03/07/2007
GoSecure Inc.
03/07/2007
Agenda
Google Introduction & Features Google Search Technique Google Basic Operators Google Advanced Operators Google Hacking Digging for vulnerability gold Identifying operating systems Vulnerability scanning Proxying Protect your information from Google
2 03/07/2007
GoSecure Inc.
Google Hacking
One of the most powerful databases in the world Consolidate a lot of info Usage:
Student Business AlQaeda
One stop shop for attack, maps, addresses, photos, technical information
GoSecure Inc.
3 03/07/2007
GoSecure Inc.
4 03/07/2007
Google Hacking
GoSecure Inc.
5 03/07/2007
GoSecure Inc.
6 03/07/2007
Google Hacking
Google Operators:
Operators are used to refine the results and to maximize the search value. They are your tools as well as hackers weapons
Basic Operators:
+, -, ~ , ., *, , |, OR
Advanced Operators:
allintext:, allintitle:, allinurl:, bphonebook:, cache:, define:, filetype:, info:, intext:, intitle:, inurl:, link:, phonebook:, related:, rphonebook:, site:, numrange:, daterange
7 03/07/2007
GoSecure Inc.
Google Hacking
Basic Operators
(+) force inclusion of something common Google ignores common words (where, how, digit, single letters) by default:
Example: StarStar Wars Episode +I
Robert masse without has the 309,000 results, but robert masse only has 927 results. Reduce the 99% irrelevant results
GoSecure Inc. 8 03/07/2007
Google Hacking
Basic Operators
Return the results about food as well as recipe, nutrition and cooking information ( . ) a single-character wildcard:
Example: m.trix
GoSecure Inc.
9 03/07/2007
Google Hacking
Site: Domain_name Find Web pages only on the specified domain. If we search a specific site, usually we get the Web structure of the domain Examples:
site:ca site:gosecure.ca site:www.gosecure.ca
GoSecure Inc.
10 03/07/2007
4. Google Hacking
GoSecure Inc.
11 03/07/2007
Google Hacking
Note: We actually can search asp, php and cgi, pl files as long as it is text-compatible.
Example: Budget filetype: xls
GoSecure Inc. 12 03/07/2007
Google Hacking
Advanced Operators
A budget file we found .
GoSecure Inc.
13 03/07/2007
GoSecure Inc.
14 03/07/2007
Google Hacking
GoSecure Inc.
15 03/07/2007
GoSecure Inc.
16 03/07/2007
Google Hacking
GoSecure Inc.
17 03/07/2007
GoSecure Inc.
18 03/07/2007
Google Hacking
GoSecure Inc.
19 03/07/2007
GoSecure Inc.
20 03/07/2007
Google Hacking
GoSecure Inc.
21 03/07/2007
GoSecure Inc.
22 03/07/2007
Google Hacking
Advanced Operators
<number1>..<number2> Conduct a number range search by specifying two numbers, separated by two periods, with no spaces. Be sure to specify a unit of measure or some other indicator of what the number range represents Examples:
Computer $500..1000 DVD player $250..350
GoSecure Inc.
23 03/07/2007
GoSecure Inc.
24 03/07/2007
Google Hacking
GoSecure Inc.
GoSecure Inc.
26 03/07/2007
Google Hacking
GoSecure Inc.
27 03/07/2007
GoSecure Inc.
28 03/07/2007
GoSecure Inc.
29 03/07/2007
GoSecure Inc.
30 03/07/2007
GoSecure Inc.
31 03/07/2007
Google Hacking
GoSecure Inc.
32 03/07/2007
GoSecure Inc.
33 03/07/2007
GoSecure Inc.
34 03/07/2007
Google Hacking
GoSecure Inc.
35 03/07/2007
Google Hacking
GoSecure Inc.
36 03/07/2007
Google Hacking
Salary
Salary filetype: xls site: edu
GoSecure Inc.
37 03/07/2007
GoSecure Inc.
38 03/07/2007
Google Hacking
GoSecure Inc.
39 03/07/2007
GoSecure Inc.
40 03/07/2007
Google Hacking
GoSecure Inc.
41 03/07/2007
GoSecure Inc.
42 03/07/2007
Google Hacking
Financial Information
Filetype: xls checking account credit card intext: Application -intext: Form (only 39 results)
GoSecure Inc.
43 03/07/2007
GoSecure Inc.
44 03/07/2007
Google Hacking
Financial Information
Intitle: Index of finances.xls (9)
GoSecure Inc.
45 03/07/2007
GoSecure Inc.
46 03/07/2007
Google Hacking
Personal Mailbox
Intitle: Index.of inurl: Inbox (456) (mit mailbox)
GoSecure Inc.
47 03/07/2007
GoSecure Inc.
48 03/07/2007
Google Hacking
Personal Mailbox
After several clicks , got the private email messages
GoSecure Inc.
49 03/07/2007
GoSecure Inc.
50 03/07/2007
Google Hacking
Personal Mailbox
Intitle: Index.of inurl: Inbox (inurl: User OR inurl: Mail) (220)
GoSecure Inc.
51 03/07/2007
GoSecure Inc.
52 03/07/2007
Google Hacking
Confidential Files
GoSecure Inc.
53 03/07/2007
GoSecure Inc.
54 03/07/2007
Google Hacking
Confidential Files
not for distribution confidential filetype: pdf (marketing info) (456)
GoSecure Inc.
55 03/07/2007
GoSecure Inc.
56 03/07/2007
Google Hacking
OS Detection Use the keywords of the default installation page of a Web server to search. Use the title to search Use the footer in a directory index page
GoSecure Inc.
57 03/07/2007
Google Hacking
OS Detection-Windows
Microsoft-IIS/5.0 server at
GoSecure Inc.
58 03/07/2007
GoSecure Inc.
59 03/07/2007
Google Hacking
OS Detection - Windows
GoSecure Inc.
60 03/07/2007
GoSecure Inc.
61 03/07/2007
Google Hacking
GoSecure Inc.
62 03/07/2007
GoSecure Inc.
63 03/07/2007
Google Hacking
GoSecure Inc.
64 03/07/2007
GoSecure Inc.
65 03/07/2007
Google Hacking
Search Passwords
Search the well known password filenames in URL Search the database connection files or configuration files to find a password and username Search specific username file for a specific product
GoSecure Inc.
66 03/07/2007
Search Passwords
Inurl: etc inurl: passwd
GoSecure Inc.
67 03/07/2007
GoSecure Inc.
68 03/07/2007
GoSecure Inc.
69 03/07/2007
Google Hacking
Search Passwords
Intitle: Index of..etc passwd
GoSecure Inc.
70 03/07/2007
GoSecure Inc.
71 03/07/2007
Google Hacking
Search Passwords
"# -FrontPage-" inurl: service.pwd (then crack it)
GoSecure Inc.
72 03/07/2007
GoSecure Inc.
73 03/07/2007
Google Hacking
Search Passwords
Inurl: admin.pwd filetype: pwd
GoSecure Inc.
74 03/07/2007
GoSecure Inc.
75 03/07/2007
Google Hacking
Search Passwords
Filetype: inc dbconn
GoSecure Inc.
76 03/07/2007
GoSecure Inc.
77 03/07/2007
Google Hacking
Search Passwords
Filetype: inc intext: mysql_connect
GoSecure Inc.
78 03/07/2007
GoSecure Inc.
79 03/07/2007
Google Hacking
Search Passwords
Filetype: ini +ws_ftp +pwd (get the encrypted passwords)
GoSecure Inc.
80 03/07/2007
GoSecure Inc.
81 03/07/2007
Google Hacking
Search Passwords
Filetype: log inurl: password.log
GoSecure Inc.
82 03/07/2007
GoSecure Inc.
83 03/07/2007
Google Hacking
Search Username
+intext: "webalizer" +intext: Total Usernames +intext: Usage Statistics for
GoSecure Inc.
84 03/07/2007
GoSecure Inc.
85 03/07/2007
Google Hacking
License Key
Filetype: lic lic intext: key (33) (license key)
GoSecure Inc.
86 03/07/2007
GoSecure Inc.
87 03/07/2007
Google Hacking
Cookies Syntax
Filetype: inc inc intext: setcookie -cvs -examples sourceforge -site: php.net (120) (cookie schema)
GoSecure Inc.
88 03/07/2007
GoSecure Inc.
89 03/07/2007
Google Hacking
GoSecure Inc.
90 03/07/2007
Google Hacking
GoSecure Inc.
91 03/07/2007
GoSecure Inc.
92 03/07/2007
Google Hacking
GoSecure Inc.
93 03/07/2007
GoSecure Inc.
94 03/07/2007
Google Hacking
GoSecure Inc.
95 03/07/2007
GoSecure Inc.
96 03/07/2007
Google Hacking
GoSecure Inc.
97 03/07/2007
GoSecure Inc.
98 03/07/2007
Google Hacking
GoSecure Inc.
99 03/07/2007
GoSecure Inc.
100 03/07/2007
Google Hacking
Database Manipulation
Different database applications leave different signatures on the database files
GoSecure Inc.
101 03/07/2007
Google Hacking
Database Manipulation
Welcome to phpMyAdmin AND Create new database -intext: No Priviledge (find a page that might have privilege to update mysql)
GoSecure Inc.
102 03/07/2007
GoSecure Inc.
103 03/07/2007
Google Hacking
Database Manipulation
Welcome to phpMyAdmin AND Create new database (after several hits, we got this)
GoSecure Inc.
104 03/07/2007
GoSecure Inc.
105 03/07/2007
Google Hacking
Database Manipulation
Select a database to view intitle: filemaker pro (94) Filemaker
GoSecure Inc.
106 03/07/2007
GoSecure Inc.
107 03/07/2007
Google Hacking
Database Manipulation
After several clicks and you can query the table
GoSecure Inc.
108 03/07/2007
GoSecure Inc.
109 03/07/2007
Google Hacking
Database Manipulation
# Dumping data for table (username|user|users| password) -site: mysql.com cvs (289) (backup data of mysqldump)
GoSecure Inc.
110 03/07/2007
GoSecure Inc.
111 03/07/2007
Google Hacking
Database Manipulation
# Dumping data for table (username|user|users| password) site: mysql.com -cvs
GoSecure Inc.
112 03/07/2007
GoSecure Inc.
113 03/07/2007
Google Hacking
Database Manipulation
# Dumping data for table (username|user|users| password) -site: mysql.com cvs
GoSecure Inc.
114 03/07/2007
GoSecure Inc.
115 03/07/2007
Google Hacking
GoSecure Inc.
116 03/07/2007
Google Hacking
GoSecure Inc.
117 03/07/2007
GoSecure Inc.
118 03/07/2007
Google Hacking
GoSecure Inc.
119 03/07/2007
GoSecure Inc.
120 03/07/2007
Google Hacking
GoSecure Inc.
121 03/07/2007
GoSecure Inc.
122 03/07/2007
Google Hacking
GoSecure Inc.
123 03/07/2007
GoSecure Inc.
124 03/07/2007
Google Hacking
GoSecure Inc.
125 03/07/2007
GoSecure Inc.
126 03/07/2007
Google Hacking
GoSecure Inc.
127 03/07/2007
GoSecure Inc.
128 03/07/2007
Google Hacking
GoSecure Inc.
129 03/07/2007
Google Hacking
GoSecure Inc.
130 03/07/2007
GoSecure Inc.
131 03/07/2007
Google Hacking
GoSecure Inc.
132 03/07/2007
GoSecure Inc.
133 03/07/2007
Google Hacking
Google search
Inurl: smartguestbook.asp
GoSecure Inc.
134 03/07/2007
GoSecure Inc.
135 03/07/2007
Google Hacking
GoSecure Inc.
136 03/07/2007
GoSecure Inc.
137 03/07/2007
Google Hacking
GoSecure Inc.
138 03/07/2007
GoSecure Inc.
139 03/07/2007
Google Hacking
Transparent Proxy
Normal surfing on www.myip.nu
GoSecure Inc.
140 03/07/2007
GoSecure Inc.
141 03/07/2007
Google Hacking
Transparent Proxy
When we use Google translation tool to surf www.myip.nu
GoSecure Inc.
142 03/07/2007
GoSecure Inc.
143 03/07/2007
Google Hacking
GoSecure Inc.
144 03/07/2007
Google Hacking
GoSecure Inc.
145 03/07/2007
GoSecure Inc.
146 03/07/2007
Google Hacking
GoSecure Inc.
147 03/07/2007
GoSecure Inc.
148 03/07/2007
Google Hacking
Google Materials
Googledorks The famous Google Hack Website, it has many different examples of unbelievable things: http:// johnny.ihackstuff.com.
GoSecure Inc.
149 03/07/2007
GoSecure Inc.
150 03/07/2007
Google Hacking
GoSecure Inc.
151 03/07/2007
Google Hacking
Google Materials
Freshgoo Search Google for the page published on today, yesterday, within the last seven days or last 30 days: http:// www.freshgoo.com/index.php
GoSecure Inc.
152 03/07/2007
GoSecure Inc.
153 03/07/2007
Google Hacking
Disable directory browsing Google hack your Website Consider removing your site from Google's index: http://www.google.com/remove.html. Use a robots.txt file to against Web crawlers: http://www.robotstxt.org.
GoSecure Inc.
154 03/07/2007
Contact Information: Robert Masse rmasse@gosecure.ca www.GoSecure.ca 407 McGill, suite 900 Montral, Qubec, Canada H2Y 2G2 514-287-7427
GoSecure Inc.
156 03/07/2007