常用的google关键字: 
foo1 foo2 (也就是关联,比如搜索xx公司 xx美女) 
operatorfoo 
filetype123 类型 
sitefoo.com 相对直接看网站更有意思,可以得到许多意外的信息 
intextfoo 
intitle fooltitle 标题哦 
allinurlfoo 搜索xx网站的所有相关连接。(踩点必备) 
linksfoo 不要说就知道是它的相关链接 
allintiltefoo.com

我们可以辅助- +来调整搜索的精确程度

直接搜索密码:(引号表示为精确搜索) 
当然我们可以再延伸到上面的结果里进行二次搜索 
index of htpasswd passwd 
filetypexls username password email 
ws_ftp.log 
config.php 
allinurladmin mdb 
service filetypepwd ....或者某个比如pcanywhere的密码后缀cif等

越来越有意思了,再来点更敏感信息 
robots.txt Disallow filetypetxt 
inurl_vti_cnf (FrontPage的关键索引啦,扫描器的CGI库一般都有地) 
allinurl msadcSamplesselectorshowcode.asp 
......passwd 
examplesjspsnpsnoop.jsp 
phpsysinfo 
intitleindex of admin 
intitledocumetation 
inurl 5800(vnc的端口)或者desktop port等多个关键字检索 
webmin port 10000 
inurladminlogin.asp 
intextPowered by GBook365 
intitlephp shell Enable stderr filetypephp 直接搜索到phpwebshell

foo.org filetypeinc

ipsec filetypeconf 
intilteerror occurred ODBC request Where (selectinsert) 说白了就是说,可以直接试着查查数据库检索,针对目前流行的sql注射,会发达哦 
intitlephp shell Enable stderr filetypephp 
Dumping data for table username password 
intitleError using Hypernews 
Server Software 
intitleHTTP_USER_AGENT=Googlebot 
HTTP_USER_ANGET=Googlebot THS ADMIN 
filetype.doc site.mil classified 直接搜索军方相关word

检查多个关键字: 
intitleconfig confixx login password

mydomain.com nessus report 
report generated by 
ipconfig 
winipconfig

google缓存利用(hoho,最有影响力的东西)推荐大家搜索时候多选搜索所有网站 
特别推荐:administrator users 等相关的东西,比如名字,生日等……最惨也可以拿来做字典嘛 
cachefoo.com

可以查阅类似结果

先找找网站的管理后台地址: 
sitexxxx.com intext管理 
sitexxxx.com inurllogin 
sitexxxx.com intitle管理 
sitea2.xxxx.com inurlfile 
sitea3.xxxx.com inurlload 
sitea2.xxxx.com intextftp 
sitea2.xxxx.com filetypeasp 
sitexxxx.com 得到N个二级域名 
sitexxxx.com 得到N个邮件地址,还有邮箱的主人的名字什么的 
sitexxxx.com intext电话 N个电话 
intitleindex of etc 
intitleIndex of .sh_history 
intitleIndex of .bash_history 
intitleindex of passwd 
intitleindex of people.lst 
intitleindex of pwd.db 
intitleindex of etcshadow 
intitleindex of spwd 
intitleindex of master.passwd 
intitleindex of htpasswd 
# -FrontPage- inurlservice.pwd

allinurlbbs data 
filetypemdb inurldatabase 
filetypeinc conn 
inurldata filetypemdb 
intitleindex of data 
3) http@www domainname 找一些ISP站点,可以查对方ip的虚拟主机

4) auth_user_file.txt 不实用了,太老了

5) The Master List 寻找邮件列表的

6) intitlewelcome.to.squeezebox 一种特殊的管理系统,默认开放端口90

7) passlist.txt (a better way) 字典

8) A syntax error has occurred filetypeihtml

9) extphp program_listing intitleMythWeb.Program.Listing

10) intitleindex.of abyss.conf

11)extnbe nbe

12)intitleSWW link Please wait.....

14) intitleFreifunk.Net - Status -sitecommando.de

15) intitleWorldClient intext (20032004) Alt-N Technologies.

17) intitleopen-xchange inurllogin.pl

20) intitlesite administration please log in site designed by emarketsouth

21) orA-00921 unexpected end of SQL command

22)intitleYALA Yet Another LDAP Administrator

23)welcome.to phpqladmin Please login -cvsweb

24)intitleSWW link Please wait.....

25)inurlport_255 -htm

27)intitleWorldClient intext (20032004) Alt-N Technologies.

这些是新的一些漏洞技巧,在0days公告公布

extphp program_listing intitleMythWeb.Program.Listing

inurlpreferences.ini [emule]

intitleIndex of CFIDE administrator

access denied for user using password

extphp intextPowered by phpNewMan Version 可以看到:pathtonewsbrowse.phpclang=............fileiwant

inurlbecommunitycommunityindex.phppageurl=

intitleASP FileMan Resend -siteiisworks.com

Enter ip inurlphp-ping.php

extconf inurlrsyncd.conf -cvs -man

intitle private, protected, secret, secure, winnt

intitleDocuShare inurldocusharedsweb -faq -gov -edu 
#mysql dump filetypesql

allow_call_time_pass_reference PATH_INFO

Certificate Practice Statement inurl(PDF DOC)

LeapFTP intitleindex.of. sites.ini modified 
master.passwd

mysql history files 
NickServ registration passwords 
passlist 
passlist.txt (a better way) 
passwd 
passwd etc (reliable) 
people.lst 
psyBNC config files 
pwd.db 
signin filetypeurl 
spwd.db passwd 
trillian.ini 
wwwboard WebAdmin inurlpasswd.txt wwwboardwebadmin

# -FrontPage- extpwd inurl(service authors administrators users) # -FrontPage-

inurlservice.pwd 
AutoCreate=TRUE password= 
http@www domainname 
index of ws_ftp.ini parent directory 
liveice configuration file extcfg -sitesourceforge.net 
powered by ducalendar -siteduware.com 
Powered by Duclassified -siteduware.com 
Powered by Duclassified -siteduware.com DUware All Rights reserved 
powered by duclassmate -siteduware.com 
Powered by Dudirectory -siteduware.com 
powered by dudownload -siteduware.com 
Powered By Elite Forum Version . 
Powered by Link Department 
sets mode +k 
Powered by DUpaypal -siteduware.com 
allinurl admin mdb 
auth_user_file.txt 
config.php 
eggdrop filetypeuser user 
etc (index.of) 
extini eudora.ini 
extini Version=... password 
exttxt inurlunattend.txt

filetypebak inurlhtaccesspasswdshadowhtusers

filetypecfg mrtg target

-sample -cvs -example

filetypecfm cfapplication name password

filetypeconf oekakibbs 
filetypeconf sc_serv.conf

filetypeconf slapd.conf

filetypeconfig config intextappSettings User ID

filetypedat password.dat

filetypedat wand.dat

filetypeinc dbconn

filetypeinc intextmysql_connect 
filetypeinc mysql_connect or mysql_pconnect

filetypeinf sysprep

filetypeini inurlserv-u.ini 
filetypeini inurlflashFXP.ini 
filetypeini ServUDaemon 
filetypeini wcx_ftp 
filetypeini ws_ftp pwd

filetypeldb admin

filetypelog See `ipsec copyright

filetypelog inurlpassword.log

filetypemdb inurlusers.mdb

filetypemdb wwforum

filetypenetrc password

filetypepass pass intextuserid

filetypepem intextprivate

filetypeproperties inurldb intextpassword

filetypepwd service 
filetypepwl pwl

filetypereg reg +intextdefaultusername +intextdefaultpassword 
filetypereg reg HKEY_CURRENT_USER SSHHOSTKEYS 
filetypesql (values MD values password values encrypt) 
filetypesql (passwd values password values pass values ) 
filetypesql +IDENTIFIED BY -cvs 
filetypesql password

filetypeurl +inurlftp +inurl;@

filetypexls username password email

htpasswd 
htpasswd htgroup 
htpasswd htpasswd.bak

intextenable secret $ 
intextpowered by Web Wiz Journal

intitleindex of intextconnect.inc 
intitleindex of intextglobals.inc 
intitleIndex of passwords modified

intitledupics inurl(add.asp default.asp view.asp voting.asp) -siteduware.com

intitleindex.of intextsecring.skrsecring.pgpsecring.bak

inurlGRC.DAT intextpassword

inurlslapd.conf intextcredentials -manpage -Manual Page -man -sample

inurlslapd.conf intextrootpw -manpage -Manual Page -man -sample

inurlwvdial.conf intextpassword

inurldbmain.mdb

inurlchap-secrets -cvs

inurlconfig.php dbuname dbpass 
inurlfilezilla.xml -cvs

inurllilo.conf filetypeconf password -tatercounter -bootpwd -man

inurlnuke filetypesql

inurlospfd.conf intextpassword -sample -test -tutorial -download 路由配置 
inurlpap-secrets -cvs

inurlperform filetypeini 
inurlsecring extskr extpgp extbak

inurlvtund.conf intextpass -cvs

inurlzebra.conf intextpassword -sample -test -tutorial -download

Generated by phpSystem 
generated by wwwstat

Host Vulnerability Summary Report ]

HTTP_FROM=googlebot googlebot.com Server_Software= Index of chatlogs 聊天室 
Installed Objects Scanner inurldefault.asp

Mecury Version Infastructure Group 
Microsoft (R) Windows (TM) Version DrWtsn Copyright (C) extlog

Most Submitted Forms and Scripts this section

Network Vulnerability Assessment Report

not for distribution confidential 
phone address e-mail intitlecurriculum vitae

phpMyAdmin running on inurlmain.php

produced by getstats 
Request Details Control Tree Server Variables 
robots.txt Disallow filetypetxt

Running in Child mode

sets mode +p 
sets mode +s 
Thank you for your order +receipt 
This is a Shareaza Node 
This report was generated by WebLog 
( filetypemail filetypeeml filetypembox filetypembx ) intextpasswordsubject

(inurlrobot.txt inurlrobots.txt ) intextdisallow filetypetxt

-sitephp.net -The PHP Group inurlsource inurlurl extpHp

FBR ADOBE PHOTOSHOP 
AIM buddy lists 
allinurlexamplesjspsnpsnoop.jsp 
allinurlservletSnoopServlet 
cgiirc.conf

data filetypemdb -sitegov -sitemil

exported email addresses

extasp inurlpathto.asp

extcgi inurleditcgi.cgi inurlfile=

extconf inurlrsyncd.conf -cvs -man 
extconf NoCatAuth -cvs

extdat bpk.dat 
extgho gho

extini intextenv.ini 
extldif ldif

extlog Software Microsoft Internet Information Services . 
--------------------------
extmdb inurl.mdb inurlfpdb shop.mdb

filetypebkf bkf 
filetypeblt buddylist 
filetypeblt blt +intextscreenname

filetypecfg auto_inst.cfg

filetypeconf inurlfirewall -intitlecvs 
filetypeconfig web.config -CVS

filetypectt ctt messenger

filetypefp fp 
filetypefp fp -sitegov -sitemil -cvs log

filetypeinf inurlcapolicy.inf 
filetypelic lic intextkey

filetypemyd myd -CVS 
filetypens ns 
filetypeora ora 
filetypeora tnsnames 
filetypepdb pdb backup (Pilot Pluckerdb)

filetypepot inurljohn.pot 
----------------------------------------
filetypepst inurloutlook.pst 
filetypepst pst -from -to -date 
filetypeqbb qbb 
filetyperdp rdp

filetypereg Terminal Server Client 
filetypevcs vcs 
filetypewab wab

filetypexls -sitegov inurlcontact 
filetypexls inurlemail.xls 
Financial spreadsheets finance.xls 
Financial spreadsheets finances.xls

Ganglia Cluster Reports

haccess.ctl (one way) 
haccess.ctl (VERY reliable) 
ICQ chat logs, please...

iletypelog cron.log 
intextSession Start filetypelog 
intextTobias Oetiker traffic analysis

intext(password passcode) intext(username userid user) filetypecsv 
intextgmail invite intexthttpgmail.google.comgmaila

intextSQLiteManager inurlmain.php

intitleApacheStatus (inurlserver-status inurlstatus.html inurlapache.html)

intitleAppServ Open Project -sitewww.appservnetwork.com 
intitleASP Stats Generator . ASP Stats Generator - weppos

intitleFTP root at 
intitleindex of +myd size

intitleIndex Of -inurlmaillog maillog size

intitleIndex Of cookies.txt size

intitleindex of mysql.conf or mysql_config 
intitleIndex of upload size parent directory

intitleindex.of .diz .nfo last modified 
intitleMultimon UPS status page 
intitlePHP Advanced Transfer (inurlindex.php inurlshowrecent.php ) 
intitlePhpMyExplorer inurlindex.php -cvs 
--------------------------------------------------------------------- 
intitlestatistics of advanced web statistics 
intitleSystem Statistics +System and Network Information Center 
intitleUsage Statistics for Generated by Webalizer 
intitlewbem compaq login Compaq Information Technologies Group

intitleWeb Server Statistics for 
intitleweb server status SSH Telnet 
intitlewelcome.to.squeezebox

intitleadmin intitlelogin 
intitleindex.of Apache server at 
intitleindex.of cleanup.log 
intitleindex.of dead.letter 
intitleindex.of inbox 
intitleindex.of inbox dbx

intitleintranet inurlintranet +intextphone 
inurlaxsax-admin.pl -script 
inurlcricketgrapher.cgi 
inurlbookmark.htm

inurlcacti +inurlgraph_view.php +Settings Tree View -cvs -RPM 
inurlnewsletteradmin 
inurlnewsletteradmin intitlenewsletter admin 
inurlputty.reg 
inurlsmb.conf intextworkgroup filetypeconf conf 
----------------------------------------------------------------------------------------------------------

Welcome to ntop!

adding new user inurladdnewuser -there are no domains 
(inurlcgi-bin.cobalt) (intextWelcome to the Cobalt RaQ)

filetypephp HAXPLORER Server Files Browser 
intitleWeb Data Administrator - Login

inurlConnectComputerprecheck.htm inurlRemotelogon.aspx 
PHP Shell (unprotected) 
PHPKonsole PHPShell filetypephp -echo 
Public PHP FileManagers

index of picasa.ini 
index of inurlrecycler 
Index of rar r nfo Modified 
intitleIndex.Of stats merchant cgi- etc 
Powered by Invision Power File Manager (inurllogin.php) (intitleBrowsing directory ) 
Web File Browser Use regular expression

filetypeini Desktop.ini intextmydocs.dll

intextd.aspxid inurld.aspxid 
intextPowered By TotalIndex intitleTotalIndex 
intitlealbum permissions Users who can modify photos EVERYBODY 
intitleDirectory Listing For intextTomcat -intitleTomcat 
intitleHFS +HttpFileServer 
intitleIndex of inurlmy shared folder size modified 
-------------------------------------------------------------------------------------------------------------------

File Upload Manager v. rename to

extasp powered by DUForum inurl(messagesdetailslogindefaultregister) -siteduware.com 
extasp inurlDUgallery intitle. -sitedugallery.com -siteduware.com 
extcgi inurlubb_test

ezBOO Administrator Panel -cvs

filetypecgi inurlcachemgr.cgi 
filetypecnf my.cnf -cvs -example 
filetypeinc inc intextsetcookie

filetypephp inurlviewfile -index.php -idfil 
filetypewsdl wsdl

intitleASP FileMan Resend -siteiisworks.com

intitleIndex of modified php.exe

intitlephpremoteview filetypephp Name, Size, Type, Modify

inurl WWWADMIN.PL intitlewwwadmin 
inurlnph-proxy.cgi Start browsing through this CGI-based proxy 
inurlplogregister.php 
inurlcgi.asxStoreID

inurlrobpoll.cgi filetypecgi

The Master List

More Info about MetaCart Free

Google 黑客搜索技巧的更多相关文章

  1. 如何使用GOOGLE高级搜索技巧

    如何使用GOOGLE高级搜索技巧 一,GOOGLE简介 Google(www.google.com)是一个搜索引擎,由两个斯坦福大学博士生Larry Page与Sergey Brin于1998年9月发 ...

  2. Google高级搜索技巧十则

    前言:多数人在使用Google搜索的过程是非常低效和无谓的,如果你只是输入几个关键词,然后按搜索按钮,你将是那些无法得到Google全部信息的用户,在这篇文章中,Google搜索专家迈克尔.米勒将向您 ...

  3. Google Hack搜索技巧

    想了解更多搜索技巧,点击下面网站了解http://exploit-db.com/google-dorks Google Hack的一些整理 这里是google关键字的用法,要设置它为中文,则是 htt ...

  4. GOOGLE高级搜索技巧

    前记:  我是完整的看完了.内容有点乱啊,自己没有时间整理,先放在自己的印象笔记里了....   二,GOOGLE特色 GOOGLE支持多达132种语言,包括简体中文和繁体中文: GOOGLE网站只提 ...

  5. 高效率使用google,国外搜索引擎,国内顺利使用Google的另类技巧,可用谷歌镜像, 可用google学术, 如何使用robots不让百度和google收录

    Google良好的搜索和易用性已经得到了广大网友的欢迎,但是除了我们经常使用的Google网站.图像和新闻搜索之外,它还有很多其他搜索功能和搜索技巧.如果我们也能充分利用,必将带来更大的便利.这里我介 ...

  6. Google和Baidu常用的搜索技巧--转

    原文链接:http://mp.weixin.qq.com/s?__biz=MjM5NTY0MTY1OQ==&mid=2654509772&idx=1&sn=754454e374 ...

  7. 技术|程序员必须要学会Google搜索技巧

    程序员必须要学会Google搜索技巧 摘要: 因为Google在我天朝被墙,学FQ请通过Bing进行搜索如何FQGoogle搜索技巧我曾经多次劝我的另一个朋友花10分钟学习一下Google通配符的使用 ...

  8. google搜索技巧汇总

    由于不能访问google,可访问ggso.in进行搜索. 简单整理记录一下常用的一些Google搜索技巧:或操作一般搜索时,如果输入多个词,默认是与的关系,如输入词1和词2,即搜索同时包含词1和词2的 ...

  9. 十大谷歌Google搜索技巧分享

    前言:多数人在使用Google搜索的过程是非常低效和无谓的,如果你只是输入几个关键词,然后按搜索按钮,你将是那些无法得到Google全部信息的用户,在这篇文章中,Google搜索专家迈克尔.米勒将向您 ...

随机推荐

  1. jdk环境变量

    exportJAVA_HOME=/opt/jdk1.8.0_92 exportJRE_HOME=${JAVA_HOME}/jre   exportCLASSPATH=.:${JAVA_HOME}/li ...

  2. 存储过程:当基站ID大于1000的时候,把ID通过存储过程插入表,然后处理

    不推荐这么弄,没办法,项目逼到这了,以后尽量避免这样的需求发生! CREATE OR REPLACE PROCEDURE insert_tempStation_proc(v_instr in clob ...

  3. react js 按条数 展开/折叠

    //2条const MAX_SHOW_NUM = 2; class HotDiscuss extends Component { static propTypes = { //验证 repliedCo ...

  4. Unity NGUI 资源下载

    https://www.assetstore.unity3d.com/cn/#!/content/2413 版本: 3.9.1 下载地址 密码:amtz

  5. tomcat server需要重启的时刻

    1.修改了web project的任何配置文件,都需要重启tomcat 2.修改了任何java class文件,都需要重启tomcat server 3.在项目中添加了任何的文件,包括配置文件.jav ...

  6. Mysql常用命令行大全

    第一招.mysql服务的启动和停止 net stop mysql net start mysql 第二招.登陆mysql 语法如下: mysql -u用户名 -p用户密码 键入命令mysql -uro ...

  7. 新知识:Java 利用itext填写pdf模板并导出(昨天奋战到深夜四点,知道今天两点终于弄懂)

    废话少说,不懂itext干啥用的直接去百度吧. ***************制作模板******************* 1.先用word做出界面 2.再转换成pdf格式 3.用Adobe Acr ...

  8. android项目的结构和布局

    一.res文件夹 1.res文件夹用于存放Android的资源.包括:动画.静态图片.字符串.菜单.布局.视频.文件等. 1.drawable-ldpi:低分辨率图形(120像素/英寸) 2.draw ...

  9. js轮播

    <!DOCTYPE html><html lang="en"><head>    <meta charset="UTF-8&qu ...

  10. Intellij IDEA 快捷键介绍

    ctrl-w   使所选表达式逐步增大直到选取整个文件  ctrl+shft+w   逐步减少选中 ctrl-n 可以通过键入类名查找一个类 ctrl-shift-n 可以查找文件 ctrl-e 得到 ...