Google hacking Dork|谷歌黑客之寻找包含密码的文件

Google hacking Dork|谷歌黑客之寻找包含密码的文件

Google hacking Dork|谷歌黑客之寻找包含密码的文件

通过如下命令,在Google进行搜索时,就可以找到暴露的互联网账号密码.

命令如下: [371个Google搜索密码命令]

intitle:index.of people.lst

intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak"

intitle:"Index of..etc" passwd

intitle:index.of master.passwd

intitle:"Index of" pwd.db

intitle:"Index of" ".htpasswd" htpasswd.bak

intitle:"Index of" spwd.db passwd -pam.conf

intitle:"Index of" ".htpasswd" "htgroup" -intitle:"dist" -apache -htpasswd.c

intitle:"Index of" .mysql_history

intitle:index.of config.php

intitle:index.of passwd passwd.bak

index.of passlist

index.of.etc

filetype:xls username password email

allinurl:auth_user_file.txt

inurl:config.php dbuname dbpass

intitle:index.of trillian.ini

inurl:passlist.txt

filetype:htpasswd htpasswd

intitle:Index.of etc shadow

intitle:index.of administrators.pwd

inurl:secring ext:skr | ext:pgp | ext:bak

allinurl: admin mdb

filetype:cfm "cfapplication name" password

eggdrop filetype:user user

intitle:"index of" intext:connect.inc

intitle:"index of" intext:globals.inc

inurl:perform filetype:ini

filetype:properties inurl:db intext:password

filetype:inc intext:mysql_connect

filetype:reg reg +intext:"defaultusername" +intext:"defaultpassword"

filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS

inurl:vtund.conf intext:pass -cvs

filetype:url +inurl:"ftp://" +inurl:"@"

filetype:log inurl:"password.log"

filetype:dat "password.dat"

filetype:conf slapd.conf

filetype:pem intext:private

inurl:"wvdial.conf" intext:"password"

inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample

inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample

filetype:netrc password

filetype:inc dbconn

filetype:ini ws_ftp pwd

signin filetype:url

filetype:dat wand.dat

filetype:ldb admin

filetype:cfg mrtg "target[*]" -sample -cvs -example

filetype:sql password

filetype:sql +"IDENTIFIED BY" -cvs

filetype:pwd service

inurl:ospfd.conf intext:password -sample -test -tutorial -download

inurl:zebra.conf intext:password -sample -test -tutorial -download

filetype:mdb inurl:users.mdb

inurl:ccbill filetype:log

filetype:conf inurl:psybnc.conf "USER.PASS="

"Your password is * Remember this for later use"

intitle:"Index of" passwords modified

inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man

"sets mode: +k"

ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-"

filetype:pwl pwl

inurl:/wwwboard

"AutoCreate=TRUE password=*"

filetype:pass pass intext:userid

filetype:ini ServUDaemon

inurl:nuke filetype:sql

inurl:/db/main.mdb

"http://*:*@www" bob:bob

filetype:bak inurl:"htaccess|passwd|shadow|htusers"

filetype:conf oekakibbs

LeapFTP intitle:"index.of./" sites.ini modified

filetype:ini wcx_ftp

filetype:config config intext:appSettings "User ID"

"index of/" "ws_ftp.ini" "parent directory"

filetype:mdb wwforum

"Powered By Elite Forum Version *.*"

filetype:ini inurl:flashFXP.ini

inurl:pap-secrets -cvs

filetype:ini inurl:"serv-u.ini"

inurl:chap-secrets -cvs

"liveice configuration file" ext:cfg -site:sourceforge.net

intext:"enable secret 5 $"

"powered by dudownload" -site:duware.com

intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:duware.com

"Powered by Duclassified" -site:duware.com "DUware All Rights reserved"

"powered by duclassmate" -site:duware.com

"Powered by Dudirectory" -site:duware.com

"Powered by Duclassified" -site:duware.com

"powered by ducalendar" -site:duware.com

filetype:log "See `ipsec --copyright"

inurl:"GRC.DAT" intext:"password"

inurl:filezilla.xml -cvs

intext:"powered by Web Wiz Journal"

ext:ini eudora.ini

ext:ini Version=4.0.0.4 password

"Powered by DUpaypal" -site:duware.com

filetype:inc mysql_connect OR mysql_pconnect

intitle:"Index of" sc_serv.conf sc_serv content

"Powered by Link Department"

filetype:sql ("passwd values" | "password values" | "pass values" )

filetype:sql ("values * MD5" | "values * password" | "values * encrypt")

ext:txt inurl:unattend.txt

filetype:inf sysprep

wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin

!Host=*.* intext:enc_UserPassword=* ext:pcf

inurl:server.cfg rcon password

intext:"powered by EZGuestbook"

filetype:dat inurl:pass.dat

intitle:"phpinfo()" +"mysql.default_password" +"Zend Scripting Language Engine"

inurl:perform.ini filetype:ini

inurl:cgi-bin inurl:calendar.cfg

[WFClient] Password= filetype:ica

ext:inc "pwd=" "UID="

filetype:dat inurl:Sites.dat

intext:"enable password 7"

intitle:rapidshare intext:login

"your password is" filetype:log

"admin account info" filetype:log

inurl:/yabb/Members/Admin.dat

server-dbs "intitle:index of"

inurl:"Sites.dat"+"PASS="

ext:yml database inurl:config

"parent directory" +proftpdpasswd

inurl:ventrilo_srv.ini adminpassword

filetype:bak createobject sa

ext:asa | ext:bak intext:uid intext:pwd -"uid..pwd" database | server | dsn

inurl:"editor/list.asp" | inurl:"database_editor.asp" | inurl:"login.asa" "are set"

ext:passwd -intext:the -sample -example

enable password | secret "current configuration" -intext:the

filetype:reg reg +intext:”WINVNC3”

filetype:sql "insert into" (pass|passwd|password)

inurl:"calendarscript/users.txt"

ext:php intext:"$dbms""$dbhost""$dbuser""$dbpasswd""$table_prefix""phpbb_installed"

"login: *" "password= *" filetype:xls

inurl:-cfg intext:"enable password"

inurl:config/databases.yml -trac -trunk -"Google Code" -source -repository

inurl:web/frontend_dev.php -trunk

filetype:ini "FtpInBackground" (pass|passwd|password|pwd)

filetype:ini "[FFFTP]" (pass|passwd|password|pwd)

filetype:ini "pdo_mysql" (pass|passwd|password|pwd)

filetype:ini "precurio" (pass|passwd|password|pwd)

filetype:ini "SavedPasswords" (pass|passwd|password|pwd)

filetype:sql "MySQL dump" (pass|password|passwd|pwd)

filetype:sql "PostgreSQL database dump" (pass|password|passwd|pwd)

filetype:sql "phpmyAdmin SQL Dump" (pass|password|passwd|pwd)

inurl:ftp "password" filetype:xls

filetype:php~ (pass|passwd|password|dbpass|db_pass|pwd)

inurl:"/Application Data/Filezilla/*" OR inurl:"/AppData/Filezilla/*" filetype:xml

"My RoboForm Data" "index of"

filetype:sql inurl:wp-content/backup-*

(username=* | username:* |) | ( ((password=* | password:*) | (passwd=* | passwd:*) | (credentials=* | credentials:*)) | ((hash=* | hash:*) | (md5:* | md5=*)) | (inurl:auth | inurl:passwd | inurl:pass) ) filetype:log

filetype:cfg "radius" (pass|passwd|password)

intext:charset_test= email= default_persistent=

inurl:"passes" OR inurl:"passwords" OR inurl:"credentials" -search -download -techsupt -git -games -gz -bypass -exe filetype:txt @yahoo.com OR @gmail OR @hotmail OR @rediff

"parent directory" proftpdpasswd intitle:"index of" -google

filetype:xls "username | password"

ext:xml ("mode_passive"|"mode_default")

inurl:"/dbman/default.pass"

allinurl:"User_info/auth_user_file.txt"

filetype:inc OR filetype:bak OR filetype:old mysql_connect OR mysql_pconnect

ext:xml ("proto='prpl-'" | "prpl-yahoo" | "prpl-silc" | "prpl-icq")

filetype:config inurl:web.config inurl:ftp

ext:sql intext:@hotmail.com intext :password

filetype:sql insite:pass && user

"BEGIN RSA PRIVATE KEY" filetype:key -github

ext:sql intext:@gmail.com intext:password

site:github.com inurl:sftp-config.json

filetype:password jmxremote

site:github.com inurl:sftp-config.json intext:/wp-content/

inurl:/backup intitle:index of backup intext:*sql

inurl:typo3conf/localconf.php

xamppdirpasswd.txt filetype:txt

inurl:ws_ftp.ini "[WS_FTP]" filetype:ini

"automatic teller" "operator manual" "password" filetype:pdf

inurl:yahoo_site_admin/credentials/

inurl:"security/xamppdirpasswd.txt"

ext:sql intext:"alter user" intext:"identified by"

ext:csv intext:"password"

intext:DB_PASSWORD ext:env

site:pastebin.com intext:Username

intext:@pwcache "parent directory"

filetype:log intext:password | pass | pw

inurl:etc -intext:etc ext:passwd

ext:xls intext:NAME intext:TEL intext:EMAIL intext:PASSWORD

ext:sql intext:username intext:password

intext:smtp | pop3 intext:login | logon intext:password | passcode filetype:xls | filetype:xlsx

inurl:"ftp" intext:"user" | "username" | "userID" | "user ID" | "logon" | "login" intext:"password" | "passcode" filetype:xls | filetype:xlsx

intext:http | https intext:login | logon intext:password | passcode filetype:xls | filetype:xlsx

intext:"GET http://" ext:txt intext:"password" inurl:log

inurl:wp-content/uploads filetype:xls | filetype:xlsx password

"Password=" inurl:web.config -intext:web.config ext:config

inurl:wp-config -intext:wp-config "'DB_PASSWORD'"

intext:"END_FILE" ext:log

site:pastebin.com intext:@gmail.com | @yahoo.com | @hotmail.com daterange:2457388-2457491

filetype:pcf "cisco" "GroupPwd"

intext:"eav" filetype:txt

site:github.com ext:csv userid | username | user -example password

site:static.ow.ly/docs/ intext:@gmail.com | Password

inurl:"/wp-content/wpclone-temp/wpclone_backup/"

inurl:proftpdpasswd

inurl:github.com intitle:config intext:"/msg nickserv identify"

intitle:"index of/" CCCam.cfg

site:cloudshark.org/captures# password

"your default password is" filetype:pdf

"Index of" "logins.json" "key3.db"

inurl:"-wp13.txt"

"INSERT INTO phpbb_users" ext:sql

"END_FILE" inurl:"/password.log"

"# -FrontPage-" ext:pwd

filetype:bak inurl:php "mysql_connect"

"-----BEGIN RSA PRIVATE KEY-----" ext:key

ext:fetchmailrc

"[main]" "enc_GroupPwd=" ext:txt

inurl:"/zebra.conf" ext:conf -git

"Stealer by W33DY" ext:txt

"FileZilla" inurl:"recentservers.xml" -git

" End Stealer " ext:txt

ext:reg " [HKEY_CURRENT_USER\Software\ORL\WinVNC3]" -git

"iSpy Keylogger" "Passwords Log" ext:txt

"mysqli_connect" ext:inc

"resources.db.params.password" ext:ini -git

site:pastebin.com intext:"*@*.com:*"

intext:DB_PASSWORD || intext:"MySQL hostname" ext:txt

inurl:"sitemanager.xml" ext:xml -git

inurl:_vti_pvt/administrators.pwd

intitle:"Index Of" intext:.ftpconfig

intext:connectionString & inurl:web & ext:config

inurl:"gradle.properties" intext:"proxyPassword"

site:trello.com password

"enable secret" ext:cfg -git -cisco.com

ext:inf SetupMgrTag AdminPassword

"password" + ext:conf "Modem Type = USB Modem"

ext:config + " password=" + "

intitle:"Index Of" intext:sftp-config.json

"MAIL_PASSWORD" filetype:env

"database_password" filetype:yml "config/parameters.yml"

"database_password" filetype:yml "config/parameters.yml

intext:password inurl:"/log/production" ext:log

CakePHP inurl:database.php intext:db_password

intitle:"index of /" inanchor:.kdbx

site:pastebin.com "rcon_password"

intitle:"Index Of" intext:".vscode"

inurl:/host.txt + filetype:txt + "password"

inurl:"config.xml" "password" ext:xml -stackoverflow.com -github.com

inurl:"databases.yml" ext:yml password -github

ext:ini Robust.ini filetype:ini "password"

filetype:config "" "password" "web.config" -stackoverflow -youtube.com -github

intitle:"index.of" "places.sqlite" "Mail" thunderbird -mozilla.org -scan

intitle:"index.of" "places.sqlite" "key3.db" -mozilla.org

Codeigniter filetype:sql intext:password | pwd intext:username | uname intext: Insert into users values

inurl:"servlet/ViewFormServlet?" "pwd"

intitle:"Index of" intext:"Login Data"

inurl:"/App.Config" + ext:config + "password=" -github -git

intext:"PuTTY log" ext:log "password" -supportforums -github

site:trello.com intext:mysql AND intext:password -site:developers.trello.com -site:help.trello.com

filetype:doc inurl:"gov" intext:"default password is"

site:showmyhomework.co.uk/school/homeworks/ "password"

intitle:"index.of" inurl:"cvs" login | passwd | password | access | pass -github -pub

filetype:env intext:REDIS_PASSWORD

"password.xlsx" ext:xlsx

inurl:wp-config-backup.txt

intext:define('AUTH_KEY', ' wp-config.php filetype:txt

inurl:/dbcp.properties + filetype:properties -github.com

inurl:configuration.php and intext:"var $password="

intext:"please change your" password |code | login file:pdf | doc | txt | docx -github

intext:"login" department | admin | manager | company | host filetype:xls | xlsx -community -github

intext:"rabbit_password" | "service_password" filetype:conf

"whoops! there was an error." "db_password"

inurl:wp-config.bak

"battlefield" "email" site:pastebin.com

inurl:"wp-license.php?file=../..//wp-config"

inurl:"trello.com" and intext:"username" and intext:"password"

intitle:"index of" intext:login.csv

inurl:"build.xml" intext:"tomcat.manager.password"

/_wpeprivate/config.json

inurl:"standalone.xml" intext:"password>"

filetype:reg reg HKEY_CURRENT_USER intext:password

filetype:txt $9$ JunOS

intext:jdbc:oracle filetype:java

filetype:xml config.xml passwordHash Jenkins

username | password inurl:resources/application.properties -github.com -gitlab

intitle:settings.py intext:EMAIL_HOST_PASSWORD -git -stackoverflow

inurl:wp-config.php intext:DB_PASSWORD -stackoverflow -wpbeginner

intitle:settings.py intext:EMAIL_USE_TLS -git -stackoverflow

inurl:login.txt filetype:txt

s3 site:amazonaws.com filetype:xls password

intext:"wordpress" filetype:xls login & password

inurl:users.json + "username"

intext:"aspx" filetype:txt login & password

"pass" "usuario" filetype:sql

intitle:"index of" "htpasswd.txt"

intitle:"index of" "ftp.passwd"

intext:"@gmail.com" intext:"password" inurl:/files/ ext:txt

"contrasena" filetype:sql -github.com

intitle:"Index of" password.txt

intitle:"index of" "db.conf"

intitle:"index of" share.passwd OR cloud.passwd OR ftp.passwd -public

intitle:index.of "creds.txt"

intext:"username=" AND "password=" ext:log

intext:"WPENGINE_SESSION_DB_USERNAME" || "WPENGINE_SESSION_DB_PASSWORD"

intitle:"index of" "passwords.yml"

intitle:"index of" "credentials.yml"

intitle:"Index of" dbconnect.inc

intext:authentication set encrypted-password ext:cfg

password console-password ext:cfg -git

"enable password" ext:cfg -git -cisco.com

"create account" admin ext:cfg

"configure account user encrypted" ext:cfg

"d-i passwd/root-password-crypted password" ext:cfg

intitle:"index of" "db.connection.js"

intitle:"index of" "database.ini" OR "database.ini.old"

intitle:"index of" application.ini

"admin password irreversible-cipher" ext:txt OR ext:log OR ext:cfg

"super password level 3 cipher" ext:txt OR ext:log

intitle:"index of" "db.ini"

intitle:"index of " "*.passwords.txt"

"MasterUserPassword" ext:cfg OR ext:log OR ext:txt -git

"/etc/shadow root:$" ext:cfg OR ext:log OR ext:txt OR ext:sql -git

inurl:*helpdesk* intext:"your default password is"

intitle:"index of" "passwords.xlsx"

intitle:"index of" "config.neon" OR "config.local.neon"

intext:"Index of /password"

"config.php.bak" intitle:"index of"

"index of" ".env"

filetype:env "DB_PASSWORD"

"MYSQL_ROOT_PASSWORD:" ext:env OR ext:yml -git

intitle:"index of" "/master.passwd"

inurl:logs intext:GET https:// ext:txt intext:password intext:username

allintext:password filetype:log

"Index of" "/yahoo_site_admin/credentials"

intext:"db_database" ext:env intext:"db_password"

allintext:"redis_password" ext:env

"EMAIL_HOST_PASSWORD" ext:yml | ext:env | ext:txt | ext:log

"/** MySQL database password */" ext:txt | ext:cfg | ext:env | ext:ini

"POSTGRES_PASSWORD=" ext:txt | ext:cfg | ext:env | ext:ini | ext:yml | ext:sql -git -gitlab

ext:xls intext:@gmail.com intext:password

intitle:"database.php" inurl:"database.php" intext:"db_password" -git -gitlab

ext:txt intext:@yahoo.com intext:password

"'username' =>" + "'password' =>" ext:log

"index of" "password.ini"

filetype:log intext:password after:2015 intext:@gmail.com | @yahoo.com | @hotmail.com

"admin_password" ext:txt | ext:log | ext:cfg

rootpw --iscrypted ext:cfg

"anaconda-ks.cfg" | "ks.cfg" ext:cfg -git -gitlab

"server.cfg" ext:cfg intext:"rcon_password" -git -gitlab

ext:cfg "g_password" | "sv_privatepassword" | "rcon_password" -git -gitlab

"db.username" + "db.password" ext:properties

site:pastebin.com intext:admin.password

ext:log password END_FILE

"spring.datasource.password=" + "spring.datasource.username=" ext:properties -git -gitlab

jdbc:mysql://localhost:3306/ + username + password ext:yml | ext:javascript -git -gitlab

jdbc:postgresql://localhost: + username + password ext:yml | ext:java -git -gitlab

jdbc:oracle://localhost: + username + password ext:yml | ext:java -git -gitlab

intitle:"index of" "config.exs" | "dev.exs" | "test.exs" | "prod.secret.exs"

"define('DB_USER'," + "define('DB_PASSWORD'," ext:txt

intitle:"index of" "anaconda-ks.cfg" | "anaconda-ks-new.cfg"

"define('SECURE_AUTH_KEY'" + "define('LOGGED_IN_KEY'" + "define('NONCE_KEY'" ext:txt | ext:cfg | ext:env | ext:ini

"keystorePass=" ext:xml | ext:txt -git -gitlab

intext:construct('mysql:host

"mailer_password:" + "mailer_host:" + "mailer_user:" + "secret:" ext:yml

intitle:"index of" "idx_config"

"password 7" ext:txt | ext:log | ext:cfg

"insert into users" "VALUES" ext:sql | ext:txt | ext:log | ext:env

"cpanel username" "cpanel password" ext:txt

intitle:"index of" "application-users.properties" | "mgmt-users.properties" | "*standalone.xml"

"public $user =" | "public $password = " | "public $secret =" | "public $db =" ext:txt | ext:log -git

site:*.blob.core.windows.net ext:xls | ext:xlsx (login | password | username)

"# -FrontPage-" ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-" inurl:service.pwd

inurl:/wp-content/uploads/ ext:txt "username" AND "password" | "pwd" | "pw"

allintext:"*[email protected]" OR "password" OR "username" filetype:xlsx

示例截图

①演示命令1

intitle:index.of people.lst
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件

②演示命令2

filetype:sql password
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件

③演示命令3

inurl:users.json + "username"
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件

④演示命令④

intitle:"index of" "ftp.passwd"
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件
Google hacking Dork|谷歌黑客之寻找包含密码的文件

Google hack仅可作为研究使用,测试自己的数据是否泄露,切勿用于违法犯罪.

转载请注明出处及链接

2 comments

Leave a Reply

您的电子邮箱地址不会被公开。 必填项已用*标注