It is basically a search string that uses advanced search query to find information that are not easily available on the websites. It is also regarded as illegal google hacking activity which hackers often uses for purposes such as cyber terrorism and cyber theft.
Google Dorking can also be called Google Hacking techniques mostly used by hackers to exploit web apps that are vulnerable and extract information.
And to do this they make use of Google advanced search operators and SQL Dorks to locate the results with the strings.
SQL Injection: This a method that is employed attackers in order to take non-authentication input vulnerabilities and inject SQL commands within the web application which runs at the database backend.
Special google search operators
Before starting with google dorks, you need to have basic understanding of few special google search operators and also how it functions.
1. intitle:
This will ask google to show pages that have the term in their html title.
2. inurl:
Searches for specified term in the URL. For example: inurl:register.php
3. filetype:
Searched for certain file type. Example: filetype:pdf will search for all the pdf files in the websites.
4. ext:
It works similar to filetype. Example: ext:pdf finds pdf extension files.
5. intext:
This will search content of the page. This works somewhat like plain google search
6. site:
This limits the search to a specific site only. Example: site:abc@d.com will limit search to only abc@d.com.
7. Cache:
This will show you cached version of any website. Example: cache: aa.com
8. *
This works like a wildcard. Example: How to * sites, will show you all the results like “how to…” design/create/hack, etc… “sites”
Comments
Post a Comment