fledged commercial Keystroke Injection Attack Platform. The USB Rubber Ducky captured the imagination of hackers with its simple scripting language, formidable hardware, and covert design. Quack like a Keyboard! Nearly every computer including desktops, laptops, tablets and smartphones take input from Humans via Keyboards. How to Crack a Wi-Fi Network. 1.Back Track Today we’re going to run down, step-by-step, how to crack a Wi-Fi network with WEP security turned on. Dozens of tutorials on how to crack WEP are already all over the internet using this method. Seriously—Google it. This ain’t what you’d call “news.”

Browse like Bond: Use any computer without leaving a trace with Tails - Gadgetbox on msnbc.com If James Bond logs on to a computer, he doesn't want to leave a bunch of files, cookies, or his IP address out there for someone to find. It might seem extreme, but sometimes it's a good idea to take the same precautions yourself. In this post, we'll walk through how to use a USB stick or DVD to anonymize, encrypt and hide everything you do on a computer no matter where you are. When we say "browse without leaving a trace", we truly mean it. Using the Linux-based, live-boot operating system Tails (The Amnesiac Incognito Live System), you can use any computer anywhere without anyone knowing you were ever on it.

Know the Trade – Your IT Security Information Portal CISSP/CEH/CISA/Hacker and Penetration Testing Specialist Google Hacking allintitle:Brains, Corp. camera allintitle:"index of/admin" allintitle:"index of/root" allintitle:restricted filetype:doc site:gov allintitle:restricted filetype :mail allintitle:sensitive filetype:doc allinurl:/bash_history allinurl:winnt/system32/ (get cmd.exe) ext:ini eudora.ini ext:pwd inurl:(service|authors|administrators |users) "# -FrontPage-" filetype:bak inurl:"htaccess|passwd|shadow|htusers" filetype:conf slapd.conf filetype:ctt "msn" filetype:mdb inurl:"account|users|admin|administrators|passwd|password" filetype:mdb inurl:users.mdb filetype:QDF QDF filetype:pdf "Host Vulnerability Summary Report" "Assessment Report" filetype:sql ("passwd values ****" | "password values ****" | "pass values ****" ) filetype:xls inurl:"email.xls" filetype:user eggdrop user

101 Free Admin Tools We know administrators love tools that make life easier – especially when they’re free! So here are 101 of them! System and network analysis 1. NTFS Permissions Explorer PET - CyberWiki Thanks for visiting the CIS PET wiki. This is meant to be a list of free technologies aimed at empowering Internet users to gain better control over their data. It's very simple to add an entry---just click the "edit" tab, copy and paste the previous entry, and substitute the name, description, and address. The Best Hacking Tutorial Sites - Learn Legal Hacking written by: Daniel Robson•edited by: Aaron R.•updated: 2/13/2011 Whether it's to understand potential attack vectors or simply for the fun of it, learning the basics of hacking is something that a lot of people aspire to. Here's our list of the top tutorial based hacking sites. Introduction Films like Swordfish and Hackers have made hacking seem cool, a lifestyle choice almost. However most techies know that in reality it's often a difficult and time consuming process.

Related:  Computer hackComputer Stuff