A Google Dork is a type of search string that employs advanced search queries to discover information that is not readily available on websites. It is also considered an illegal hacking technique known as “Google hacking,” which hackers often employ for activities such as cyberterrorism and cyber theft.
Is it possible for hackers to utilize Google to hack websites?
Many people perceive Google solely as a search engine employed to locate text, images, videos, and news. However, in the realm of information security, Google plays a much larger role. It can be utilized as a valuable hacking tool.
While Google cannot directly hack websites, its exceptional web crawling abilities can efficiently index virtually any type of data within websites, including sensitive information such as usernames, passwords, and other vulnerabilities of which you may not be aware.
By utilizing Google Dorking, you can discover vulnerabilities in web applications and servers using the native Google Search engine.
Critical information to be aware of.
Prior to beginning your usage of Google Dork, it is imperative to recognize that Google can identify you and track your activities. Therefore, it is crucial to solely employ this information for legal purposes. Merely because data is accessible on the internet, it should not be utilized to harm others. If you are involved in any unlawful activities online, you will be considered a cyber criminal and prosecuted accordingly. This article strongly advocates for utilizing the information with good intentions.
Unique search operators for Google.
Prior to delving into Google dorks, it’s important to have a fundamental grasp of a few specialized Google search operators and how they operate.
2. intitle:
Here Google will ask you to show pages that have the term in their html title.
2. inurl:
Queries for a specific term within the URL. For example: inurl:register.php
3. filetype:
Looked for a particular file format.. Example: filetype:pdf It will query all PDF files on the websites.
4. ext:
It operates in a similar manner to the filetype operator.. Example: ext:pdf finds pdf extension files.
5. intext:
This will explore the content of the page. It operates somewhat like a regular Google search.
6. site:
This restricts the search to a specific site exclusively. Example: site:abc@d.com It will restrict the search to solely exacmple@.com.
7. Cache:
This will display a cached version of any website. Example: cache: aa.com
8. *
This functions as a wildcard. For instance, searching “How to * sites” will exhibit all results such as “how to design sites,” “how to create sites,” “how to hack sites,” and so on.
Basic Dork Formula
“inurl:.”domain”/”dorks” “
Here,
“inurl” = input URL
“domain” = your desired domain ex. .gov
“dorks” = your dork of your choice
Google Dorking Example!
Going forward, let’s examine a few Google Dork examples and how they can be used effectively to discover private information on the Internet.
1# – Investigate LOG Files for Login Credentials
This is a technique for locating inadvertently exposed .LOG files on the Internet. Essentially, it’s a LOG file that provides hints about the possible system credentials or various user/admin accounts that exist within the system.
Searh Query to perform the acrtion:-
allintext:password filetype:log after:2019
When you type in this command into your Google search bar, you will discover a list of applications that have exposed log files.
Dork query employing two Google operators.
You may also use a combination of two Google operators, namely “all in text” and “filetype.”
allintext:username filetype:log
The above command with expose you all the results that includes username inside *.log files
Suggestion:-
Site owners must properly configure the file name robots.txt file in order to prevent Google Dorks from accessing critical data on their site via a Google search. Additionally, it’s crucial to keep plugins up to date.
2# Explore the configuration using ENV file
.env to define universal variables and configurations for both local and development environments.
DB_USERNAME filetype:env DB_PASSWORD filetype:enc=v Utilizing a specific command allows you to discover a compilation of sites that openly expose their .env file on the internet. Frequently, developers place their .env file within the primary public directory of their website, which can result in severe damage to their site if accessed by cyber criminals. Upon accessing any of the revealed .env files, unencrypted usernames, passwords, and IPs are immediately visible in the search results. Relocate .env files to a location that is not readily accessible to the public. 3# Explore Live Cameras It may seem unsettling, but have you ever pondered whether your personal live camera could be viewed by anyone on the Internet? By utilizing Google hacking techniques, you can retrieve live camera web pages that are not limited by IP. If you're creative enough to manipulate Google Dork, you can not only view but also take control of the complete admin panel remotely, and even reconfigure the cameras as desired. By inserting "top.htm" into the URL along with the present time and date, you can find a list of publicly exposed live cameras. inurl:top.htm inurl:currenttime An additional dork to discover cameras involves compiling a list of frequently used live-view pages hosted on routers. inurl:”lvappl.htm” 4# To Investigate Open FTP Servers. Failure to configure access permissions in FTP can lead to inadvertent publication of internal information. Moreover, if the FTP server is in "Write" mode, it can pose a significant risk as the server may be utilized as storage for computer viruses and unlawfully duplicated files. Utilizing the subsequent dork command, you can effortlessly explore publicly exposed FTP servers, which may occasionally uncover a plethora of data. intitle:"index of" inurl:ftp To locate a compilation of websites that utilize the HTTP protocol, you can easily enter the subsequent dork command. intitle:"index of" inurl:http after:2018 You can further narrow down your search by seeking out online forums that employ HTTP instead. This can be accomplished simply by altering the text in your search query. intitle:"forum" inurl:http after:2018 5# Investigate particular websites with distinct domains. Suppose you desire to investigate websites affiliated with a specific domain or organization. In that case, you can accomplish this by entering the subsequent code: “inurl:."domain"/”dorks” “ Example: “inurl:.gov/index.php?id=” You can employ the aforementioned example to investigate a comprehensive list of government websites. Furthermore, by substituting inurl: with different Google search operators, you can obtain intriguing results. 6# View Recent Cache:- This can display the latest cache of a specific webpage, which can be valuable in determining when the page was last crawled. cache:websitename.com In what manner can Google Dork benefit individuals interested in Cyber Security? Google indexes practically everything associated with the internet, which encompasses private data of poorly configured services. While this can be beneficial in certain circumstances, it can also be equally harmful. It is imperative that you refrain from logging in to any services, even if the password is exposed, as this may result in legal complications since you lack authorization. Nevertheless, if you have anything hosted online, you may employ some dork commands on your domain to ensure that you have not unintentionally exposed anything that could be exploited by hackers.