We call them ‘googledorks’ (gOO gÃ´l’DÃ´rk, noun, slang) : An inept or foolish person as revealed by Google.
Google dorks are the center of the Google Hacking. Many hackers use google to find vulnerable webpages and later use these vulnerabilities for hacking.
1. CGI directories contain scripts which can often be exploited by attackers.
Click here for the Google search ==> “index of cgi-bin”
This way you will find many CGI directories some of them may be vulnerable.
2. Another famous Google Dork is the PhpMyAdmin Dork. phpMyAdmin is a widly spread webfrontend used to mantain sql databases. The default security mechanism is to leave it up to the admin of the website to put a .htaccess file in the directory of the application. Well gues what, obviously some admins are either too lazy or don’t know how to secure their directories.
Click here for the Google search ==> “Welcome to phpMyAdmin” ” Create new database”
This way you may find some vulnerable pages to gain access to someone’s PhpMyAdmin.
Honeypot or Honeypages are webpages designed to attract Google Dorkyz or Google Hackers. If you search for “index of /etc/passwd” on google. The first link you find is a very famous gray-world.net honeypot.
The biggest database of Google Dorks is here.
If you enjoyed this post, make sure you subscribe to my RSS feed!Related Posts: