PRIMARY CATEGORY → OSINT
| REFERENCES | |
|---|
| Google Dorking for Pentesters | See here |
Google Dorks
Search Operators
| Operator | Description | Example |
|---|
site:<DOMAIN> | Limit results to a specific website or domain | site:domain.tld |
inurl:<STRING> | Find pages with a specific string in URL | inurl:login |
filetype:<FILE_EXT> | Search for files of a particular type | filetype:php |
intitle:<STRING> | Find pages with a specific string in Title | intitle:"My Login Panel" |
intext:<STRING>
inbody:<STRING> | Search for a string within the body text of the pages | intext:"Password reset"
inbody:"Password reset" |
link:<DOMAIN> | Find pages that link to a specific webpage | link:domain.tld |
related:<DOMAIN> | Find websites related to a specific page | related:domain.tld |
info:<DOMAIN> | Provide a summary of information about a webpage | info:domain.tld |
define:<STRING> | Provide definition of a word or phrase | define:"Laravel Framework" |
allinurl:<STRING> | Find pages containing all specified words in the URL | allinurl:"admin panel" |
allintext:<STRING> | Find pages containing all specified words in the body text | allintext:"admin password reset" |
allintitle:<STRING> | Find pages containing all specified words in the title | allintitle:"Confidential Report 2023" |
Use Cases
GHD ExploitDB • GHD Pentest Tool
Finding Login Pages
site:domain.tld inurl:login
site:domain.tld (inurl:login OR inurl:admin)
Identifying Exposed Files
site:domain.tld filetype:pdf
site:domain.tld (filetype:docx OR filetype:xls)
Uncovering Configuration Files
site:domain.tld inurl:config.php
site:domain.tdl (ext:conf OR ext:cnf)
Locating Database Backups
site:domain.tld inurl:backup
site:domain.tld filetype:sql