All Entries Tagged With: "ghdb"
“http://*:*@www” domainname or “http://*:*@www” bob:bob
Here they are linked for instant gratification, and using a domain no-one cares about:
These are queries to get inline passwords from search engines (not just Google), you have to type in the query followed with the domain name without the .com or .net.
Normally you would type “http://*:*@www” domainname or “http://*:*@www” bob:bob into Google, but I’ve linked the query above for instant gratification – remember this is just one of many ways to use google to search. I didn’t form these queries I merely searched the web for ‘answers’, and used queries from googles advanced search operators page. You can add to, modify, substitute at will – it’s a free country – but be careful!
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
intitle:”Index of” “.htpasswd” “htgroup” -intitle:”dist” -apache -htpasswd.c
Here’s another method of finding password information, more so from apache centric servers.
intitle:”Index of” “.htpasswd” “htgroup” -intitle:”dist” -apache -htpasswd.c
Normally you would type “intitle:”Index of” “.htpasswd” “htgroup” -intitle:”dist” -apache -htpasswd.c” into Google, but I’ve linked the query above for instant gratification, but remember this is just one of many ways to use google to search. I didn’t form these queries I merely searched the web for ‘answers’, and used queries from googles advanced search operators page.
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
allinurl: admin mdb
Not all of these pages are administrator’s access databases containing usernames, passwords and other sensitive information, but many are, and there’s other useful information too.
Normally you would type allinurl: admin mdb into Google, but I’ve linked the query above for instant gratification, but remember this is just one of many ways to use google to search. I didn’t form these queries I merely searched the web for ‘answers’, and used queries from googles advanced search operators page.
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
filetype:config config intext:appSettings “User ID”
These files generally contain configuration information for a .Net web application, information such as connection strings to databases file directories and more. On a properly setup IIS these files are normally not served to the public, normally being the operative word.
filetype:config config intext:appSettings “User ID”
Normally you would type filetype:config config intext:appSettings “User ID” into Google, but I’ve linked the query above for instant gratification, but remember this is just one of many ways to use google to search. I didn’t form these queries I merely searched the web for ‘answers’, and used queries from googles advanced search operators page.
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
This search reveals SSH host keys from the windows registry. The files contain information about where the user connects, including hostnames and port numbers, and shows sensitive information such as the SSH host key in use by that client. Interesting to note, yet again, that this search string has been around since at least 2004 and it’s still finding issues. It just goes to show how much most don’t know about the threats of the internet.
filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
I’ve linked the query above for instant gratification, but remember this is just one of many ways to use google to search. I didn’t form these queries I merely searched the web for ‘answers’, and used queries from googles advanced search operators page.
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
intitle:”Index of” pwd.db
This one speaks for itself. As has been said on the various hacking places around the web it’s all well and good putting in security but, if you don’t protect your security (think about it) then what is the point, right?
By now you should be seeing how these search queries are formed. You don’t have to hunt the web for these – you can go to googles ‘advanced google search operators‘ page and start learning how to create your own.
As always. these posts are educational and should not be used for pwning or any such unethical ’stuff’.
intitle:index.of config.php
It seems that the password stuff is very popular. I would hazard a guess that people are searching using the strings I’ve posted here and in turn find these posts. But then maybe not. So – here’s another one!
Remember, you have to type the string into google, but I’ve linked it here for posterity. If you need to ask how to read a PHP file through a browser then you are way too green to be here.
This is just a small, small fraction of how to subvert information. Think of the consequences – no really – think of the consequences!
Index of /etc/passwd … no, really …
The title pretty much says it all. There’s so many ways to search, here’s a couple. Please, be serious, don’t be a pill and use this for bad stuff. This information is freely available on the web if you know where to look!
Clicking on this link:
- is the equivalent of typing this into google: intitle:”Index of” “people.lst”.
I’m dumbfounded that this actually works. So – why not go for gold – how about clicking on this link
intitle:index.of passwd passwd.bak
- which is the equivalent of typing this into google: intitle:index.of passwd passwd.bak – I’m not kidding – try it! You go to all that trouble to secure your passwords (we hope) but miss the basics of securing your environment. This is an extreme example of doing it wrong – are you sure you ‘got it right’?
Google hacking database – finding htpasswd files
The google hacking database strikes again – it’s a resource indeed, but you can fall foul of the people that use it. I was learning the advanced search operators about the same time as I found the GHDB – now I’m astounded at how easy ‘this’ is. Click the link below and see what you get.
intitle:”Index of” “.htpasswd” htpasswd.bak (you can always just type the phrase into the google search box of course)
Yep – as you can see there are people out there that leave their htpasswd files in the clear. This is a major concern don’t you think? Even if they are hashed passwords most all of the password crackers freely available out there will crack ‘em rather quickly. So, this begs the question – are your passwords safe? This is just one of the search strings that will get at just one of the many password methodologies out there. It scares the ‘you know what’ outta me!
Frontpage hacks
Calling all Microsoft Frontpage users – if you don’t configure your install properly you can leave you admin username and password in the clear (with some tweaking). Click on the query below and see who has made that mistake.
There is a google hacking database out there, where I got this query from. It has a lot of useful (and dangerous) information in it. I’m not going to make it easy to find since I don’t want all the script kiddies playing but it’s quite the eye opener.
So, all you executives out there that don’t believe information security – did you know that one mistake will bring your whole world down? Yes! One mistake! That could be a developer that leaves a hole in their code; a disgruntled employee; an employee trying things they don’t know – and that’s just on the inside. Think of all the people outside your firewall. Take it seriously – it’s not joke!
