addthis

Sonntag, 15. Januar 2012

Google - Hacking 112 Seiten

Liste-Google-Hacking V.2.1

systembetreuung-scherer

: Google Suchbegriffe für Google Hacking

: pietro scherer Email: pietro.scherer@t-online.de
: ------------------------------------------------------------
intitle:"DocuShare"    inurl:"docushare/dsweb/" -faq -gov -edu
"#mysql dump" filetype:sql "allow_call_time_pass_reference"    "PATH_INFO" "Certificate Practice Statement" filetype:PDF | DOC "Generated    by phpSystem"
"generated by wwwstat"
"Host Vulnerability Summary    Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Index    of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp
"Mecury    Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version    * DrWtsn32 Copyright (C)" ext:log
"Most Submitted Forms and Scripts"    "this section" "Network Vulnerability Assessment Report"
"not for    distribution" confidential
"phone * * *" "address *" "e-mail"    intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"produced    by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt"    "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +p"
"sets    mode: +s"
"Thank you for your order" +receipt
"This is a Shareaza    Node""This report was generated by WebLog"
( filetype:mail |    filetype:eml | filetype:mbox | filetype:mbx )
intextassword|subject
(inurl:"robot.txt"    | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080"    +":3128" +":80" filetype:txt
+"HSTSNR" -"netop.com"
-sitehp.net    -"The PHP Group" inurl:source inurl:url extHp
94FBR "ADOBE PHOTOSHOP" AIM    buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf
data    filetype:mdb -site:gov -site:mil exported email addresses
ext:asp    inurlathto.asp
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf    inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat    bpk.dat ext:gho gho
ext:ini intext:env.ini ext:ldif ldif
ext:log    "Software: Microsoft Internet Information Services *.*" ext:mdb    inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil extqi pqi    -database ext:reg "username=*" putty
ext:txt "Final encryption    key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp    DBQ=" * Server.MapPath("*.mdb")
filetype:bkf bkf filetype:blt    "buddylist" filetype:blt blt +intext:screenname

Seite 1

Liste-Google-Hacking V.2.1 filetype:cfg    auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf    inurl:firewall -intitle:cvs filetype:config web.config -CVS
filetype:ctt    Contact filetype:ctt ctt messenger
filetype:eml eml    +intext:"Subject" +intext:"From" +intext:"To" filetype:fp3 fp3
filetype:fp5    fp5 -site:gov -site:mil -"cvs log" filetype:fp7 fp7
filetype:inf    inurl:capolicy.inf filetype:lic lic intext:key filetype:log    access.log -CVS filetype:mbx mbx intext:Subject filetype:myd myd    -CVS filetype:ns1 ns1
filetypera orafiletypedb pdb backup (Pilot |    Pluckerdb) filetypehp inurl:index inurlhpicalendar    -site:sourceforge.net filetypeot inurl:john.pot
filetypest    inurl:"outlook.pst" filetypest pst -from -to -date filetype:qbb        qbb
filetype:rdp rdp
filetype:reg "Terminal Server Client" filetype:vcs    vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls    inurl:"email.xls" Financial spreadsheets: finance.xls Financial    spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl    (one way) haccess.ctl (VERY reliable) ICQ chat logs, please... iletype:log    cron.log
intext:"Session Start * * * *:*:* *" filetype:log intext:"Tobias    Oetiker" "traffic analysis"
intextpassword | passcode)    intextusername | userid | user) filetype:csv intext:gmail invite    intext:http://gmail.google.com/gmail/a intext:SQLiteManager        inurl:main.php
intitle:"Apache::Status" (inurl:server-status |    inurl:status.html |
inurl:apache.html)
nurl:status.html |    inurl:apache.html)
intitle:"AppServ Open Project" -site:www.appservnetwork.com
intitle:"ASP    Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intitle:"Big    Sister" +"OK Attention Trouble"
intitle:"edna:streaming mp3 server"    -forums intitle:"FTP root at"
intitle:"index of" +myd size

intitle:"Index    Of" -inurl:maillog maillog size intitle:"Index Of" cookies.txt size intitle:"index    of" mysql.conf OR mysql_config
intitle:"Index of" upload size parent    directory intitle:"index.of *" admin news.asp configview.asp intitle:"index.of"    .diz .nfo last modified intitle:"Multimon UPS status page"
intitle:"PHP    Advanced Transfer" (inurl:index.php | inurl:showrecent.php )
intitle:"PhpMyExplorer"    inurl:"index.php" -cvs intitle:"statistics of" "advanced web    statistics"
intitle:"System Statistics" +"System and Network    Information Center" intitle:"Usage Statistics for" "Generated by    Webalizer" intitle:"wbem" compaq login
intitle:"Web Server    Statistics for ****" intitle:"web server status" SSH Telnet intitle:"welcome.to.squeezebox" intitle:admin    intitle:login intitle:index.of "Apache" "server at"

Seite 2

Liste-Google-Hacking V.2.1 intitle:index.of    cleanup.log
intitle:index.of dead.letter intitle:index.of inbox intitle:index.of    inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet    inurl:intranet +intext:"phone" inurl:"/axs/ax-admin.pl" -script inurl:"/cricket/grapher.cgi"
inurl:"bookmark.htm"
inurl:"cacti"    +inurl:"graph_view.php" +"Settings Tree View" -cvs -RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/"    intitle:"newsletter admin" inurl:"putty.reg"
inurl:"smb.conf"    intext:"workgroup" filetype:conf conf inurl:*db filetype:mdb
inurl:/_layouts/settings inurl:admin    filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe    "Please distribute TestCGI" inurl:changepassword.asp
inurl:ds.py
inurl:email    filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward    filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf    -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to    phpMyAdmin

inurl:netscape.hst inurl:netscape.hst inurl:netscape.ini inurldbc.ini    ext:ini -cvs inurlerl/printenv inurlhp.ini filetype:ini
inurlreferences.ini    "[emule]" inurlrofiles filetype:mdb
inurl:report "EVEREST Home    Edition " inurl:server-info "Apache Server Information" inurl:server-status    "apache" inurl:snitz_forums_2000.mdbinurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php    "page generated" ipsec.conf
ipsec.secrets ipsec.secrets
Lotus    Domino address books
mail filetype:csv -site:gov intext:name
Microsoft    Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml    - Trillian data files OWA Public Folders (direct view) Peoples    MSN contact lists
php-addressbook "This is the addressbook for *"    -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private    key files (.csr) private key files (.key) Quicken data files robots.txt
site:edu    admin grades
SQL data dumps
Squid cache server reports

Seite 3

Unreal    IRCd Welcome to ntop! intitlehpinfo "PHP Version"

Liste-Google-Hacking V.2.1

intitle:"DocuShare"    inurl:"docushare/dsweb/" -faq "#mysql dump" filetype:sql "allow_call_time_pass_reference"    "PATH_INFO" "Certificate Practice Statement" filetype:PDF | DOC "Generated    by phpSystem"
"This summary was generated by wwwstat" "Host    Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com    "Server_Software=" "Index of" / "chat/logs"

"Installed    Objects Scanner" inurl:default.asp
"Mecury Version" "Infastructure    Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 C "Most    Submitted Forms and Scripts" "this section" "Network Vulnerability    Assessment Report"
+"HSTSNR" -"netop.com"
"not for distribution"    confidential
"phone * * *" "address *" "e-mail" intitle:"curriculum    vitae" "phpMyAdmin" "running on" inurl:"main.php"
"These    statistics were produced by getstats" "Request Details" "Control    Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running    in Child mode" "sets mode: +p"

"Thank you for your order"    +receipt
"This is a Shareaza Node"
"This report was generated by    WebLog"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx    )
intextassword|subject
(inurl:"robot.txt" | inurl:"robots.txt" )    intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt buddylist.blt allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet intitle:index.of    cgiirc.config
data filetype:mdb -site:gov -site:mil e-mail    address filetype:csv csv ext:asp inurlathto.asp
ext:cgi    inurl:editcgi.cgi inurl:file=
ext:conf inurl:rsyncd.conf -cvs    -manext:conf NoCatAuth -cvs ext:dat bpk.dat
ext:gho gho
ext:ini    intext:env.ini ext:ldif ldif
ext:log "Software: Microsoft    Internet Information ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf    nsf -gov -mil extqi pqi -database
ext:reg "username=*" putty ext:txt    "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx    vmx filetype:bkf bkf
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:blt    "buddylist"

Seite 4

Liste-Google-Hacking V.2.1

inurl:passwd    filetype:txt inurl:admin filetype:db inurl:iisadmin inurl:"auth_user_file.txt" inurl:"wwwroot/*."
top secret site:mil confidential site:mil
_vti_inf.html service.pwd users.pwd authors.pwd administrators.pwd shtml.dll
shtml.exe fpcount.exe default.asp showcode.asp sendmail.cfm getFile.cfm imagemap.exe test.bat msadcs.dll htimage.exe counter.exe browser.inc hello.bat default.asp\ dvwssr.dll cart32.exe add.exe index.jsp SessionServlet shtml.dll index.cfm page.cfm shtml.exe web_store.cgi shop.cgi upload.asp default.asp pbserver.dll phf
test-cgi finger Count.cgi

jj php.cgi php
nph-test-cgi handler webdist.cgi webgais websendmail faxsurvey htmlscript perl.exe wwwboard.pl www-sql
view-source campas aglimpse glimpse man.sh


Seite 5

AT-admin.cgi
AT-generate.cgi filemail.pl maillist.pl info2www files.pl bnbform.cgi survey.cgi classifieds.cgi wrap
cgiwrap edit.pl perl names.nsf webgais dumpenv.pl test.cgi submit.cgi
guestbook.cgi guestbook.pl cachemgr.cgi responder.cgi perlshop.cgi query
w3-msql

query
w3-msql plusmail htsearch infosrch.cgi publisher ultraboard.cgi db.cgi formmail.cgi allmanage.pl ssi adpassword.txt redirect.cgi cvsweb.cgi login.jsp dbconnect.inc admin
htgrep wais.pl amadmin.pl subscribe.pl news.cgi auctionweaver.pl
.htpasswd acid_main.php access.log log.htm log.html log.txt logfile logfile.htm logfile.html logfile.txt logger.html stat.htm stats.htm stats.html stats.txt webaccess.htm wwwstats.html source.asp perl

Liste-Google-Hacking V.2.1


Seite 6


mailto.cgi YaBB.pl mailform.pl cached_feed.cgi global.cgi Search.pl build.cgi common.php
show global.inc ad.cgi WSFTP.LOG index.html~ index.php~ index.html.bak index.php.bak print.cgi register.cgi webdriver bbs_forum.cgi mysql.class sendmail.inc
CrazyWWWBoard.cgi search.pl
way-board.cgi webpage.cgi pwd.dat adcycle
post-query help.cgi

Liste-Google-Hacking V.2.1

inurl:admin inurl:userlist Generic userlist files inurl:admin filetype:asp Generic userlist files inurl:userlist
inurl:php inurl:hlstats intext: Half-life statistics file, lists username and
Server Username other information
filetype:ctl inurl:haccess. Microsoft FrontPage equivalent of htaccess ctl Basic shows Web user credentials
Query Description
filetype:reg reg intext: Microsoft Internet Account Manager can
?internet account manager? reveal usernames and more filetype:wab wab Microsoft Outlook Express Mail address books
filetype:mdb inurl:profiles Microsoft Access databases containing (user)
profiles.
index.of perform.ini mIRC IRC ini file can list IRC usernames and other information
inurl:root.asp?acs=anon Outlook Mail Web Access directory can be used to discover usernames
filetype:conf inurl:proftpd. PROFTP FTP server configuration file reveals conf ?sample username and server information
filetype:log username putty PUTTY SSH client logs can reveal usernames and server information
filetype:rdp rdp Remote Desktop Connection files reveal user credentials
intitle:index.of .bash_history UNIX bash shell history reveals commands typed at a bash command prompt; usernames
are often typed as argument strings
intitle:index.of .sh_history UNIX shell history reveals commands typed at a shell command prompt; usernames are
often typed as argument strings
?index of ? lck Various lock files list the user currently using a file
+intext:webalizer +intext: Webalizer Web statistics page lists Web user- Total Usernames +intext: names and statistical information
?Usage Statistics for?
filetype:reg reg HKEY_ Windows Registry exports can reveal
CURRENT_USER username usernames and other informat admin account info" filetype:log

Seite 7

Liste-Google-Hacking V.2.1
!Host=*.* intext:enc_UserPassword=* ext:pcf
"# -FrontPage-" ext:pwd inurl:(service | authors | administrators | users) "#
-FrontPage-" inurl:service.pwd "AutoCreate=TRUE password=*" "http://*:*@www" domainname
"index of/" "ws_ftp.ini" "parent directory"
"liveice configuration file" ext:cfg -site:sourceforge.net
"parent directory" +proftpdpasswd
Duclassified" -site:duware.com "DUware All Rights reserved" duclassmate" -site:duware.com
Dudirectory" -site:duware.com dudownload" -site:duware.com Elite Forum Version *.*"
Link Department" "sets mode: +k"
"your password is" filetype:log DUpaypal" -site:duware.com allinurl: admin mdb auth_user_file.txt
config.php
eggdrop filetype:user user
enable password | secret "current configuration" -intext:the etc (index.of)
ext:asa | ext:bak intext:uid intext:pwd -"uid..pwd" database | server | dsn ext:inc "pwd=" "UID="
ext:ini eudora.ini
ext:ini Version=4.0.0.4 password ext:passwd -intext:the -sample -example ext:txt inurl:unattend.txt
ext:yml database inurl:config filetype:bak createobject sa
filetype:bak inurl:"htaccess|passwd|shadow|htusers" filetype:cfg mrtg "target
filetype:cfm "cfapplication name" password filetype:conf oekakibbs
filetype:conf slapd.conf
filetype:config config intext:appSettings "User ID" filetype:dat "password.dat"
filetype:dat inurl:Sites.dat filetype:dat wand.dat filetype:inc dbconn
filetype:inc intext:mysql_connect filetype:inc mysql_connect OR mysql_pconnect filetype:inf sysprep
filetype:ini inurl:"serv-u.ini" filetype:ini inurl:flashFXP.ini filetype:ini ServUDaemon filetype:ini wcx_ftp filetype:ini ws_ftp pwd filetype:ldb admin
filetype:log "See `ipsec --copyright" filetype:log inurl:"password.log" filetype:mdb inurl:users.mdb filetype:mdb wwforum
filetype:netrc password filetype:pass pass intext:userid filetype:pem intext:private
filetype:properties inurl:db intext:password filetype:pwd service
filetype:pwl pwl
filetype:reg reg +intext:"defaultusername" +intext:"defaultpassword" filetype:reg reg +intext:â? WINVNC3â?
filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
filetype:sql "insert into" (pass|passwd|password)
filetype:sql ("values * MD5" | "values * password" | "values * encrypt")
filetype:sql +"IDENTIFIED BY" -cvs filetype:sql password
filetype:url +inurl:"ftp://" +inurl:";@"

Seite 8

Liste-Google-Hacking V.2.1 filetype:xls username password email
htpasswd
htpasswd / htgroup htpasswd / htpasswd.bak intext:"enable password 7" intext:"enable secret 5 $" intext:"EZGuestbook" intext:"Web Wiz Journal"
intitle:"index of" intext:connect.inc intitle:"index of" intext:globals.inc intitle:"Index of" passwords modified intitle:"Index of" sc_serv.conf sc_serv content
intitle:"phpinfo()" +"mysql.default_password" +"Zend s?ri?ting Language Engine" intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:Index.of etc shadow
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:rapidshare intext:login
inurl:"calendars?ri?t/users.txt"
inurl:"editor/list.asp" | inurl:"database_editor.asp" | inurl:"login.asa" "are set"
inurl:"GRC.DAT" intext:"password" inurl:"Sites.dat"+"PASS="
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"wvdial.conf" intext:"password"
inurl:/db/main.mdb inurl:/wwwboard inurl:/yabb/Members/Admin.dat inurl:ccbill filetype:log inurl:cgi-bin inurl:calendar.cfg inurl:chap-secrets -cvs inurl:config.php dbuname dbpass inurl:filezilla.xml -cvs
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:nuke filetype:sql
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pap-secrets -cvs
inurl:pass.dat inurl:perform filetype:ini inurl:perform.ini filetype:ini inurl:secring ext:skr | ext:pgp | ext:bak inurl:server.cfg rcon password inurl:ventrilo_srv.ini adminpassword inurl:vtund.conf intext:pass -cvs
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:"index.of./" sites.ini modified master.passwd
mysql history files
NickServ registration passwords passlist
passlist.txt (a better way)
passwd
passwd / etc (reliable)
people.lst
psyBNC config files pwd.db
server-dbs "intitle:index of" signin filetype:url
spwd.db / passwd trillian.ini
wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin
[WFClient] Password= filetype:ica intitle:"remote assessment" OpenAanval Console
intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
"bp blog admin" intitle:login | intitle:admin -site:johnny.ihackstuff.com

Seite 9

Liste-Google-Hacking V.2.1 "Emergisoft web applications are a part of our"
"Establishing a secure Integrated Lights Out session with" OR intitle:"Data Frame - Browser not HTTP 1.1 compatible" OR intitle:"HP Integrated Lights- "HostingAccelerator" intitle:"login" +"Username" -"news" -demo
"iCONECT 4.1 :: Login"
"IMail Server Web Messaging" intitle:login
"inspanel" intitle:"login" -"cannot" "Login ID" -site:inspediumsoft.com
"intitle:3300 Integrated Communications Platform" inurl:main.htm
"Login - Sun Cobalt RaQ" "login prompt" inurl:GM.cgi "Login to Usermin" inurl:20000
"Microsoft CRM : Unsupported Browser Version" "OPENSRS Domain Management" inurl:manage.cgi "pcANYWHERE EXPRESS Java Client"
"Please authenticate yourself to get access to the management interface" "please log in"
"Please login with admin pass" -"leak" -sourceforge
CuteNews" "2003..2005 CutePHP" DWMail" password intitle:dwmail
Merak Mail Server Software" -.gov -.mil -.edu -site:merakmailserver.com
Midmart Messageboard" "Administrator Login" Monster Top List" MTL numrange:200- UebiMiau" -site:sourceforge.net
"site info for" "Enter Admin Password"
"SquirrelMail version" "By the SquirrelMail development Team" "SysCP - login"
"This is a restricted Access Server" "Javas?ri?t Not Enabled!"|"Messenger
Express" -edu -ac
"This section is for Administrators only. If you are an administrator then please"
"ttawlogin.cgi/?action=" "VHCS Pro ver" -demo
"VNC Desktop" inurl:5800
"Web-Based Management" "Please input password to login"
-inurl:johnny.ihackstuff.com
"WebExplorer Server - Login" "Welcome to WebExplorer Server" "WebSTAR Mail - Please Log In"
"You have requested access to a restricted area of our website. Please authenticate yourself to continue."
"You have requested to access the management functions" -.edu
(intitle:"Please login - Forums UBB.threads")|(inurl:login.php "ubb") (intitle:"Please login - Forums
WWWThreads")|(inurl:"wwwthreads/login.php")|(inurl:"wwwthreads/login.pl?Cat=") (intitle:"rymo Login")|(intext:"Welcome to rymo") -family
(intitle:"WmSC e-Cart Administration")|(intitle:"WebMyStyle e-Cart
Administration")
(inurl:"ars/cgi-bin/arweb?O=0" | inurl:arweb.jsp) -site:remedy.com -site:mil
4images Administration Control Panel allintitle:"Welcome to the Cyclades" allinurl:"exchange/logon.asp" allinurl:wps/portal/ login ASP.login_aspx "ASP.NET_SessionId" CGI:IRC Login
ext:cgi intitle:"control panel" "enter your owner password to continue!" ez Publish administration
filetype:php inurl:"webeditor.php"
filetype:pl "Download: SuSE Linux Openexchange Server CA" filetype:r2w r2w
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board"
intext:"Fill out the form below completely to change your password and user name. If new username is left blank, your old one will be assumed." -edu intext:"Mail admins login here to administrate your domain."
intext:"Master Account" "Domain Name" "Password" inurl:/cgi-bin/qmailadmin intext:"Master Account" "Domain Name" "Password" inurl:/cgi-bin/qmailadmin intext:"Storage Management Server for" intitle:"Server Administration" intext:"Welcome to" inurl:"cp" intitle:"H-SPHERE" inurl:"begin.html" -Fee intext:"vbulletin" inurl:admincp

Seite 10

Liste-Google-Hacking V.2.1
intitle:"*- HP WBEM Login" | "You are being prompted to provide login account information for *" | "Please provide the information requested and press intitle:"Admin Login" "admin login" "blogware"
intitle:"Admin login" "Web Site Administration" "Copyright" intitle:"AlternC Desktop"
intitle:"Athens Authentication Point"
intitle:"b2evo > Login form" "Login form. You must log in! You will have to accept cookies in order to log in" -demo -site:b2evolution.net
intitle:"Cisco CallManager User Options Log On" "Please enter your User ID and Password in the spaces provided below and click the Log On button to co intitle:"ColdFusion Administrator Login"
intitle:"communigate pro * *" intitle:"entrance"
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE
5.5" -mambo
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE
5.5" -mambo
intitle:"Dell Remote Access Controller" intitle:"Docutek ERes - Admin Login" -edu intitle:"Employee Intranet Login"
intitle:"eMule *" intitle:"- Web Control Panel" intext:"Web Control Panel" "Enter your password here."
intitle:"ePowerSwitch Login"
intitle:"eXist Database Administration" -demo intitle:"EXTRANET * - Identification" intitle:"EXTRANET login" -.edu -.mil -.gov intitle:"EZPartner" -netpond
intitle:"Flash Operator Panel" -ext:php -wiki -cms -inurl:asternic -inurl:sip
-intitle:ANNOUNCE -inurl:lists intitle:"i-secure v1.1" -edu intitle:"Icecast Administration Admin Page" intitle:"iDevAffiliate - admin" -demo
intitle:"ISPMan : Unauthorized Access prohibited"
intitle:"ITS System Information" "Please log on to the SAP System" intitle:"Kurant Corporation StoreSense" filetype:bok intitle:"ListMail Login" admin -demo
intitle:"Login -
Easy File Sharing Web Server" intitle:"Login Forum
AnyBoard" intitle:"If you are a new user:" intext:"Forum
AnyBoard" inurl:gochat -edu
intitle:"Login to @Mail" (ext:pl | inurl:"index") -dwaffleman intitle:"Login to Cacti"
intitle:"Login to the forums - @www.aimoo.com" inurl:login.cfm?id=
intitle:"MailMan Login"
intitle:"Member Login" "NOTE: Your browser must have cookies enabled in order to log into the site." ext:php OR ext:cgi
intitle:"Merak Mail Server Web Administration" -ihackstuff.com intitle:"microsoft certificate services" inurl:certsrv intitle:"MikroTik RouterOS Managing Webpage"
intitle:"MX Control Console" "If you can't remember"
intitle:"Novell Web Services" "GroupWise" -inurl:"doc/11924" -.mil -.edu -.gov
-filetype:pdf
intitle:"Novell Web Services" intext:"Select a service and a language." intitle:"oMail-admin Administration - Login" -inurl:omnis.ch intitle:"OnLine Recruitment Program - Login"
intitle:"Philex 0.2*" -s?ri?t -site:freelists.org intitle:"PHP Advanced Transfer" inurl:"login.php" intitle:"php icalendar administration" -site:sourceforge.net intitle:"php icalendar administration" -site:sourceforge.net intitle:"phpPgAdmin - Login" Language
intitle:"PHProjekt - login" login password intitle:"please login" "your password is *" intitle:"Remote Desktop Web Connection" inurl:tsweb
intitle:"SFXAdmin - sfx_global" | intitle:"SFXAdmin - sfx_local" |
intitle:"SFXAdmin - sfx_test"
intitle:"SHOUTcast Administrator" inurl:admin.cgi
intitle:"site administration: please log in" "site designed by emarketsouth" intitle:"Supero Doctor III" -inurl:supermicro

Seite 11

Liste-Google-Hacking V.2.1
intitle:"SuSE Linux Openexchange Server" "Please activate Javas?ri?t!" intitle:"teamspeak server-administration
intitle:"Tomcat Server Administration" intitle:"TOPdesk ApplicationServer" intitle:"TUTOS Login"
intitle:"TWIG Login"
intitle:"vhost" intext:"vHost . 2000-2004" intitle:"Virtual Server Administration System" intitle:"VisNetic WebMail" inurl:"/mail/" intitle:"VitalQIP IP Management System"
intitle:"VMware Management Interface:" inurl:"vmware/en/" intitle:"VNC viewer for Java"
intitle:"web-cyradm"|"by Luc de Louw" "This is only for authorized users"
-tar.gz -site:web-cyradm.org
intitle:"WebLogic Server" intitle:"Console Login" inurl:console intitle:"Welcome Site/User Administrator" "Please select the language" -demos intitle:"Welcome to Mailtraq WebMail"
intitle:"welcome to netware *" -site:novell.com intitle:"WorldClient" intext:"? (2003|2004) Alt-N Technologies." intitle:"xams 0.0.0..15 - Login"
intitle:"XcAuctionLite" | "DRIVEN BY XCENT" Lite inurl:admin intitle:"XMail Web Administration Interface" intext:Login intext:password intitle:"Zope Help System" inurl:HelpSys
intitle:"ZyXEL Prestige Router" "Enter password" intitle:"inc. vpn 3000 concentrator"
intitle:("TrackerCam Live Video")|("TrackerCam Application Login")|("Trackercam
Remote") -trackercam.com intitle:asterisk.management.portal web-access intitle:endymion.sak?.mail.login.page | inurl:sake.servlet intitle:Group-Office "Enter your username and password to login" intitle:ilohamail "
IlohaMail"
intitle:ilohamail intext:"Version 0.8.10" " IlohaMail"
intitle:IMP inurl:imp/index.php3 intitle:Login * Webmailer
intitle:Login intext:"RT is ? Copyright" intitle:Node.List Win32.Version.3.11
intitle:Novell intitle:WebAccess "Copyright *-* Novell, Inc" intitle:open-xchange inurl:login.pl
intitle:Ovislink inurl:private/login intitle:phpnews.login
intitle:plesk inurl:login.php3 inurl:"/admin/configuration. php?" Mystore inurl:"/slxweb.dll/external?name=(custportal|webticketcust)" inurl:"1220/parse_xml.cgi?"
inurl:"631/admin" (inurl:"op=*") | (intitle:CUPS) inurl:":10000" intext:webmin inurl:"Activex/default.htm" "Demo" inurl:"calendar.asp?action=login" inurl:"default/login.php" intitle:"kerio" inurl:"gs/adminlogin.aspx"
inurl:"php121login.php" inurl:"suse/login.pl" inurl:"typo3/index.php?u=" -demo inurl:"usysinfo?login=true" inurl:"utilities/TreeView.asp"
inurl:"vsadmin/login" | inurl:"vsadmin/admin" inurl:.php|.asp

Code:

nurl:/admin/login.asp
inurl:/cgi-bin/sqwebmail?noframes=1 inurl:/Citrix/Nfuse17/
inurl:/dana-na/auth/welcome.html inurl:/eprise/
inurl:/Merchant2/admin.mv | inurl:/Merchant2/admin.mvc | intitle:"Miva Merchant
Administration Login" -inurl:cheap-malboro.net

Seite 12

Liste-Google-Hacking V.2.1 inurl:/modcp/ intext:Moderator+vBulletin
inurl:/SUSAdmin intitle:"Microsoft Software upd?t? Services" inurl:/webedit.* intext:WebEdit Professional -html
inurl:1810 "Oracle Enterprise Manager"
inurl:2000 intitle:RemotelyAnywhere -site:realvnc.com inurl::2082/frontend -demo
inurl:administrator "welcome to mambo"
inurl:bin.welcome.sh | inurl:bin.welcome.bat | intitle:eHealth.5.0 inurl:cgi-bin/ultimatebb.cgi?ubb=login inurl:Citrix/MetaFrame/default/default.aspx
inurl:confixx inurl:login|anmeldung
inurl:coranto.cgi intitle:Login (Authorized Users Only)
inurl:csCreatePro.cgi
inurl:default.asp intitle:"WebCommander" inurl:exchweb/bin/auth/owalogon.asp inurl:gnatsweb.pl
inurl:ids5web
inurl:irc filetype:cgi cgi:irc inurl:login filetype:swf swf inurl:login.asp
inurl:login.cfm
inurl:login.php "SquirrelMail version" inurl:metaframexp/default/login.asp | intitle:"Metaframe XP Login" inurl:mewebmail
inurl:names.nsf?opendatabase inurl:ocw_login_username inurl:orasso.wwsso_app_admin.ls_login inurl:postfixadmin intitle:"postfix admin" ext:php inurl:search/admin.php
inurl:textpattern/index.php inurl:WCP_USER inurl:webmail./index.pl "Interface"
inurl:webvpn.html "login" "Please enter your" Login ("
Jetbox One CMS â?¢" | " Jetstream ? *")
Novell NetWare intext:"netware management portal version" Outlook Web Access (a better way)
PhotoPost PHP Upload PHPhotoalbum Statistics PHPhotoalbum Upload phpWebMail
Please enter a valid password! inurl:polladmin

INDEXU
Ultima Online loginservers
W-Nailer Upload Area
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu
"#mysql dump" filetype:sql
"#mysql dump" filetype:sql 21232f297a57a5a743894a0e4a801fc3 "allow_call_time_pass_reference" "PATH_INFO"
"Certificate Practice Statement" inurl:(PDF | DOC) "Generated by phpSystem"
"generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Index of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp "MacHTTP" filetype:log inurl:machttp.log "Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"Most Submitted Forms and s?ri?ts" "this section" "Network Vulnerability Assessment Report"
"not for distribution" confidential
"not for public release" -.edu -.gov -.mil
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"produced by getstats"

Seite 13

Liste-Google-Hacking V.2.1 "Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +p"
"sets mode: +s"
"Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intext:password|subject
(intitle:"PRTG Traffic Grapher" inurl:"allsensors")|(intitle:"PRTG Traffic
Grapher - Monitoring Results")
(intitle:WebStatistica inurl:main.php) | (intitle:"WebSTATISTICA server")
-inurl:statsoft -inurl:statsoftsa -inurl:statsoftinc.com -edu -software -rob
(inurl:"robot.txt" | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt
+"HSTSNR" -"netop.com"
-site:php.net -"The PHP Group" inurl:source inurl:url ext:pHp
94FBR "ADOBE PHOTOSHOP" AIM buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:cdkey.txt allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf contacts ext:wml
data filetype:mdb -site:gov -site:mil exported email addresses
ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw | psw | ppt | pps | xml) (intext:confidential salary | intext:"budget approved") inurl:confidential ext:asp inurl:pathto.asp
ext:ccm ccm -catacomb ext:CDX CDX
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho ext:ics ics
ext:ini intext:env.ini ext:jbf jbf
ext:ldif ldif
ext:log "Software: Microsoft Internet Information Services *.*" ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil
ext:plist filetype:plist inurl:bookmarks.plist ext:pqi pqi -database
ext:reg "username=*" putty ext:txt "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:bkf bkf filetype:blt "buddylist" filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:"Subject" +intext:"From" +intext:"To" filetype:fp3 fp3
filetype:fp5 fp5 -site:gov -site:mil -"cvs log" filetype:fp7 fp7
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key

Seite 14

Liste-Google-Hacking V.2.1 filetype:log access.log -CVS
filetype:log cron.log filetype:mbx mbx intext:Subject filetype:myd myd -CVS filetype:ns1 ns1
filetype:ora ora filetype:ora tnsnames
filetype:pdb pdb backup (Pilot | Pluckerdb)
filetype:php inurl:index inurl:phpicalendar -site:sourceforge.net filetype:pot inurl:john.pot
filetype:PS ps
filetype:pst inurl:"outlook.pst" filetype:pst pst -from -to -date filetype:qbb qbb
filetype:QBW qbw filetype:rdp rdp
filetype:reg "Terminal Server Client" filetype:vcs vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:"email.xls" Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl (one way) haccess.ctl (VERY reliable) ICQ chat logs, please...
intext:"Session Start * * * *:*:* *" filetype:log intext:"Tobias Oetiker" "traffic analysis"
intext:(password | passcode) intext:(username | userid | user) filetype:csv intext:gmail invite intext:http://gmail.google.com/gmail/a intext:SQLiteManager inurl:main.php
intext:ViewCVS inurl:Settings.php intitle:"admin panel" +" RedKernel"
intitle:"Apache::Status" (inurl:server-status | inurl:status.html |
inurl:apache.html)

intitle:"AppServ Open Project" -site:www.appservnetwork.com
intitle:"ASP Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intitle:"Big Sister" +"OK Attention Trouble"
intitle:"curriculum vitae" filetype:doc intitle:"edna:streaming mp3 server" -forums intitle:"FTP root at"
intitle:"index of" +myd size
intitle:"Index Of" -inurl:maillog maillog size intitle:"Index Of" cookies.txt size intitle:"index of" mysql.conf OR mysql_config intitle:"Index of" upload size parent directory
intitle:"index.of *" admin news.asp configview.asp intitle:"index.of" .diz .nfo last modified intitle:"Joomla - Web Installer"
intitle:"LOGREP - Log file reporting system" -site:itefix.no intitle:"Multimon UPS status page"
intitle:"PHP Advanced Transfer" (inurl:index.php | inurl:showrecent.php )
intitle:"PhpMyExplorer" inurl:"index.php" -cvs intitle:"statistics of" "advanced web statistics"
intitle:"System Statistics" +"System and Network Information Center" intitle:"urchin (5|3|admin)" ext:cgi
intitle:"Usage Statistics for" "Generated by Webalizer" intitle:"wbem" compaq login "Compaq Information Technologies Group" intitle:"Web Server Statistics for ****"
intitle:"web server status" SSH Telnet
intitle:"Welcome to F-Secure Policy Manager Server Welcome Page" intitle:"welcome.to.squeezebox"
intitle:admin intitle:login
intitle:Bookmarks inurl:bookmarks.html "Bookmarks intitle:index.of "Apache" "server at"

Seite 15

Liste-Google-Hacking V.2.1 intitle:index.of cleanup.log
intitle:index.of dead.letter intitle:index.of inbox intitle:index.of inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet inurl:intranet +intext:"phone" inurl:"/axs/ax-admin.pl" -s?ri?t inurl:"/cricket/grapher.cgi" inurl:"bookmark.htm"
inurl:"cacti" +inurl:"graph_view.php" +"Settings Tree View" -cvs -RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/" intitle:"newsletter admin" inurl:"putty.reg"
inurl:"smb.conf" intext:"workgroup" filetype:conf conf inurl:*db filetype:mdb
inurl:/cgi-bin/pass.txt inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:build.err
inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe "Please distribute TestCGI" inurl:changepassword.asp
inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to phpMyAdmin inurl:netscape.hst
inurl:netscape.hst inurl:netscape.ini inurl:odbc.ini ext:ini -cvs inurl:perl/printenv inurl:php.ini filetype:ini inurl:preferences.ini "[emule]" inurl:profiles filetype:mdb
inurl:report "EVEREST Home Edition " inurl:server-info "Apache Server Information" inurl:server-status "apache" inurl:snitz_forums_2000.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php "page generated"
inurl:wp-mail.php + "There doesn't seem to be any new mail." inurl:XcCDONTS.asp
ipsec.conf ipsec.secrets ipsec.secrets
Lotus Domino address books
mail filetype:csv -site:gov intext:name
Microsoft Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml - Trillian data files OWA Public Folders (direct view) Peoples MSN contact lists
php-addressbook "This is the addressbook for *" -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private key files (.csr) private key files (.key) Quicken data files

Seite 16

Liste-Google-Hacking V.2.1 rdbqds -site:.edu -site:.mil -site:.gov
robots.txt
site:edu admin grades site:www.mailinator.com inurl:ShowMail.do SQL data dumps
Squid cache server reports
Unreal IRCd WebLog Referrers Welcome to ntop!
Fichier contenant des informations sur le r?seau :
filetype:log intext:"ConnectionManager2" "apricot - admin" 00h
"by Reimar Hoven. All Rights Reserved. Disclaimer" | inurl:"log/logdb.dta" "Network Host Assessment Report" "Internet Scanner"
"Output produced by SysWatch *"
"Phorum Admin" "Database Connection" inurl:forum inurl:admin phpOpenTracker" Statistics
"powered | performed by Beyond Security's Automated Scanning" -kazaa -example
"Shadow Security Scanner performed a vulnerability assessment" "SnortSnarf alert page"
"The following report contains confidential information" vulnerability -search
"The statistics were last upd?t?d" "Daily"-microsoft.com "this proxy is working fine!" "enter *" "URL***" * visit "This report lists" "identified by Internet Scanner" "Traffic Analysis for" "RMON Port * on unit *"
"Version Info" "Boot Version" "Internet Settings"
((inurl:ifgraph "Page generated at") OR ("This page was built using ifgraph")) Analysis Console for Incident Databases
ext:cfg radius.cfg
ext:cgi intext:"nrg-" " This web page was created on " filetype:pdf "Assessment Report" nessus
filetype:php inurl:ipinfo.php "Distributed Intrusion Detection System" filetype:php inurl:nqt intext:"Network Query Tool"
filetype:vsd vsd network -samples -examples
intext:"Welcome to the Web V.Networks" intitle:"V.Networks [Top]" -filetype:htm intitle:"ADSL Configuration page"
intitle:"Azureus : Java BitTorrent Client Tracker"
intitle:"Belarc Advisor Current Profile" intext:"Click here for Belarc's PC Management products, for large and small companies."
intitle:"BNBT Tracker Info" intitle:"Microsoft Site Server Analysis"
intitle:"Nessus Scan Report" "This file was generated by Nessus" intitle:"PHPBTTracker Statistics" | intitle:"PHPBT Tracker Statistics" intitle:"Retina Report" "CONFIDENTIAL INFORMATION" intitle:"start.managing.the.device" remote pbx acc
intitle:"sysinfo * " intext:"Generated by Sysinfo * written by The Gamblers." intitle:"twiki" inurl:"TWikiUsers"
inurl:"/catalog.nsf" intitle:catalog inurl:"install/install.php" inurl:"map.asp?" intitle:"WhatsUp Gold"
inurl:"NmConsole/Login.asp" | intitle:"Login - Ipswitch WhatsUp Professional
2005" | intext:"Ipswitch WhatsUp Professional 2005 (SP1)" "Ipswitch, Inc" inurl:"sitescope.html" intitle:"sitescope" intext:"refresh" -demo inurl:/adm-cfgedit.php
inurl:/cgi-bin/finger? "In real life"
inurl:/cgi-bin/finger? Enter (account|host|user|username) inurl:/counter/index.php intitle:"+PHPCounter 7.*" inurl:CrazyWWWBoard.cgi intext:"detailed debugging information" inurl:login.jsp.bak
inurl:ovcgi/jovw
inurl:phpSysInfo/ "created by phpsysinfo" inurl:portscan.php "from Port"|"Port Range"
inurl:proxy | inurl:wpad ext:pac | ext:dat findproxyforurl inurl:statrep.nsf -gov
inurl:status.cgi?host=all inurl:testcgi xitami
inurl:webalizer filetype:png -.gov -.edu -.mil -opendarwin inurl:webutil.pl

Seite 17

Looking Glass

Liste-Google-Hacking V.2.1

site:netcraft.com intitle:That.Site.Running Apache "A syntax error has occurred" filetype:ihtml "access denied for user" "using password"
"An illegal character has been found in the statement" -"previous message" "ASP.NET_SessionId" "data source="
"Can't connect to local" intitle:warning
"Chatologica MetaSearch" "stack tracking"
"detected an internal error [IBM][CLI Driver][DB2/6000]" "error found handling the request" cocoon filetype:xml "Fatal error: Call to undefined function" -reply -the -next "Incorrect syntax near"
"Incorrect syntax near"
"Internal Server Error" "server at" "Invision Power Board Database Error"
"ORA-00933: SQL command not properly ended"
"ORA-12541: TNS:no listener" intitle:"error occurred"
"Parse error: parse error, unexpected T_VARIABLE" "on line" filetype:php
"PostgreSQL query failed: ERROR: parser: parse error" "Supplied argument is not a valid MySQL result resource" "Syntax error in query expression " -the
"The s?ri?t whose uid is " "is not allowed to access"
"There seems to have been a problem with the" " Please try again by clicking the
Refresh button in your web browser."
"Unable to jump to row" "on MySQL result index" "on line" "Unclosed quotation mark before the character string"
"Warning: Bad arguments to (join|implode) () in" "on line" -help -forum "Warning: Cannot modify header information - headers already sent" "Warning: Division by zero in" "on line" -forum

"Warning: mysql_connect(): Access denied for user: '*@*" "on line" -help -forum
"Warning: mysql_query()" "invalid query"
"Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL" "Warning: Supplied argument is not a valid File-Handle resource in" "Warning:" "failed to open stream: HTTP request failed" "on line"
"Warning:" "SAFE MODE Restriction in effect." "The s?ri?t whose uid is" "is not allowed to access owned by uid 0 in" "on line"
"SQL Server Driver][SQL Server]Line 1: Incorrect syntax near" An unexpected token "END-OF-STATEMENT" was found
Coldfusion Error Pages filetype:asp + "[ODBC SQL"
filetype:asp "Custom Error Message" Category Source filetype:log "PHP Parse error" | "PHP Warning" | "PHP Error" filetype:php inurl:"logging.php" "Discuz" error
ht://Dig htsearch error
IIS 4.0 error messages
IIS web server error messages
Internal Server Error
intext:"Error Message : Error loading required libraries." intext:"Warning: Failed opening" "on line" "include_path" intitle:"Apache Tomcat" "Error Report"
intitle:"Default PLESK Page"
intitle:"Error Occurred While Processing Request" +WHERE (SELECT|INSERT)
filetype:cfm
intitle:"Error Occurred" "The error occurred in" filetype:cfm intitle:"Error using Hypernews" "Server Software" intitle:"Execution of this s?ri?t not permitted" intitle:"Under construction" "does not currently have" intitle:Configuration.File inurl:softcart.exe
MYSQL error message: supplied argument.... mysql error with query
Netscape Application Server Error page ORA-00921: unexpected end of SQL command ORA-00921: unexpected end of SQL command ORA-00936: missing expression
PHP application warnings failing "include_path" sitebuildercontent
sitebuilderfiles

Seite 18

sitebuilderpictures
Snitz! forums db path error
SQL syntax error

Liste-Google-Hacking V.2.1

Supplied argument is not a valid PostgreSQL result warning "error on line" php sablotron
Windows 2000 web server error messages
"ftp://" "www.eastgame.net" "html allowed" guestbook
: vBulletin Version 1.1.5"
"Select a database to view" intitle:"filemaker pro" "set up the administrator user" inurl:pivot
"There are no Administrators Accounts" inurl:admin.php -mysql_fetch_row "Welcome to Administration" "General" "Local Domains" "SMTP Authentication" inurl:admin
"Welcome to Intranet"
"Welcome to PHP-Nuke" congratulations
"Welcome to the Prestige Web-Based Configurator" "YaBB SE Dev Team"
"you can now password" | "this is a special page only seen by you. your profile visitors" inurl:imchaos
("Indexed.By"|"Monitored.By") hAcxFtpScan (inurl:/shop.cgi/page=) | (inurl:/shop.pl/page=) allinurl:"index.php" "site=sglinks" allinurl:install/install.php
allinurl:intranet admin filetype:cgi inurl:"fileman.cgi" filetype:cgi inurl:"Web_Store.cgi" filetype:php inurl:vAuthenticate filetype:pl intitle:"Ultraboard Setup" Gallery in configuration mode
Hassan Consulting's Shopping Cart Version 1.18 intext:"Warning: * am able * write ** configuration file" "includes/configure.php" -
intitle:"Gateway Configuration Menu" intitle:"Horde :: My Portal" -"[Tickets" intitle:"Mail Server CMailServer Webmail" "5.2" intitle:"MvBlog powered"
intitle:"Remote Desktop Web Connection"
intitle:"Samba Web Administration Tool" intext:"Help Workgroup" intitle:"Terminal Services Web Connection"
intitle:"Uploader - Uploader v6" -pixloads.com
intitle:osCommerce inurl:admin intext:"redistributable under the GNU" intext:"Online Catalog" -demo -site:oscommerce.com
intitle:phpMyAdmin "Welcome to phpMyAdmin ***" "running on * as root@*" intitle:phpMyAdmin "Welcome to phpMyAdmin ***" "running on * as root@*" inurl:"/NSearch/AdminServlet"
inurl:"index.php? module=ew_filemanager" inurl:aol*/_do/rss_popup?blogID= inurl:footer.inc.php
inurl:info.inc.php inurl:ManyServers.htm inurl:newsdesk.cgi? inurl:"t=" inurl:pls/admin_/gateway.htm inurl:rpSys.html inurl:search.php vbulletin inurl:servlet/webacc
natterchat inurl:home.asp -site:natterchat.co.uk
XOOPS Custom Installation inurl:htpasswd filetype:htpasswd inurl:yapboz_detay.asp + View Webcam User Accessing allinurl:control/multiview
inurl:"ViewerFrame?Mode=" intitle:"WJ-NT104 Main Page" inurl:netw_tcp.shtml intitle:"supervisioncam protocol"
"A syntax error has occurred" filetype:ihtml "access denied for user" "using password" "Chatologica MetaSearch" "stack tracking:"

Seite 19

"Index of /backup"

Liste-Google-Hacking V.2.1

"ORA-00921: unexpected end of SQL command"
"parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Name of Singer or album -xxx -html -htm -php -shtml
-opendivx
-md5 -md5sums
"parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
?intitle:index.of? mp3 name allintitle:"Network Camera NetworkCamera" allinurl: admin mdb allinurl:auth_user_file.txt
intitle:"live view" intitle:axis intitle:axis intitle:"video server" intitle:liveapplet inurl:"ViewerFrame?Mode="
inurl:axis-cgi/jpg
inurl:axis-cgi/mjpg (motion-JPEG) inurl:passlist.txt inurl:view/index.shtml inurl:view/indexFrame.shtml inurl:view/view.shtml inurl:ViewerFrame?Mode=Refresh liveapplet
!Host=*.* intext:enc_UserPassword=* ext:pcf
" -FrontPage-" ext:pwd inurl:(service | authors | administrators | users) "A syntax error has occurred" filetype:ihtml
"About Mac OS Personal Web Sharing" "access denied for user" "using password" "allow_call_time_pass_reference" "PATH_INFO"
"An illegal character has been found in the statement" -"previous message" "ASP.NET_SessionId" "data source="
"AutoCreate=TRUE password=*"
"Can't connect to local" intitle:warning "Certificate Practice Statement" inurl:(PDF | DOC) "Chatologica MetaSearch" "stack tracking" "Copyright (c) Tektronix, Inc." "printer status"
"detected an internal error [IBM][CLI Driver][DB2/6000]" "Dumping data for table"
"Error Diagnostic Information" intitle:"Error Occurred While" "error found handling the request" cocoon filetype:xml
"Fatal error: Call to undefined function" -reply -the -next
"Generated by phpSystem" "generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "IMail Server Web Messaging" intitle:login
"Incorrect syntax near" "Index of /" +.htaccess "Index of /" +passwd
"Index of /" +password.txt
"Index of /admin" "Index of /mail"
"Index Of /network" "last modified" "Index of /password"
"index of /private" site:mil
"index of /private" -site:net -site:com -site:org
"Index of" / "chat/logs"
"index of/" "ws_ftp.ini" "parent directory" "Installed Objects Scanner" inurl:default.asp "Internal Server Error" "server at"
"liveice configuration file" ext:cfg
"Login - Sun Cobalt RaQ"
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"More Info about MetaCart Free"

Seite 20

Liste-Google-Hacking V.2.1 "Most Submitted Forms and Scripts" "this section" "mysql dump" filetype:sql
"mySQL error with query"
"Network Vulnerability Assessment Report" "not for distribution" confidential
"ORA-00921: unexpected end of SQL command" "ORA-00933: SQL command not properly ended" "ORA-00936: missing expression"
"pcANYWHERE EXPRESS Java Client"
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin MySQL-Dump" "INSERT INTO" -"the"
"phpMyAdmin MySQL-Dump" filetype:txt
"phpMyAdmin" "running on" inurl:"main.php"
"PostgreSQL query failed: ERROR: parser: parse error" "Powered by mnoGoSearch - free web search engine software" "powered by openbsd" +"powered by apache"
"Powered by UebiMiau" -site:sourceforge.net
"produced by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +k"
"sets mode: +p" "sets mode: +s"
"Supplied argument is not a valid MySQL result resource" "Supplied argument is not a valid PostgreSQL result" "Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog" "This summary was generated by wwwstat" "VNC Desktop" inurl:5800
"Warning: Cannot modify header information - headers already sent" "Web File Browser" "Use regular expression"
"xampp/phpinfo
"You have an error in your SQL syntax near"
"Your password is * Remember this for later use" aboutprinter.shtml
allintitle: "index of/admin" allintitle: "index of/root" allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov allintitle: sensitive filetype:doc allintitle:.."Test page for Apache Installation.." allintitle:admin.php
allinurl:".r{}_vti_cnf/" allinurl:admin mdb allinurl:auth_user_file.txt allinurl:servlet/SnoopServlet
An unexpected token "END-OF-STATEMENT" was found camera linksys inurl:main.cgi
Canon Webview netcams Comersus.mdb database confidential site:mil
ConnectionTest.java filetype:html
data filetype:mdb -site:gov -site:mil eggdrop filetype:user user
ext:conf NoCatAuth -cvs
ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-" ext:txt inurl:unattend.txt
filetype:ASP ASP filetype:ASPX ASPX filetype:BML BML
filetype:cfg ks intext:rootpw -sample -test -howto filetype:cfm "cfapplication name" password filetype:CFM CFM
filetype:CGI CGI
filetype:conf inurl:psybnc.conf "USER.PASS=" filetype:dat "password.dat

Seite 21


filetype:DIFF DIFF filetype:DLL DLL filetype:DOC DOC filetype:FCGI FCGI filetype:HTM HTM filetype:HTML HTML filetype:inf sysprep filetype:JHTML JHTML filetype:JSP JSP

Liste-Google-Hacking V.2.1

filetype:log inurl:password.log filetype:MV MV
filetype:pdf "Assessment Report" nessus filetype:PDF PDF
filetype:PHP PHP filetype:PHP3 PHP3 filetype:PHP4 PHP4 filetype:PHTML PHTML filetype:PL PL filetype:PPT PPT filetype:PS PS filetype:SHTML SHTML filetype:STM STM filetype:SWF SWF filetype:TXT TXT filetype:XLS XLS htpasswd / htpasswd.bak Index of phpMyAdmin
index of: intext:Gallery in Configuration mode index.of passlist
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board" intext:"d.aspx?id" || inurl:"d.aspx?id" intext:"enable secret 5 $"
intext:"powered by Web Wiz Journal"
intext:"SteamUserPassphrase=" intext:"SteamAppUser=" -"username" -"user" intitle:"--- VIDEO WEB SERVER ---" intext:"Video Web Server" "Any time & Any where" username password
intitle:"500 Internal Server Error" "server at"
intitle:"actiontec" main setup status "Copyright 2001 Actiontec Electronics Inc" intitle:"Browser Launch Page"
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu intitle:"EverFocus.EDSR.applet"
intitle:"Index of" ".htpasswd" "htgroup" -intitle:"dist" -apache -htpasswd.c intitle:"Index of" .bash_history
intitle:"Index of" .mysql_history intitle:"Index of" .mysql_history intitle:"Index of" .sh_history intitle:"Index of" cfide intitle:"index of" etc/shadow intitle:"index of" htpasswd intitle:"index of" intext:globals.inc intitle:"index of" master.passwd
intitle:"index of" members OR accounts intitle:"index of" passwd intitle:"Index of" passwords modified intitle:"index of" people.lst intitle:"index of" pwd.db intitle:"Index of" pwd.db intitle:"index of" spwd
intitle:"Index of" spwd.db passwd -pam.conf intitle:"index of" user_carts OR user_cart intitle:"Index of..etc" passwd intitle:"iVISTA.Main.Page"
intitle:"network administration" inurl:"nic"
intitle:"OfficeConnect Cable/DSL Gateway" intext:"Checking your browser" intitle:"remote assessment" OpenAanval Console
intitle:"Remote Desktop Web Connection" inurl:tsweb intitle:"switch login" "IBM Fast Ethernet Desktop" intitle:"SWW link" "Please wait....."

Seite 22

Liste-Google-Hacking V.2.1 intitle:"teamspeak server-administration intitle:"TUTOS Login"
intitle:"VMware Management Interface:" inurl:"vmware/en/" intitle:"Welcome to the Advanced Extranet Server, ADVX!" intitle:"Welcome to Windows 2000 Internet Services" intitle:"Connection Status" intext:"Current login" intitle:"inc. vpn 3000 concentrator" intitle:asterisk.management.portal web-access
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:
duware.com
intitle:index.of administrators.pwd intitle:index.of cgiirc.config intitle:Index.of etc shadow site:passwd
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:index.of master.passwd
intitle:index.of passwd passwd.bak intitle:index.of people.lst intitle:index.of trillian.ini
intitle:Novell intitle:WebAccess "Copyright *-* Novell, Inc" intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
intitle:open-xchange inurl:login.pl inurl:":10000" intext:webmin inurl:"8003/Display?what=" inurl:"auth_user_file.txt" inurl:"GRC.DAT" intext:"password"
inurl:"printer/main.html" intext:"settings"
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"ViewerFrame?Mode="
inurl:"wvdial.conf" intext:"password" inurl:"wwwroot/
inurl:/Citrix/Nfuse17/ inurl:/db/main.mdb inurl:/wwwboard inurl:access
inurl:admin filetype:db inurl:asp
inurl:buy
inurl:ccbill filetype:log inurl:cgi inurl:cgiirc.config
inurl:config.php dbuname dbpass inurl:data
inurl:default.asp intitle:"WebCommander" inurl:download
inurl:file inurl:filezilla.xml -cvs inurl:forum
inurl:home inurl:hp/device/this.LCDispatcher inurl:html
inurl:iisadmin inurl:inc inurl:info
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:list
inurl:login filetype:swf swf inurl:mail
inurl:midicart.mdb inurl:names.nsf?opendatabase inurl:new
inurl:nuke filetype:sql inurl:order
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pages
inurl:pap-secrets -cvs inurl:passlist.txt

Seite 23


inurl:passwd filetype:txt inurl:Proxy.txt inurl:public
inurl:search

Liste-Google-Hacking V.2.1

inurl:secring ext:skr | ext:pgp | ext:bak inurl:shop
inurl:shopdbtest.asp inurl:software inurl:support inurl:user
inurl:vtund.conf intext:pass -cvs s inurl:web
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:"index.of./" sites.ini modified
POWERED BY HIT JAMMER 1.0!
signin filetype:url
site:ups.com intitle:"Ups Package tracking" intext:"1Z ### ### ## #### ### #" top secret site:mil
Ultima Online loginservers
VP-ASP Shop Administrators only
XAMPP "inurl:xampp/index"
ext:asa | ext:bak intext:uid intext:pwd -"uid..pwd" database | server | dsn ext:inc "pwd=" "UID="
ext:ini eudora.ini
ext:ini Version=4.0.0.4 password ext:passwd -intext:the -sample -example ext:txt inurl:unattend.txt
ext:yml database inurl:config filetype:bak createobject sa
filetype:bak inurl:"htaccess|passwd|shadow|htusers" filetype:cfg mrtg "target
filetype:cfm "cfapplication name" password filetype:conf oekakibbs
filetype:conf slapd.conf
filetype:config config intext:appSettings "User ID" filetype:dat "password.dat"
filetype:dat inurl:Sites.dat filetype:dat wand.dat filetype:inc dbconn
filetype:inc intext:mysql_connect filetype:inc mysql_connect OR mysql_pconnect filetype:inf sysprep
filetype:ini inurl:"serv-u.ini" filetype:ini inurl:flashFXP.ini filetype:ini ServUDaemon filetype:ini wcx_ftp filetype:ini ws_ftp pwd filetype:ldb admin
filetype:log "See `ipsec --copyright" filetype:log inurl:"password.log" filetype:mdb inurl:users.mdb filetype:mdb wwforum
filetype:netrc password filetype:pass pass intext:userid filetype:pem intext:private
filetype:properties inurl:db intext:password filetype:pwd service
filetype:pwl pwl
filetype:reg reg +intext:"defaultusername" +intext:"defaultpassword" filetype:reg reg +intext:â? WINVNC3â?
filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
filetype:sql "insert into" (pass|passwd|password)
filetype:sql ("values * MD5" | "values * password" | "values * encrypt")
filetype:sql +"IDENTIFIED BY" -cvs filetype:sql password
filetype:url +inurl:"ftp://" +inurl:";@" filetype:xls username password email htpasswd

Seite 24

htpasswd / htgroup htpasswd / htpasswd.bak intext:"enable password 7" intext:"enable secret 5 $" intext:"EZGuestbook" intext:"Web Wiz Journal"

Liste-Google-Hacking V.2.1

intitle:"index of" intext:connect.inc intitle:"index of" intext:globals.inc intitle:"Index of" passwords modified intitle:"Index of" sc_serv.conf sc_serv content
intitle:"phpinfo()" +"mysql.default_password" +"Zend s?ri?ting Language Engine" intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:Index.of etc shadow
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:rapidshare intext:login
inurl:"calendars?ri?t/users.txt"
inurl:"editor/list.asp" | inurl:"database_editor.asp" | inurl:"login.asa" "are set"
inurl:"GRC.DAT" intext:"password" inurl:"Sites.dat"+"PASS="
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"wvdial.conf" intext:"password"
inurl:/db/main.mdb inurl:/wwwboard inurl:/yabb/Members/Admin.dat inurl:ccbill filetype:log inurl:cgi-bin inurl:calendar.cfg inurl:chap-secrets -cvs inurl:config.php dbuname dbpass inurl:filezilla.xml -cvs
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:nuke filetype:sql
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pap-secrets -cvs
inurl:pass.dat inurl:perform filetype:ini inurl:perform.ini filetype:ini inurl:secring ext:skr | ext:pgp | ext:bak inurl:server.cfg rcon password inurl:ventrilo_srv.ini adminpassword inurl:vtund.conf intext:pass -cvs
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:"index.of./" sites.ini modified master.passwd
mysql history files
NickServ registration passwords passlist
passlist.txt (a better way)
passwd
passwd / etc (reliable)
people.lst
psyBNC config files pwd.db
server-dbs "intitle:index of" signin filetype:url
spwd.db / passwd trillian.ini
wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin
[WFClient] Password= filetype:ica intitle:"remote assessment" OpenAanval Console
intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
"bp blog admin" intitle:login | intitle:admin -site:johnny.ihackstuff.com
"Emergisoft web applications are a part of our"
"Establishing a secure Integrated Lights Out session with" OR intitle:"Data

Seite 25

Liste-Google-Hacking V.2.1
Frame - Browser not HTTP 1.1 compatible" OR intitle:"HP Integrated Lights- "HostingAccelerator" intitle:"login" +"Username" -"news" -demo
"iCONECT 4.1 :: Login"
"IMail Server Web Messaging" intitle:login
"inspanel" intitle:"login" -"cannot" "Login ID" -site:inspediumsoft.com
"intitle:3300 Integrated Communications Platform" inurl:main.htm
"Login - Sun Cobalt RaQ" "login prompt" inurl:GM.cgi "Login to Usermin" inurl:20000
"Microsoft CRM : Unsupported Browser Version" "OPENSRS Domain Management" inurl:manage.cgi "pcANYWHERE EXPRESS Java Client"
"Please authenticate yourself to get access to the management interface" "please log in"
"Please login with admin pass" -"leak" -sourceforge
CuteNews" "2003..2005 CutePHP" DWMail" password intitle:dwmail
Merak Mail Server Software" -.gov -.mil -.edu -site:merakmailserver.com
Midmart Messageboard" "Administrator Login" Monster Top List" MTL numrange:200- UebiMiau" -site:sourceforge.net
"site info for" "Enter Admin Password"
"SquirrelMail version" "By the SquirrelMail development Team" "SysCP - login"
"This is a restricted Access Server" "Javas?ri?t Not Enabled!"|"Messenger
Express" -edu -ac
"This section is for Administrators only. If you are an administrator then please"
"ttawlogin.cgi/?action=" "VHCS Pro ver" -demo
"VNC Desktop" inurl:5800
"Web-Based Management" "Please input password to login"
-inurl:johnny.ihackstuff.com
"WebExplorer Server - Login" "Welcome to WebExplorer Server" "WebSTAR Mail - Please Log In"
"You have requested access to a restricted area of our website. Please authenticate yourself to continue."
"You have requested to access the management functions" -.edu
(intitle:"Please login - Forums UBB.threads")|(inurl:login.php "ubb") (intitle:"Please login - Forums
WWWThreads")|(inurl:"wwwthreads/login.php")|(inurl:"wwwthreads/login.pl?Cat=") (intitle:"rymo Login")|(intext:"Welcome to rymo") -family
(intitle:"WmSC e-Cart Administration")|(intitle:"WebMyStyle e-Cart
Administration")
(inurl:"ars/cgi-bin/arweb?O=0" | inurl:arweb.jsp) -site:remedy.com -site:mil
4images Administration Control Panel allintitle:"Welcome to the Cyclades" allinurl:"exchange/logon.asp" allinurl:wps/portal/ login ASP.login_aspx "ASP.NET_SessionId" CGI:IRC Login
ext:cgi intitle:"control panel" "enter your owner password to continue!" ez Publish administration
filetype:php inurl:"webeditor.php"
filetype:pl "Download: SuSE Linux Openexchange Server CA" filetype:r2w r2w
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board"
intext:"Fill out the form below completely to change your password and user name. If new username is left blank, your old one will be assumed." -edu intext:"Mail admins login here to administrate your domain."
intext:"Master Account" "Domain Name" "Password" inurl:/cgi-bin/qmailadmin intext:"Master Account" "Domain Name" "Password" inurl:/cgi-bin/qmailadmin intext:"Storage Management Server for" intitle:"Server Administration" intext:"Welcome to" inurl:"cp" intitle:"H-SPHERE" inurl:"begin.html" -Fee intext:"vbulletin" inurl:admincp
intitle:"*- HP WBEM Login" | "You are being prompted to provide login account information for *" | "Please provide the information requested and press

Seite 26

Liste-Google-Hacking V.2.1 intitle:"Admin Login" "admin login" "blogware" intitle:"Admin login" "Web Site Administration" "Copyright" intitle:"AlternC Desktop"
intitle:"Athens Authentication Point"
intitle:"b2evo > Login form" "Login form. You must log in! You will have to accept cookies in order to log in" -demo -site:b2evolution.net
intitle:"Cisco CallManager User Options Log On" "Please enter your User ID and Password in the spaces provided below and click the Log On button to co intitle:"ColdFusion Administrator Login"
intitle:"communigate pro * *" intitle:"entrance"
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE
5.5" -mambo
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE
5.5" -mambo
intitle:"Dell Remote Access Controller" intitle:"Docutek ERes - Admin Login" -edu intitle:"Employee Intranet Login"
intitle:"eMule *" intitle:"- Web Control Panel" intext:"Web Control Panel" "Enter your password here."
intitle:"ePowerSwitch Login"
intitle:"eXist Database Administration" -demo intitle:"EXTRANET * - Identification" intitle:"EXTRANET login" -.edu -.mil -.gov intitle:"EZPartner" -netpond
intitle:"Flash Operator Panel" -ext:php -wiki -cms -inurl:asternic -inurl:sip
-intitle:ANNOUNCE -inurl:lists intitle:"i-secure v1.1" -edu intitle:"Icecast Administration Admin Page" intitle:"iDevAffiliate - admin" -demo
intitle:"ISPMan : Unauthorized Access prohibited"
intitle:"ITS System Information" "Please log on to the SAP System" intitle:"Kurant Corporation StoreSense" filetype:bok intitle:"ListMail Login" admin -demo
intitle:"Login -
Easy File Sharing Web Server" intitle:"Login Forum
AnyBoard" intitle:"If you are a new user:" intext:"Forum
AnyBoard" inurl:gochat -edu
intitle:"Login to @Mail" (ext:pl | inurl:"index") -dwaffleman intitle:"Login to Cacti"
intitle:"Login to the forums - @www.aimoo.com" inurl:login.cfm?id=
intitle:"MailMan Login"
intitle:"Member Login" "NOTE: Your browser must have cookies enabled in order to log into the site." ext:php OR ext:cgi
intitle:"Merak Mail Server Web Administration" -ihackstuff.com intitle:"microsoft certificate services" inurl:certsrv intitle:"MikroTik RouterOS Managing Webpage"
intitle:"MX Control Console" "If you can't remember"
intitle:"Novell Web Services" "GroupWise" -inurl:"doc/11924" -.mil -.edu -.gov
-filetype:pdf
intitle:"Novell Web Services" intext:"Select a service and a language." intitle:"oMail-admin Administration - Login" -inurl:omnis.ch intitle:"OnLine Recruitment Program - Login"
intitle:"Philex 0.2*" -s?ri?t -site:freelists.org intitle:"PHP Advanced Transfer" inurl:"login.php" intitle:"php icalendar administration" -site:sourceforge.net intitle:"php icalendar administration" -site:sourceforge.net intitle:"phpPgAdmin - Login" Language
intitle:"PHProjekt - login" login password intitle:"please login" "your password is *" intitle:"Remote Desktop Web Connection" inurl:tsweb
intitle:"SFXAdmin - sfx_global" | intitle:"SFXAdmin - sfx_local" |
intitle:"SFXAdmin - sfx_test"
intitle:"SHOUTcast Administrator" inurl:admin.cgi
intitle:"site administration: please log in" "site designed by emarketsouth" intitle:"Supero Doctor III" -inurl:supermicro
intitle:"SuSE Linux Openexchange Server" "Please activate Javas?ri?t!" intitle:"teamspeak server-administration

Seite 27

Liste-Google-Hacking V.2.1 intitle:"Tomcat Server Administration" intitle:"TOPdesk ApplicationServer"
intitle:"TUTOS Login" intitle:"TWIG Login"
intitle:"vhost" intext:"vHost . 2000-2004" intitle:"Virtual Server Administration System" intitle:"VisNetic WebMail" inurl:"/mail/" intitle:"VitalQIP IP Management System"
intitle:"VMware Management Interface:" inurl:"vmware/en/" intitle:"VNC viewer for Java"
intitle:"web-cyradm"|"by Luc de Louw" "This is only for authorized users"
-tar.gz -site:web-cyradm.org
intitle:"WebLogic Server" intitle:"Console Login" inurl:console intitle:"Welcome Site/User Administrator" "Please select the language" -demos intitle:"Welcome to Mailtraq WebMail"
intitle:"welcome to netware *" -site:novell.com intitle:"WorldClient" intext:"? (2003|2004) Alt-N Technologies." intitle:"xams 0.0.0..15 - Login"
intitle:"XcAuctionLite" | "DRIVEN BY XCENT" Lite inurl:admin intitle:"XMail Web Administration Interface" intext:Login intext:password intitle:"Zope Help System" inurl:HelpSys
intitle:"ZyXEL Prestige Router" "Enter password" intitle:"inc. vpn 3000 concentrator"
intitle:("TrackerCam Live Video")|("TrackerCam Application Login")|("Trackercam
Remote") -trackercam.com intitle:asterisk.management.portal web-access intitle:endymion.sak?.mail.login.page | inurl:sake.servlet intitle:Group-Office "Enter your username and password to login" intitle:ilohamail "
IlohaMail"
intitle:ilohamail intext:"Version 0.8.10" " IlohaMail"
intitle:IMP inurl:imp/index.php3 intitle:Login * Webmailer
intitle:Login intext:"RT is ? Copyright" intitle:Node.List Win32.Version.3.11
intitle:Novell intitle:WebAccess "Copyright *-* Novell, Inc" intitle:open-xchange inurl:login.pl
intitle:Ovislink inurl:private/login intitle:phpnews.login
intitle:plesk inurl:login.php3 inurl:"/admin/configuration. php?" Mystore inurl:"/slxweb.dll/external?name=(custportal|webticketcust)" inurl:"1220/parse_xml.cgi?"
inurl:"631/admin" (inurl:"op=*") | (intitle:CUPS) inurl:":10000" intext:webmin inurl:"Activex/default.htm" "Demo" inurl:"calendar.asp?action=login" inurl:"default/login.php" intitle:"kerio" inurl:"gs/adminlogin.aspx"
inurl:"php121login.php" inurl:"suse/login.pl" inurl:"typo3/index.php?u=" -demo inurl:"usysinfo?login=true" inurl:"utilities/TreeView.asp"
inurl:"vsadmin/login" | inurl:"vsadmin/admin" inurl:.php|.asp

Code:

nurl:/admin/login.asp
inurl:/cgi-bin/sqwebmail?noframes=1 inurl:/Citrix/Nfuse17/
inurl:/dana-na/auth/welcome.html inurl:/eprise/
inurl:/Merchant2/admin.mv | inurl:/Merchant2/admin.mvc | intitle:"Miva Merchant
Administration Login" -inurl:cheap-malboro.net inurl:/modcp/ intext:Moderator+vBulletin
inurl:/SUSAdmin intitle:"Microsoft Software upd?t? Services"

Seite 28

Liste-Google-Hacking V.2.1 inurl:/webedit.* intext:WebEdit Professional -html inurl:1810 "Oracle Enterprise Manager"
inurl:2000 intitle:RemotelyAnywhere -site:realvnc.com inurl::2082/frontend -demo
inurl:administrator "welcome to mambo"
inurl:bin.welcome.sh | inurl:bin.welcome.bat | intitle:eHealth.5.0 inurl:cgi-bin/ultimatebb.cgi?ubb=login inurl:Citrix/MetaFrame/default/default.aspx
inurl:confixx inurl:login|anmeldung
inurl:coranto.cgi intitle:Login (Authorized Users Only)
inurl:csCreatePro.cgi
inurl:default.asp intitle:"WebCommander" inurl:exchweb/bin/auth/owalogon.asp inurl:gnatsweb.pl
inurl:ids5web
inurl:irc filetype:cgi cgi:irc inurl:login filetype:swf swf inurl:login.asp
inurl:login.cfm
inurl:login.php "SquirrelMail version" inurl:metaframexp/default/login.asp | intitle:"Metaframe XP Login" inurl:mewebmail
inurl:names.nsf?opendatabase inurl:ocw_login_username inurl:orasso.wwsso_app_admin.ls_login inurl:postfixadmin intitle:"postfix admin" ext:php inurl:search/admin.php
inurl:textpattern/index.php inurl:WCP_USER inurl:webmail./index.pl "Interface"
inurl:webvpn.html "login" "Please enter your" Login ("
Jetbox One CMS â?¢" | " Jetstream ? *")
Novell NetWare intext:"netware management portal version" Outlook Web Access (a better way)
PhotoPost PHP Upload PHPhotoalbum Statistics PHPhotoalbum Upload phpWebMail
Please enter a valid password! inurl:polladmin

INDEXU
Ultima Online loginservers
W-Nailer Upload Area
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu
"#mysql dump" filetype:sql
"#mysql dump" filetype:sql 21232f297a57a5a743894a0e4a801fc3 "allow_call_time_pass_reference" "PATH_INFO"
"Certificate Practice Statement" inurl:(PDF | DOC) "Generated by phpSystem"
"generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Index of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp "MacHTTP" filetype:log inurl:machttp.log "Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"Most Submitted Forms and s?ri?ts" "this section" "Network Vulnerability Assessment Report"
"not for distribution" confidential
"not for public release" -.edu -.gov -.mil
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"produced by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt

Seite 29

"Running in Child mode" "sets mode: +p"
"sets mode: +s"

Liste-Google-Hacking V.2.1

"Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intext:password|subject
(intitle:"PRTG Traffic Grapher" inurl:"allsensors")|(intitle:"PRTG Traffic
Grapher - Monitoring Results")
(intitle:WebStatistica inurl:main.php) | (intitle:"WebSTATISTICA server")
-inurl:statsoft -inurl:statsoftsa -inurl:statsoftinc.com -edu -software -rob
(inurl:"robot.txt" | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt
+"HSTSNR" -"netop.com"
-site:php.net -"The PHP Group" inurl:source inurl:url ext:pHp
94FBR "ADOBE PHOTOSHOP" AIM buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:cdkey.txt allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf contacts ext:wml
data filetype:mdb -site:gov -site:mil exported email addresses
ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw | psw | ppt | pps | xml) (intext:confidential salary | intext:"budget approved") inurl:confidential ext:asp inurl:pathto.asp
ext:ccm ccm -catacomb ext:CDX CDX
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho ext:ics ics
ext:ini intext:env.ini ext:jbf jbf
ext:ldif ldif
ext:log "Software: Microsoft Internet Information Services *.*" ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil
ext:plist filetype:plist inurl:bookmarks.plist ext:pqi pqi -database
ext:reg "username=*" putty ext:txt "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:bkf bkf filetype:blt "buddylist" filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:"Subject" +intext:"From" +intext:"To" filetype:fp3 fp3
filetype:fp5 fp5 -site:gov -site:mil -"cvs log" filetype:fp7 fp7
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key filetype:log access.log -CVS filetype:log cron.log

Seite 30

Liste-Google-Hacking V.2.1 filetype:mbx mbx intext:Subject
filetype:myd myd -CVS filetype:ns1 ns1 filetype:ora ora filetype:ora tnsnames
filetype:pdb pdb backup (Pilot | Pluckerdb)
filetype:php inurl:index inurl:phpicalendar -site:sourceforge.net filetype:pot inurl:john.pot
filetype:PS ps
filetype:pst inurl:"outlook.pst" filetype:pst pst -from -to -date filetype:qbb qbb
filetype:QBW qbw filetype:rdp rdp
filetype:reg "Terminal Server Client" filetype:vcs vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:"email.xls" Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl (one way) haccess.ctl (VERY reliable) ICQ chat logs, please...
intext:"Session Start * * * *:*:* *" filetype:log intext:"Tobias Oetiker" "traffic analysis"
intext:(password | passcode) intext:(username | userid | user) filetype:csv intext:gmail invite intext:http://gmail.google.com/gmail/a intext:SQLiteManager inurl:main.php
intext:ViewCVS inurl:Settings.php intitle:"admin panel" +" RedKernel"
intitle:"Apache::Status" (inurl:server-status | inurl:status.html |
inurl:apache.html)
intitle:"AppServ Open Project" -site:www.appservnetwork.com
intitle:"ASP Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intitle:"Big Sister" +"OK Attention Trouble"
intitle:"curriculum vitae" filetype:doc intitle:"edna:streaming mp3 server" -forums intitle:"FTP root at"
intitle:"index of" +myd size
intitle:"Index Of" -inurl:maillog maillog size intitle:"Index Of" cookies.txt size intitle:"index of" mysql.conf OR mysql_config intitle:"Index of" upload size parent directory
intitle:"index.of *" admin news.asp configview.asp intitle:"index.of" .diz .nfo last modified intitle:"Joomla - Web Installer"
intitle:"LOGREP - Log file reporting system" -site:itefix.no intitle:"Multimon UPS status page"
intitle:"PHP Advanced Transfer" (inurl:index.php | inurl:showrecent.php )
intitle:"PhpMyExplorer" inurl:"index.php" -cvs intitle:"statistics of" "advanced web statistics"
intitle:"System Statistics" +"System and Network Information Center" intitle:"urchin (5|3|admin)" ext:cgi
intitle:"Usage Statistics for" "Generated by Webalizer" intitle:"wbem" compaq login "Compaq Information Technologies Group" intitle:"Web Server Statistics for ****"
intitle:"web server status" SSH Telnet
intitle:"Welcome to F-Secure Policy Manager Server Welcome Page" intitle:"welcome.to.squeezebox"
intitle:admin intitle:login
intitle:Bookmarks inurl:bookmarks.html "Bookmarks intitle:index.of "Apache" "server at" intitle:index.of cleanup.log
intitle:index.of dead.letter intitle:index.of inbox

Seite 31

intitle:index.of inbox dbx intitle:index.of ws_ftp.ini

Liste-Google-Hacking V.2.1

intitle:intranet inurl:intranet +intext:"phone" inurl:"/axs/ax-admin.pl" -s?ri?t inurl:"/cricket/grapher.cgi" inurl:"bookmark.htm"
inurl:"cacti" +inurl:"graph_view.php" +"Settings Tree View" -cvs -RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/" intitle:"newsletter admin" inurl:"putty.reg"
inurl:"smb.conf" intext:"workgroup" filetype:conf conf inurl:*db filetype:mdb
inurl:/cgi-bin/pass.txt inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:build.err
inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe "Please distribute TestCGI" inurl:changepassword.asp
inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to phpMyAdmin inurl:netscape.hst
inurl:netscape.hst inurl:netscape.ini inurl:odbc.ini ext:ini -cvs inurl:perl/printenv inurl:php.ini filetype:ini inurl:preferences.ini "[emule]" inurl:profiles filetype:mdb
inurl:report "EVEREST Home Edition " inurl:server-info "Apache Server Information" inurl:server-status "apache" inurl:snitz_forums_2000.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php "page generated"
inurl:wp-mail.php + "There doesn't seem to be any new mail." inurl:XcCDONTS.asp
ipsec.conf ipsec.secrets ipsec.secrets
Lotus Domino address books
mail filetype:csv -site:gov intext:name
Microsoft Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml - Trillian data files OWA Public Folders (direct view) Peoples MSN contact lists
php-addressbook "This is the addressbook for *" -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private key files (.csr) private key files (.key) Quicken data files
rdbqds -site:.edu -site:.mil -site:.gov robots.txt
site:edu admin grades

Seite 32

Liste-Google-Hacking V.2.1 site:www.mailinator.com inurl:ShowMail.do
SQL data dumps
Squid cache server reports
Unreal IRCd WebLog Referrers Welcome to ntop!
Fichier contenant des informations sur le r?seau :
filetype:log intext:"ConnectionManager2" "apricot - admin" 00h
"by Reimar Hoven. All Rights Reserved. Disclaimer" | inurl:"log/logdb.dta" "Network Host Assessment Report" "Internet Scanner"
"Output produced by SysWatch *"
"Phorum Admin" "Database Connection" inurl:forum inurl:admin phpOpenTracker" Statistics
"powered | performed by Beyond Security's Automated Scanning" -kazaa -example
"Shadow Security Scanner performed a vulnerability assessment" "SnortSnarf alert page"
"The following report contains confidential information" vulnerability -search
"The statistics were last upd?t?d" "Daily"-microsoft.com "this proxy is working fine!" "enter *" "URL***" * visit "This report lists" "identified by Internet Scanner" "Traffic Analysis for" "RMON Port * on unit *"
"Version Info" "Boot Version" "Internet Settings"
((inurl:ifgraph "Page generated at") OR ("This page was built using ifgraph")) Analysis Console for Incident Databases
ext:cfg radius.cfg
ext:cgi intext:"nrg-" " This web page was created on " filetype:pdf "Assessment Report" nessus
filetype:php inurl:ipinfo.php "Distributed Intrusion Detection System" filetype:php inurl:nqt intext:"Network Query Tool"
filetype:vsd vsd network -samples -examples
intext:"Welcome to the Web V.Networks" intitle:"V.Networks [Top]" -filetype:htm intitle:"ADSL Configuration page"
intitle:"Azureus : Java BitTorrent Client Tracker"
intitle:"Belarc Advisor Current Profile" intext:"Click here for Belarc's PC Management products, for large and small companies."
intitle:"BNBT Tracker Info" intitle:"Microsoft Site Server Analysis"
intitle:"Nessus Scan Report" "This file was generated by Nessus" intitle:"PHPBTTracker Statistics" | intitle:"PHPBT Tracker Statistics" intitle:"Retina Report" "CONFIDENTIAL INFORMATION" intitle:"start.managing.the.device" remote pbx acc
intitle:"sysinfo * " intext:"Generated by Sysinfo * written by The Gamblers." intitle:"twiki" inurl:"TWikiUsers"
inurl:"/catalog.nsf" intitle:catalog inurl:"install/install.php" inurl:"map.asp?" intitle:"WhatsUp Gold"
inurl:"NmConsole/Login.asp" | intitle:"Login - Ipswitch WhatsUp Professional
2005" | intext:"Ipswitch WhatsUp Professional 2005 (SP1)" "Ipswitch, Inc" inurl:"sitescope.html" intitle:"sitescope" intext:"refresh" -demo inurl:/adm-cfgedit.php
inurl:/cgi-bin/finger? "In real life"
inurl:/cgi-bin/finger? Enter (account|host|user|username) inurl:/counter/index.php intitle:"+PHPCounter 7.*" inurl:CrazyWWWBoard.cgi intext:"detailed debugging information" inurl:login.jsp.bak
inurl:ovcgi/jovw
inurl:phpSysInfo/ "created by phpsysinfo" inurl:portscan.php "from Port"|"Port Range"
inurl:proxy | inurl:wpad ext:pac | ext:dat findproxyforurl inurl:statrep.nsf -gov
inurl:status.cgi?host=all inurl:testcgi xitami
inurl:webalizer filetype:png -.gov -.edu -.mil -opendarwin inurl:webutil.pl
Looking Glass
site:netcraft.com intitle:That.Site.Running Apache
"A syntax error has occurred" filetype:ihtml

Seite 33

Liste-Google-Hacking V.2.1 "access denied for user" "using password"
"An illegal character has been found in the statement" -"previous message" "ASP.NET_SessionId" "data source="
"Can't connect to local" intitle:warning
"Chatologica MetaSearch" "stack tracking"
"detected an internal error [IBM][CLI Driver][DB2/6000]" "error found handling the request" cocoon filetype:xml "Fatal error: Call to undefined function" -reply -the -next "Incorrect syntax near"
"Incorrect syntax near"
"Internal Server Error" "server at" "Invision Power Board Database Error"
"ORA-00933: SQL command not properly ended"
"ORA-12541: TNS:no listener" intitle:"error occurred"
"Parse error: parse error, unexpected T_VARIABLE" "on line" filetype:php
"PostgreSQL query failed: ERROR: parser: parse error" "Supplied argument is not a valid MySQL result resource" "Syntax error in query expression " -the
"The s?ri?t whose uid is " "is not allowed to access"
"There seems to have been a problem with the" " Please try again by clicking the
Refresh button in your web browser."
"Unable to jump to row" "on MySQL result index" "on line" "Unclosed quotation mark before the character string"
"Warning: Bad arguments to (join|implode) () in" "on line" -help -forum "Warning: Cannot modify header information - headers already sent" "Warning: Division by zero in" "on line" -forum

"Warning: mysql_connect(): Access denied for user: '*@*" "on line" -help -forum
"Warning: mysql_query()" "invalid query"
"Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL" "Warning: Supplied argument is not a valid File-Handle resource in" "Warning:" "failed to open stream: HTTP request failed" "on line"
"Warning:" "SAFE MODE Restriction in effect." "The s?ri?t whose uid is" "is not allowed to access owned by uid 0 in" "on line"
"SQL Server Driver][SQL Server]Line 1: Incorrect syntax near" An unexpected token "END-OF-STATEMENT" was found
Coldfusion Error Pages filetype:asp + "[ODBC SQL"
filetype:asp "Custom Error Message" Category Source filetype:log "PHP Parse error" | "PHP Warning" | "PHP Error" filetype:php inurl:"logging.php" "Discuz" error
ht://Dig htsearch error
IIS 4.0 error messages
IIS web server error messages
Internal Server Error
intext:"Error Message : Error loading required libraries." intext:"Warning: Failed opening" "on line" "include_path" intitle:"Apache Tomcat" "Error Report"
intitle:"Default PLESK Page"
intitle:"Error Occurred While Processing Request" +WHERE (SELECT|INSERT)
filetype:cfm
intitle:"Error Occurred" "The error occurred in" filetype:cfm intitle:"Error using Hypernews" "Server Software" intitle:"Execution of this s?ri?t not permitted" intitle:"Under construction" "does not currently have" intitle:Configuration.File inurl:softcart.exe
MYSQL error message: supplied argument.... mysql error with query
Netscape Application Server Error page ORA-00921: unexpected end of SQL command ORA-00921: unexpected end of SQL command ORA-00936: missing expression
PHP application warnings failing "include_path" sitebuildercontent
sitebuilderfiles sitebuilderpictures
Snitz! forums db path error
SQL syntax error

Seite 34

Liste-Google-Hacking V.2.1
Supplied argument is not a valid PostgreSQL result warning "error on line" php sablotron
Windows 2000 web server error messages
"ftp://" "www.eastgame.net" "html allowed" guestbook
: vBulletin Version 1.1.5"
"Select a database to view" intitle:"filemaker pro" "set up the administrator user" inurl:pivot
"There are no Administrators Accounts" inurl:admin.php -mysql_fetch_row "Welcome to Administration" "General" "Local Domains" "SMTP Authentication" inurl:admin
"Welcome to Intranet"
"Welcome to PHP-Nuke" congratulations
"Welcome to the Prestige Web-Based Configurator" "YaBB SE Dev Team"
"you can now password" | "this is a special page only seen by you. your profile visitors" inurl:imchaos
("Indexed.By"|"Monitored.By") hAcxFtpScan (inurl:/shop.cgi/page=) | (inurl:/shop.pl/page=) allinurl:"index.php" "site=sglinks" allinurl:install/install.php
allinurl:intranet admin filetype:cgi inurl:"fileman.cgi" filetype:cgi inurl:"Web_Store.cgi" filetype:php inurl:vAuthenticate filetype:pl intitle:"Ultraboard Setup" Gallery in configuration mode
Hassan Consulting's Shopping Cart Version 1.18 intext:"Warning: * am able * write ** configuration file" "includes/configure.php" -
intitle:"Gateway Configuration Menu" intitle:"Horde :: My Portal" -"[Tickets" intitle:"Mail Server CMailServer Webmail" "5.2" intitle:"MvBlog powered"
intitle:"Remote Desktop Web Connection"
intitle:"Samba Web Administration Tool" intext:"Help Workgroup" intitle:"Terminal Services Web Connection"
intitle:"Uploader - Uploader v6" -pixloads.com
intitle:osCommerce inurl:admin intext:"redistributable under the GNU" intext:"Online Catalog" -demo -site:oscommerce.com
intitle:phpMyAdmin "Welcome to phpMyAdmin ***" "running on * as root@*" intitle:phpMyAdmin "Welcome to phpMyAdmin ***" "running on * as root@*" inurl:"/NSearch/AdminServlet"
inurl:"index.php? module=ew_filemanager" inurl:aol*/_do/rss_popup?blogID= inurl:footer.inc.php
inurl:info.inc.php inurl:ManyServers.htm inurl:newsdesk.cgi? inurl:"t=" inurl:pls/admin_/gateway.htm inurl:rpSys.html inurl:search.php vbulletin inurl:servlet/webacc
natterchat inurl:home.asp -site:natterchat.co.uk
XOOPS Custom Installation inurl:htpasswd filetype:htpasswd inurl:yapboz_detay.asp + View Webcam User Accessing allinurl:control/multiview
inurl:"ViewerFrame?Mode=" intitle:"WJ-NT104 Main Page" inurl:netw_tcp.shtml intitle:"supervisioncam protocol" admin account info” filetype:log
!Host=*.* intext:enc_UserPassword=* ext:pcf
“# -FrontPage-” ext:pwd inurl:(service | authors | administrators | users) “#
-FrontPage-” inurl:service.pwd “AutoCreate=TRUE password=*” “http://*:*@www” domainname

Seite 35

Liste-Google-Hacking V.2.1 “index of/” “ws_ftp.ini” “parent directory”
“liveice configuration file” ext:cfg -site:sourceforge.net
“parent directory” +proftpdpasswd
Duclassified” -site:duware.com “DUware All Rights reserved”
duclassmate” -site:duware.com Dudirectory” -site:duware.com dudownload” -site:duware.com Elite Forum Version *.*”
Link Department” “sets mode: +k”
“your password is” filetype:log DUpaypal” -site:duware.com allinurl: admin mdb auth_user_file.txt
config.php
eggdrop filetype:user user
enable password | secret “current configuration” -intext:the etc (index.of)
ext:asa | ext:bak intext:uid intext:pwd -”uid..pwd” database | server | dsn ext:inc “pwd=” “UID=”
ext:ini eudora.ini
ext:ini Version=4.0.0.4 password ext:passwd -intext:the -sample -example ext:txt inurl:unattend.txt
ext:yml database inurl:config filetype:bak createobject sa
filetype:bak inurl:”htaccess|passwd|shadow|htusers”
filetype:cfg mrtg “target
filetype:cfm “cfapplication name” password filetype:conf oekakibbs
filetype:conf slapd.conf
filetype:config config intext:appSettings “User ID”
filetype:dat “password.dat” filetype:dat inurl:Sites.dat filetype:dat wand.dat filetype:inc dbconn
filetype:inc intext:mysql_connect filetype:inc mysql_connect OR mysql_pconnect filetype:inf sysprep
filetype:ini inurl:”serv-u.ini” filetype:ini inurl:flashFXP.ini filetype:ini ServUDaemon filetype:ini wcx_ftp filetype:ini ws_ftp pwd filetype:ldb admin
filetype:log “See `ipsec –copyright” filetype:log inurl:”password.log” filetype:mdb inurl:users.mdb filetype:mdb wwforum
filetype:netrc password filetype:pass pass intext:userid filetype:pem intext:private
filetype:properties inurl:db intext:password filetype:pwd service
filetype:pwl pwl
filetype:reg reg +intext:”defaultusername” +intext:”defaultpassword”
filetype:reg reg +intext:â? WINVNC3â? filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS filetype:sql “insert into” (pass|passwd|password)
filetype:sql (“values * MD5? | “values * password” | “values * encrypt”)
filetype:sql +”IDENTIFIED BY” -cvs filetype:sql password
filetype:url +inurl:”ftp://” +inurl:”;@” filetype:xls username password email htpasswd
htpasswd / htgroup htpasswd / htpasswd.bak intext:”enable password 7?

Seite 36

intext:”enable secret 5 $” intext:”EZGuestbook” intext:”Web Wiz Journal”

Liste-Google-Hacking V.2.1

intitle:”index of” intext:connect.inc intitle:”index of” intext:globals.inc intitle:”Index of” passwords modified intitle:”Index of” sc_serv.conf sc_serv content
intitle:”phpinfo()” +”mysql.default_password” +”Zend s?ri?ting Language Engine”
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:Index.of etc shadow
intitle:index.of intext:”secring.skr”|”secring.pgp”|”secring.bak”
intitle:rapidshare intext:login inurl:”calendars?ri?t/users.txt”
inurl:”editor/list.asp” | inurl:”database_editor.asp” | inurl:”login.asa” “are set”
inurl:”GRC.DAT” intext:”password”
inurl:”Sites.dat”+”PASS=”
inurl:”slapd.conf” intext:”credentials” -manpage -”Manual Page” -man: -sample inurl:”slapd.conf” intext:”rootpw” -manpage -”Manual Page” -man: -sample inurl:”wvdial.conf” intext:”password”
inurl:/db/main.mdb inurl:/wwwboard inurl:/yabb/Members/Admin.dat inurl:ccbill filetype:log inurl:cgi-bin inurl:calendar.cfg inurl:chap-secrets -cvs inurl:config.php dbuname dbpass inurl:filezilla.xml -cvs
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:nuke filetype:sql
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pap-secrets -cvs
inurl:pass.dat inurl:perform filetype:ini inurl:perform.ini filetype:ini inurl:secring ext:skr | ext:pgp | ext:bak inurl:server.cfg rcon password inurl:ventrilo_srv.ini adminpassword inurl:vtund.conf intext:pass -cvs
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:”index.of./” sites.ini modified master.passwd
mysql history files
NickServ registration passwords passlist
passlist.txt (a better way)
passwd
passwd / etc (reliable)
people.lst
psyBNC config files pwd.db
server-dbs “intitle:index of”
signin filetype:url spwd.db / passwd trillian.ini
wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin
[WFClient] Password= filetype:ica intitle:”remote assessment” OpenAanval Console
intitle:opengroupware.org “resistance is obsolete” “Report Bugs” “Username” “password”
“bp blog admin” intitle:login | intitle:admin -site:johnny.ihackstuff.com
“Emergisoft web applications are a part of our”
“Establishing a secure Integrated Lights Out session with” OR intitle:”Data Frame – Browser not HTTP 1.1 compatible” OR intitle:”HP Integrated Lights- “HostingAccelerator” intitle:”login” +”Username” -”news” -demo
“iCONECT 4.1 :: Login”

Seite 37

Liste-Google-Hacking V.2.1 “IMail Server Web Messaging” intitle:login
“inspanel” intitle:”login” -”cannot” “Login ID” -site:inspediumsoft.com
“intitle:3300 Integrated Communications Platform” inurl:main.htm
“Login – Sun Cobalt RaQ” “login prompt” inurl:GM.cgi “Login to Usermin” inurl:20000
“Microsoft CRM : Unsupported Browser Version” “OPENSRS Domain Management” inurl:manage.cgi “pcANYWHERE EXPRESS Java Client”
“Please authenticate yourself to get access to the management interface” “please log in”
“Please login with admin pass” -”leak” -sourceforge
CuteNews” “2003..2005 CutePHP” DWMail” password intitle:dwmail
Merak Mail Server Software” -.gov -.mil -.edu -site:merakmailserver.com
Midmart Messageboard” “Administrator Login” Monster Top List” MTL numrange:200- UebiMiau” -site:sourceforge.net
“site info for” “Enter Admin Password”
“SquirrelMail version” “By the SquirrelMail development Team” “SysCP – login”
“This is a restricted Access Server” “Javas?ri?t Not Enabled!”|”Messenger
Express” -edu -ac
“This section is for Administrators only. If you are an administrator then please”
“ttawlogin.cgi/?action=” “VHCS Pro ver” -demo
“VNC Desktop” inurl:5800
“Web-Based Management” “Please input password to login”
-inurl:johnny.ihackstuff.com
“WebExplorer Server – Login” “Welcome to WebExplorer Server” “WebSTAR Mail – Please Log In”
“You have requested access to a restricted area of our website. Please authenticate yourself to continue.”
“You have requested to access the management functions” -.edu
(intitle:”Please login – Forums UBB.threads”)|(inurl:login.php “ubb”) (intitle:”Please login – Forums
WWWThreads”)|(inurl:”wwwthreads/login.php”)|(inurl:”wwwthreads/login.pl?Cat=”) (intitle:”rymo Login”)|(intext:”Welcome to rymo”) -family
(intitle:”WmSC e-Cart Administration”)|(intitle:”WebMyStyle e-Cart
Administration”)
(inurl:”ars/cgi-bin/arweb?O=0? | inurl:arweb.jsp) -site:remedy.com -site:mil
4images Administration Control Panel allintitle:”Welcome to the Cyclades” allinurl:”exchange/logon.asp” allinurl:wps/portal/ login ASP.login_aspx “ASP.NET_SessionId” CGI:IRC Login
ext:cgi intitle:”control panel” “enter your owner password to continue!”
ez Publish administration filetype:php inurl:”webeditor.php”
filetype:pl “Download: SuSE Linux Openexchange Server CA”
filetype:r2w r2w
intext:”"BiTBOARD v2.0? BiTSHiFTERS Bulletin Board”
intext:”Fill out the form below completely to change your password and user name. If new username is left blank, your old one will be assumed.” -edu intext:”Mail admins login here to administrate your domain.”
intext:”Master Account” “Domain Name” “Password” inurl:/cgi-bin/qmailadmin intext:”Master Account” “Domain Name” “Password” inurl:/cgi-bin/qmailadmin intext:”Storage Management Server for” intitle:”Server Administration” intext:”Welcome to” inurl:”cp” intitle:”H-SPHERE” inurl:”begin.html” -Fee intext:”vbulletin” inurl:admincp
intitle:”*- HP WBEM Login” | “You are being prompted to provide login account information for *” | “Please provide the information requested and press intitle:”Admin Login” “admin login” “blogware”
intitle:”Admin login” “Web Site Administration” “Copyright”
intitle:”AlternC Desktop”

Seite 38

Liste-Google-Hacking V.2.1 intitle:”Athens Authentication Point”
intitle:”b2evo > Login form” “Login form. You must log in! You will have to accept cookies in order to log in” -demo -site:b2evolution.net
intitle:”Cisco CallManager User Options Log On” “Please enter your User ID and Password in the spaces provided below and click the Log On button to co intitle:”ColdFusion Administrator Login”
intitle:”communigate pro * *” intitle:”entrance”
intitle:”Content Management System” “user name”|”password”|”admin” “Microsoft IE
5.5? -mambo
intitle:”Content Management System” “user name”|”password”|”admin” “Microsoft IE
5.5? -mambo
intitle:”Dell Remote Access Controller” intitle:”Docutek ERes – Admin Login” -edu intitle:”Employee Intranet Login”
intitle:”eMule *” intitle:”- Web Control Panel” intext:”Web Control Panel” “Enter your password here.”
intitle:”ePowerSwitch Login”
intitle:”eXist Database Administration” -demo intitle:”EXTRANET * – Identification” intitle:”EXTRANET login” -.edu -.mil -.gov intitle:”EZPartner” -netpond
intitle:”Flash Operator Panel” -ext:php -wiki -cms -inurl:asternic -inurl:sip
-intitle:ANNOUNCE -inurl:lists intitle:”i-secure v1.1? -edu intitle:”Icecast Administration Admin Page” intitle:”iDevAffiliate – admin” -demo
intitle:”ISPMan : Unauthorized Access prohibited”
intitle:”ITS System Information” “Please log on to the SAP System” intitle:”Kurant Corporation StoreSense” filetype:bok intitle:”ListMail Login” admin -demo
intitle:”Login -
Easy File Sharing Web Server”
intitle:”Login Forum
AnyBoard” intitle:”If you are a new user:” intext:”Forum
AnyBoard” inurl:gochat -edu
intitle:”Login to @Mail” (ext:pl | inurl:”index”) -dwaffleman intitle:”Login to Cacti”
intitle:”Login to the forums – @www.aimoo.com” inurl:login.cfm?id=
intitle:”MailMan Login”
intitle:”Member Login” “NOTE: Your browser must have cookies enabled in order to log into the site.” ext:php OR ext:cgi
intitle:”Merak Mail Server Web Administration” -ihackstuff.com intitle:”microsoft certificate services” inurl:certsrv intitle:”MikroTik RouterOS Managing Webpage”
intitle:”MX Control Console” “If you can’t remember”
intitle:”Novell Web Services” “GroupWise” -inurl:”doc/11924? -.mil -.edu -.gov
-filetype:pdf
intitle:”Novell Web Services” intext:”Select a service and a language.” intitle:”oMail-admin Administration – Login” -inurl:omnis.ch intitle:”OnLine Recruitment Program – Login”
intitle:”Philex 0.2*” -s?ri?t -site:freelists.org intitle:”PHP Advanced Transfer” inurl:”login.php” intitle:”php icalendar administration” -site:sourceforge.net intitle:”php icalendar administration” -site:sourceforge.net intitle:”phpPgAdmin – Login” Language
intitle:”PHProjekt – login” login password intitle:”please login” “your password is *” intitle:”Remote Desktop Web Connection” inurl:tsweb
intitle:”SFXAdmin – sfx_global” | intitle:”SFXAdmin – sfx_local” |
intitle:”SFXAdmin – sfx_test”
intitle:”SHOUTcast Administrator” inurl:admin.cgi
intitle:”site administration: please log in” “site designed by emarketsouth”
intitle:”Supero Doctor III” -inurl:supermicro
intitle:”SuSE Linux Openexchange Server” “Please activate Javas?ri?t!”
intitle:”teamspeak server-administration intitle:”Tomcat Server Administration” intitle:”TOPdesk ApplicationServer” intitle:”TUTOS Login”

Seite 39

intitle:”TWIG Login”

Liste-Google-Hacking V.2.1

intitle:”vhost” intext:”vHost . 2000-2004? intitle:”Virtual Server Administration System” intitle:”VisNetic WebMail” inurl:”/mail/” intitle:”VitalQIP IP Management System”
intitle:”VMware Management Interface:” inurl:”vmware/en/”
intitle:”VNC viewer for Java”
intitle:”web-cyradm”|”by Luc de Louw” “This is only for authorized users”
-tar.gz -site:web-cyradm.org
intitle:”WebLogic Server” intitle:”Console Login” inurl:console intitle:”Welcome Site/User Administrator” “Please select the language” -demos intitle:”Welcome to Mailtraq WebMail”
intitle:”welcome to netware *” -site:novell.com intitle:”WorldClient” intext:”? (2003|2004) Alt-N Technologies.” intitle:”xams 0.0.0..15 – Login”
intitle:”XcAuctionLite” | “DRIVEN BY XCENT” Lite inurl:admin intitle:”XMail Web Administration Interface” intext:Login intext:password intitle:”Zope Help System” inurl:HelpSys
intitle:”ZyXEL Prestige Router” “Enter password”
intitle:”inc. vpn 3000 concentrator”
intitle:(“TrackerCam Live Video”)|(“TrackerCam Application Login”)|(“Trackercam
Remote”) -trackercam.com intitle:asterisk.management.portal web-access intitle:endymion.sak?.mail.login.page | inurl:sake.servlet intitle:Group-Office “Enter your username and password to login” intitle:ilohamail ”
IlohaMail”
intitle:ilohamail intext:”Version 0.8.10? ” IlohaMail”
intitle:IMP inurl:imp/index.php3 intitle:Login * Webmailer
intitle:Login intext:”RT is ? Copyright”
intitle:Node.List Win32.Version.3.11
intitle:Novell intitle:WebAccess “Copyright *-* Novell, Inc”
intitle:open-xchange inurl:login.pl intitle:Ovislink inurl:private/login intitle:phpnews.login
intitle:plesk inurl:login.php3 inurl:”/admin/configuration. php?” Mystore inurl:”/slxweb.dll/external?name=(custportal|webticketcust)” inurl:”1220/parse_xml.cgi?”
inurl:”631/admin” (inurl:”op=*”) | (intitle:CUPS) inurl:”:10000? intext:webmin inurl:”Activex/default.htm” “Demo” inurl:”calendar.asp?action=login” inurl:”default/login.php” intitle:”kerio” inurl:”gs/adminlogin.aspx”
inurl:”php121login.php” inurl:”suse/login.pl” inurl:”typo3/index.php?u=” -demo inurl:”usysinfo?login=true” inurl:”utilities/TreeView.asp”
inurl:”vsadmin/login” | inurl:”vsadmin/admin” inurl:.php|.asp

Code:

nurl:/admin/login.asp
inurl:/cgi-bin/sqwebmail?noframes=1 inurl:/Citrix/Nfuse17/
inurl:/dana-na/auth/welcome.html inurl:/eprise/
inurl:/Merchant2/admin.mv | inurl:/Merchant2/admin.mvc | intitle:”Miva Merchant
Administration Login” -inurl:cheap-malboro.net inurl:/modcp/ intext:Moderator+vBulletin
inurl:/SUSAdmin intitle:”Microsoft Software upd?t? Services”
inurl:/webedit.* intext:WebEdit Professional -html inurl:1810 “Oracle Enterprise Manager”
inurl:2000 intitle:RemotelyAnywhere -site:realvnc.com

Seite 40

inurl::2082/frontend -demo

Liste-Google-Hacking V.2.1

inurl:administrator “welcome to mambo”
inurl:bin.welcome.sh | inurl:bin.welcome.bat | intitle:eHealth.5.0 inurl:cgi-bin/ultimatebb.cgi?ubb=login inurl:Citrix/MetaFrame/default/default.aspx
inurl:confixx inurl:login|anmeldung
inurl:coranto.cgi intitle:Login (Authorized Users Only)
inurl:csCreatePro.cgi
inurl:default.asp intitle:”WebCommander” inurl:exchweb/bin/auth/owalogon.asp inurl:gnatsweb.pl
inurl:ids5web
inurl:irc filetype:cgi cgi:irc inurl:login filetype:swf swf inurl:login.asp
inurl:login.cfm
inurl:login.php “SquirrelMail version” inurl:metaframexp/default/login.asp | intitle:”Metaframe XP Login” inurl:mewebmail
inurl:names.nsf?opendatabase inurl:ocw_login_username inurl:orasso.wwsso_app_admin.ls_login inurl:postfixadmin intitle:”postfix admin” ext:php inurl:search/admin.php
inurl:textpattern/index.php inurl:WCP_USER inurl:webmail./index.pl “Interface”
inurl:webvpn.html “login” “Please enter your” Login (”
Jetbox One CMS â?¢” | ” Jetstream ? *”)
Novell NetWare intext:”netware management portal version” Outlook Web Access (a better way)
PhotoPost PHP Upload PHPhotoalbum Statistics PHPhotoalbum Upload phpWebMail
Please enter a valid password! inurl:polladmin

INDEXU
Ultima Online loginservers
W-Nailer Upload Area
intitle:”DocuShare” inurl:”docushare/dsweb/” -faq -gov -edu
“#mysql dump” filetype:sql
“#mysql dump” filetype:sql 21232f297a57a5a743894a0e4a801fc3 “allow_call_time_pass_reference” “PATH_INFO”
“Certificate Practice Statement” inurl:(PDF | DOC) “Generated by phpSystem”
“generated by wwwstat”
“Host Vulnerability Summary Report” “HTTP_FROM=googlebot” googlebot.com “Server_Software=” “Index of” / “chat/logs”
“Installed Objects Scanner” inurl:default.asp “MacHTTP” filetype:log inurl:machttp.log “Mecury Version” “Infastructure Group”
“Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)” ext:log
“Most Submitted Forms and s?ri?ts” “this section” “Network Vulnerability Assessment Report”
“not for distribution” confidential
“not for public release” -.edu -.gov -.mil
“phone * * *” “address *” “e-mail” intitle:”curriculum vitae” “phpMyAdmin” “running on” inurl:”main.php”
“produced by getstats”
“Request Details” “Control Tree” “Server Variables” “robots.txt” “Disallow:” filetype:txt
“Running in Child mode” “sets mode: +p”
“sets mode: +s”

Seite 41

Liste-Google-Hacking V.2.1 “Thank you for your order” +receipt
“This is a Shareaza Node”
“This report was generated by WebLog”
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intext:password|subject
(intitle:”PRTG Traffic Grapher” inurl:”allsensors”)|(intitle:”PRTG Traffic
Grapher – Monitoring Results”)
(intitle:WebStatistica inurl:main.php) | (intitle:”WebSTATISTICA server”)
-inurl:statsoft -inurl:statsoftsa -inurl:statsoftinc.com -edu -software -rob
(inurl:”robot.txt” | inurl:”robots.txt” ) intext:disallow filetype:txt
+”:8080? +”:3128? +”:80? filetype:txt
+”HSTSNR” -”netop.com”
-site:php.net -”The PHP Group” inurl:source inurl:url ext:pHp
94FBR “ADOBE PHOTOSHOP” AIM buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:cdkey.txt allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf contacts ext:wml
data filetype:mdb -site:gov -site:mil exported email addresses
ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw | psw | ppt | pps | xml) (intext:confidential salary | intext:”budget approved”) inurl:confidential ext:asp inurl:pathto.asp
ext:ccm ccm -catacomb ext:CDX CDX
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho ext:ics ics
ext:ini intext:env.ini ext:jbf jbf
ext:ldif ldif
ext:log “Software: Microsoft Internet Information Services *.*”
ext:mdb inurl:*.mdb inurl:fpdb shop.mdb ext:nsf nsf -gov -mil
ext:plist filetype:plist inurl:bookmarks.plist ext:pqi pqi -database
ext:reg “username=*” putty ext:txt “Final encryption key” ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=” * Server.MapPath(“*.mdb”)
filetype:bkf bkf filetype:blt “buddylist” filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:”Subject” +intext:”From” +intext:”To”
filetype:fp3 fp3
filetype:fp5 fp5 -site:gov -site:mil -”cvs log”
filetype:fp7 fp7
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key filetype:log access.log -CVS filetype:log cron.log filetype:mbx mbx intext:Subject filetype:myd myd -CVS filetype:ns1 ns1

Seite 42

filetype:ora ora filetype:ora tnsnames

Liste-Google-Hacking V.2.1

filetype:pdb pdb backup (Pilot | Pluckerdb)
filetype:php inurl:index inurl:phpicalendar -site:sourceforge.net filetype:pot inurl:john.pot
filetype:PS ps
filetype:pst inurl:”outlook.pst” filetype:pst pst -from -to -date filetype:qbb qbb
filetype:QBW qbw filetype:rdp rdp
filetype:reg “Terminal Server Client”
filetype:vcs vcs filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:”email.xls” Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl (one way) haccess.ctl (VERY reliable) ICQ chat logs, please…
intext:”Session Start * * * *:*:* *” filetype:log intext:”Tobias Oetiker” “traffic analysis”
intext:(password | passcode) intext:(username | userid | user) filetype:csv intext:gmail invite intext:http://gmail.google.com/gmail/a intext:SQLiteManager inurl:main.php
intext:ViewCVS inurl:Settings.php intitle:”admin panel” +” RedKernel”
intitle:”Apache::Status” (inurl:server-status | inurl:status.html |
inurl:apache.html)
intitle:”AppServ Open Project” -site:www.appservnetwork.com
intitle:”ASP Stats Generator *.*” “ASP Stats Generator” “2003-2004 weppos”
intitle:”Big Sister” +”OK Attention Trouble” intitle:”curriculum vitae” filetype:doc intitle:”edna:streaming mp3 server” -forums intitle:”FTP root at”
intitle:”index of” +myd size
intitle:”Index Of” -inurl:maillog maillog size intitle:”Index Of” cookies.txt size intitle:”index of” mysql.conf OR mysql_config intitle:”Index of” upload size parent directory
intitle:”index.of *” admin news.asp configview.asp intitle:”index.of” .diz .nfo last modified intitle:”Joomla – Web Installer”
intitle:”LOGREP – Log file reporting system” -site:itefix.no intitle:”Multimon UPS status page”
intitle:”PHP Advanced Transfer” (inurl:index.php | inurl:showrecent.php )
intitle:”PhpMyExplorer” inurl:”index.php” -cvs intitle:”statistics of” “advanced web statistics”
intitle:”System Statistics” +”System and Network Information Center”
intitle:”urchin (5|3|admin)” ext:cgi
intitle:”Usage Statistics for” “Generated by Webalizer” intitle:”wbem” compaq login “Compaq Information Technologies Group” intitle:”Web Server Statistics for ****”
intitle:”web server status” SSH Telnet
intitle:”Welcome to F-Secure Policy Manager Server Welcome Page”
intitle:”welcome.to.squeezebox”
intitle:admin intitle:login
intitle:Bookmarks inurl:bookmarks.html “Bookmarks intitle:index.of “Apache” “server at” intitle:index.of cleanup.log
intitle:index.of dead.letter intitle:index.of inbox intitle:index.of inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet inurl:intranet +intext:”phone”

Seite 43

Liste-Google-Hacking V.2.1 inurl:”/axs/ax-admin.pl” -s?ri?t inurl:”/cricket/grapher.cgi”
inurl:”bookmark.htm”
inurl:”cacti” +inurl:”graph_view.php” +”Settings Tree View” -cvs -RPM
inurl:”newsletter/admin/”
inurl:”newsletter/admin/” intitle:”newsletter admin”
inurl:”putty.reg”
inurl:”smb.conf” intext:”workgroup” filetype:conf conf inurl:*db filetype:mdb
inurl:/cgi-bin/pass.txt inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:build.err
inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe “Please distribute TestCGI”
inurl:changepassword.asp inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to phpMyAdmin inurl:netscape.hst
inurl:netscape.hst inurl:netscape.ini inurl:odbc.ini ext:ini -cvs inurl:perl/printenv inurl:php.ini filetype:ini inurl:preferences.ini “[emule]” inurl:profiles filetype:mdb
inurl:report “EVEREST Home Edition ” inurl:server-info “Apache Server Information” inurl:server-status “apache” inurl:snitz_forums_2000.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php “page generated”
inurl:wp-mail.php + “There doesn’t seem to be any new mail.”
inurl:XcCDONTS.asp ipsec.conf ipsec.secrets ipsec.secrets
Lotus Domino address books
mail filetype:csv -site:gov intext:name
Microsoft Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml – Trillian data files OWA Public Folders (direct view) Peoples MSN contact lists
php-addressbook “This is the addressbook for *” -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private key files (.csr) private key files (.key) Quicken data files
rdbqds -site:.edu -site:.mil -site:.gov robots.txt
site:edu admin grades site:www.mailinator.com inurl:ShowMail.do SQL data dumps
Squid cache server reports

Seite 44


Unreal IRCd WebLog Referrers Welcome to ntop!

Liste-Google-Hacking V.2.1

Fichier contenant des informations sur le r?seau :
filetype:log intext:”ConnectionManager2? “apricot – admin” 00h
“by Reimar Hoven. All Rights Reserved. Disclaimer” | inurl:”log/logdb.dta” “Network Host Assessment Report” “Internet Scanner”
“Output produced by SysWatch *”
“Phorum Admin” “Database Connection” inurl:forum inurl:admin phpOpenTracker” Statistics
“powered | performed by Beyond Security’s Automated Scanning” -kazaa -example
“Shadow Security Scanner performed a vulnerability assessment” “SnortSnarf alert page”
“The following report contains confidential information” vulnerability -search
“The statistics were last upd?t?d” “Daily”-microsoft.com “this proxy is working fine!” “enter *” “URL***” * visit “This report lists” “identified by Internet Scanner” “Traffic Analysis for” “RMON Port * on unit *”
“Version Info” “Boot Version” “Internet Settings”
((inurl:ifgraph “Page generated at”) OR (“This page was built using ifgraph”)) Analysis Console for Incident Databases
ext:cfg radius.cfg
ext:cgi intext:”nrg-” ” This web page was created on ”
filetype:pdf “Assessment Report” nessus
filetype:php inurl:ipinfo.php “Distributed Intrusion Detection System”
filetype:php inurl:nqt intext:”Network Query Tool”
filetype:vsd vsd network -samples -examples
intext:”Welcome to the Web V.Networks” intitle:”V.Networks [Top]” -filetype:htm intitle:”ADSL Configuration page”
intitle:”Azureus : Java BitTorrent Client Tracker”
intitle:”Belarc Advisor Current Profile” intext:”Click here for Belarc’s PC Management products, for large and small companies.”
intitle:”BNBT Tracker Info”
intitle:”Microsoft Site Server Analysis”
intitle:”Nessus Scan Report” “This file was generated by Nessus” intitle:”PHPBTTracker Statistics” | intitle:”PHPBT Tracker Statistics” intitle:”Retina Report” “CONFIDENTIAL INFORMATION” intitle:”start.managing.the.device” remote pbx acc
intitle:”sysinfo * ” intext:”Generated by Sysinfo * written by The Gamblers.”
intitle:”twiki” inurl:”TWikiUsers” inurl:”/catalog.nsf” intitle:catalog inurl:”install/install.php” inurl:”map.asp?” intitle:”WhatsUp Gold”
inurl:”NmConsole/Login.asp” | intitle:”Login – Ipswitch WhatsUp Professional
2005? | intext:”Ipswitch WhatsUp Professional 2005 (SP1)” “Ipswitch, Inc” inurl:”sitescope.html” intitle:”sitescope” intext:”refresh” -demo inurl:/adm-cfgedit.php
inurl:/cgi-bin/finger? “In real life”
inurl:/cgi-bin/finger? Enter (account|host|user|username) inurl:/counter/index.php intitle:”+PHPCounter 7.*” inurl:CrazyWWWBoard.cgi intext:”detailed debugging information” inurl:login.jsp.bak
inurl:ovcgi/jovw
inurl:phpSysInfo/ “created by phpsysinfo”
inurl:portscan.php “from Port”|”Port Range”
inurl:proxy | inurl:wpad ext:pac | ext:dat findproxyforurl inurl:statrep.nsf -gov
inurl:status.cgi?host=all inurl:testcgi xitami
inurl:webalizer filetype:png -.gov -.edu -.mil -opendarwin inurl:webutil.pl
Looking Glass
site:netcraft.com intitle:That.Site.Running Apache “A syntax error has occurred” filetype:ihtml “access denied for user” “using password”
“An illegal character has been found in the statement” -”previous message” “ASP.NET_SessionId” “data source=”

Seite 45

Liste-Google-Hacking V.2.1 “Can’t connect to local” intitle:warning
“Chatologica MetaSearch” “stack tracking”
“detected an internal error [IBM][CLI Driver][DB2/6000]” “error found handling the request” cocoon filetype:xml “Fatal error: Call to undefined function” -reply -the -next “Incorrect syntax near”
“Incorrect syntax near”
“Internal Server Error” “server at” “Invision Power Board Database Error”
“ORA-00933: SQL command not properly ended”
“ORA-12541: TNS:no listener” intitle:”error occurred”
“Parse error: parse error, unexpected T_VARIABLE” “on line” filetype:php
“PostgreSQL query failed: ERROR: parser: parse error” “Supplied argument is not a valid MySQL result resource” “Syntax error in query expression ” -the
“The s?ri?t whose uid is ” “is not allowed to access”
“There seems to have been a problem with the” ” Please try again by clicking the
Refresh button in your web browser.”
“Unable to jump to row” “on MySQL result index” “on line” “Unclosed quotation mark before the character string”
“Warning: Bad arguments to (join|implode) () in” “on line” -help -forum “Warning: Cannot modify header information – headers already sent” “Warning: Division by zero in” “on line” -forum

“Warning: mysql_connect(): Access denied for user: ‘*@*” “on line” -help -forum
“Warning: mysql_query()” “invalid query”
“Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL” “Warning: Supplied argument is not a valid File-Handle resource in” “Warning:” “failed to open stream: HTTP request failed” “on line”
“Warning:” “SAFE MODE Restriction in effect.” “The s?ri?t whose uid is” “is not allowed to access owned by uid 0 in” “on line”
“SQL Server Driver][SQL Server]Line 1: Incorrect syntax near” An unexpected token “END-OF-STATEMENT” was found
Coldfusion Error Pages filetype:asp + “[ODBC SQL”
filetype:asp “Custom Error Message” Category Source filetype:log “PHP Parse error” | “PHP Warning” | “PHP Error” filetype:php inurl:”logging.php” “Discuz” error
ht://Dig htsearch error
IIS 4.0 error messages
IIS web server error messages
Internal Server Error
intext:”Error Message : Error loading required libraries.” intext:”Warning: Failed opening” “on line” “include_path” intitle:”Apache Tomcat” “Error Report”
intitle:”Default PLESK Page”
intitle:”Error Occurred While Processing Request” +WHERE (SELECT|INSERT)
filetype:cfm
intitle:”Error Occurred” “The error occurred in” filetype:cfm intitle:”Error using Hypernews” “Server Software” intitle:”Execution of this s?ri?t not permitted” intitle:”Under construction” “does not currently have” intitle:Configuration.File inurl:softcart.exe
MYSQL error message: supplied argument…. mysql error with query
Netscape Application Server Error page ORA-00921: unexpected end of SQL command ORA-00921: unexpected end of SQL command ORA-00936: missing expression
PHP application warnings failing “include_path”
sitebuildercontent sitebuilderfiles sitebuilderpictures
Snitz! forums db path error
SQL syntax error
Supplied argument is not a valid PostgreSQL result warning “error on line” php sablotron
Windows 2000 web server error messages

Seite 46

“ftp://” “www.eastgame.net” “html allowed” guestbook
: vBulletin Version 1.1.5?

Liste-Google-Hacking V.2.1

“Select a database to view” intitle:”filemaker pro” “set up the administrator user” inurl:pivot
“There are no Administrators Accounts” inurl:admin.php -mysql_fetch_row “Welcome to Administration” “General” “Local Domains” “SMTP Authentication” inurl:admin
“Welcome to Intranet”
“Welcome to PHP-Nuke” congratulations
“Welcome to the Prestige Web-Based Configurator” “YaBB SE Dev Team”
“you can now password” | “this is a special page only seen by you. your profile visitors” inurl:imchaos
(“Indexed.By”|”Monitored.By”) hAcxFtpScan (inurl:/shop.cgi/page=) | (inurl:/shop.pl/page=) allinurl:”index.php” “site=sglinks” allinurl:install/install.php
allinurl:intranet admin filetype:cgi inurl:”fileman.cgi” filetype:cgi inurl:”Web_Store.cgi” filetype:php inurl:vAuthenticate filetype:pl intitle:”Ultraboard Setup” Gallery in configuration mode
Hassan Consulting’s Shopping Cart Version 1.18 intext:”Warning: * am able * write ** configuration file” “includes/configure.php” -
intitle:”Gateway Configuration Menu” intitle:”Horde :: My Portal” -”[Tickets” intitle:”Mail Server CMailServer Webmail” “5.2? intitle:”MvBlog powered”
intitle:”Remote Desktop Web Connection”
intitle:”Samba Web Administration Tool” intext:”Help Workgroup”
intitle:”Terminal Services Web Connection”
intitle:”Uploader – Uploader v6? -pixloads.com
intitle:osCommerce inurl:admin intext:”redistributable under the GNU”
intext:”Online Catalog” -demo -site:oscommerce.com
intitle:phpMyAdmin “Welcome to phpMyAdmin ***” “running on * as root@*” intitle:phpMyAdmin “Welcome to phpMyAdmin ***” “running on * as root@*” inurl:”/NSearch/AdminServlet”
inurl:”index.php? module=ew_filemanager” inurl:aol*/_do/rss_popup?blogID= inurl:footer.inc.php
inurl:info.inc.php inurl:ManyServers.htm inurl:newsdesk.cgi? inurl:”t=” inurl:pls/admin_/gateway.htm inurl:rpSys.html inurl:search.php vbulletin inurl:servlet/webacc
natterchat inurl:home.asp -site:natterchat.co.uk
XOOPS Custom Installation inurl:htpasswd filetype:htpasswd inurl:yapboz_detay.asp + View Webcam User Accessing allinurl:control/multiview
inurl:”ViewerFrame?Mode=” intitle:”WJ-NT104 Main Page” inurl:netw_tcp.shtml intitle:”supervisioncam protocol”
<pre style="color: #3300CC; background-color: #F9F9F9; font-family: 'Courier New', Courier, monospace; font-size: 12px;margin: 2px;padding: 2px;border: none;width: 600px;height: 300px;text-align: left;overflow: auto;">
<div style="margin:3px">intitle: private* protected* secret* secure* winnt intitle:\"DocuShare\" inurl:\"docushare/dsweb/\" -faq -gov -edu
\"#mysql dump\" filetype:sql
\"#mysql dump\" filetype:sql faaaaeafc
\"allow_call_time_pass_reference\" \"PATH_INFO\"
\"Certificate Practice Statement\" inurlPDF | DOC)

Seite 47

Liste-Google-Hacking V.2.1
LeapFTP intitle:\"index.of./\" sites.ini modified master.passwd
mysql history files
NickServ registration passwords passlist
passlist.txt (a better way)
passwd
passwd / etc (reliable)
people.lst
psyBNC config files pwd.db
signin filetype:url spwd.db / passwd trillian.ini
[Only Registered Users Can See Links] WebAdmin inurlasswd.txt [Only Registered
Users Can See Links]|webadmin

\"# -FrontPage-\" extwd inurlservice | authors | administrators | users) \"#
-FrontPage-\" inurl:service.pwd
\"AutoCreate=TRUE password=*\"
\"[Only Registered Users Can See Links]*:*@www\" domainname
\"index of/\" \"ws_ftp.ini\" \"parent directory\"
\"liveice configuration file\" ext:cfg -site:sourceforge.net
\"powered by ducalendar\" -site:duware.com
\"Powered by Duclassified\" -site:duware.com
\"Powered by Duclassified\" -site:duware.com \"DUware All Rights reserved\"
\"powered by duclassmate\" -site:duware.com
\"Powered by Dudirectory\" -site:duware.com
\"powered by dudownload\" -site:duware.com
\"Powered By Elite Forum Version *.*\"
\"Powered by Link Department\"
\"sets mode: +k\"
\"Powered by DUpaypal\" -site:duware.com allinurl: admin mdb
auth_user_file.txt config.php
eggdrop filetype:user user etc (index.of)
ext:ini eudora.ini
ext:ini Version=... password ext:txt inurl:unattend.txt
filetype:bak inurl:\"htaccess|passwd|shadow|htusers\" filetype:cfg mrtg \"target
\" -sample -cvs -example
filetype:cfm \"cfapplication name\" password filetype:conf oekakibbs
filetype:conf sc_serv.conf filetype:conf slapd.conf
filetype:config config intext:appSettings \"User ID\" filetype:dat \"password.dat\"
filetype:dat wand.dat filetype:inc dbconn
filetype:inc intext:mysql_connect filetype:inc mysql_connect OR mysql_pconnect filetype:inf sysprep
filetype:ini inurl:\"serv-u.ini\" filetype:ini inurl:flashFXP.ini filetype:ini ServUDaemon filetype:ini wcx_ftp
filetype:ini ws_ftp pwd filetype:ldb admin
filetype:log \"See `ipsec copyright\" filetype:log inurl:\"password.log\" filetype:mdb inurl:users.mdb filetype:mdb wwforum
filetype:netrc password filetypeass pass intext:userid

Seite 48

filetypeem intextrivate

Liste-Google-Hacking V.2.1

filetyperoperties inurl:db intextassword filetypewd service
filetypewl pwl
filetype:reg reg +intext:\"defaultusername\" +intext:\"defaultpassword\" filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
filetype:sql (\"values * MD\" | \"values * password\" | \"values * encrypt\") filetype:sql (\"passwd values\" | \"password values\" | \"pass values\" ) filetype:sql +\"IDENTIFIED BY\" -cvs
filetype:sql password
filetype:url +inurl:\"ftp://\" +inurl:\";@\" filetype:xls username password email
htpasswd
htpasswd / htgroup htpasswd / htpasswd.bak intext:\"enable secret $\" intext:\"powered by Web Wiz Journal\"
intitle:\"index of\" intext:connect.inc intitle:\"index of\" intext:globals.inc intitle:\"Index of\" passwords modified
intitle:dupics inurladd.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:Index.of etc shadow
intitle:index.of intext:\"secring.skr\"|\"secring.pgp\"|\"secring.bak\" inurl:\"GRC.DAT\" intext:\"password\"
inurl:\"slapd.conf\" intext:\"credentials\" -manpage -\"Manual Page\" -man:
-sample
inurl:\"slapd.conf\" intext:\"rootpw\" -manpage -\"Manual Page\" -man: -sample inurl:\"wvdial.conf\" intext:\"password\"
inurl:/db/main.mdb
inurl:/[Only Registered Users Can See Links]
inurl:ccbill filetype:log inurl:chap-secrets -cvs inurl:config.php dbuname dbpass inurl:filezilla.xml -cvs
inurl:lilo.conf filetype:conf password -tatercounter -bootpwd -man inurl:nuke filetype:sql
inurlspfd.conf intextassword -sample -test -tutorial -download inurlap-secrets -cvs
inurlerform filetype:ini
inurl:secring ext:skr | extgp | ext:bak inurl:vtund.conf intextass -cvs
inurl:zebra.conf intextassword -sample -test -tutorial -download

\"Generated by phpSystem\"
\"generated by [Only Registered Users Can See Links]\"
\"Host Vulnerability Summary Report\"
\"[Only Registered Users Can See Links]\" googlebot.com \"Server_Software=\"
\"Index of\" / \"chat/logs\"
\"Installed Objects Scanner\" inurl:default.asp
\"Mecury Version\" \"Infastructure Group\"
\"Microsoft ® Windows * ™ Version * DrWtsn Copyright ©\" ext:log
\"Most Submitted Forms and Scripts\" \"this section\"
\"Network Vulnerability Assessment Report\"
\"not for distribution\" confidential
\"phone * * *\" \"address *\" \"e-mail\" intitle:\"curriculum vitae\"
\"phpMyAdmin\" \"running on\" inurl:\"main.php\"
\"produced by getstats\"
\"Request Details\" \"Control Tree\" \"Server Variables\"
\"robots.txt\" \"Disallow:\" filetype:txt
\"Running in Child mode\"
\"sets mode: +p\"
\"sets mode: +s\"
\"Thank you for your order\" +receipt
\"This is a Shareaza Node\"
\"This report was generated by WebLog\"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )

Seite 49

intextassword|subject

Liste-Google-Hacking V.2.1

(inurl:\"robot.txt\" | inurl:\"robots.txt\" ) intext:disallow filetype:txt
+\":\" +\":\" +\":\" filetype:txt
+\"HSTSNR\" -\"netop.com\"
-sitehp.net -\"The PHP Group\" inurl:source inurl:url extHp
FBR \"ADOBE PHOTOSHOP\" AIM buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf
data filetype:mdb -site:gov -site:mil exported email addresses
ext:asp inurlathto.asp
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho
ext:ini intext:env.ini ext:ldif ldif
ext:log \"Software: Microsoft Internet Information Services *.*\" ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil extqi pqi -database
ext:reg \"username=*\" putty ext:txt \"Final encryption key\" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=\" * Server.MapPath(\"*.mdb\")
filetype:bkf bkf filetype:blt \"buddylist\" filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:\"Subject\" +intext:\"From\" +intext:\"To\" filetype:fp fp
filetype:fp fp -site:gov -site:mil -\"cvs log\" filetype:fp fp
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key filetype:log access.log -CVS filetype:mbx mbx intext:Subject filetype:myd myd -CVS filetype:ns ns
filetypera ora filetypera tnsnames
filetypedb pdb backup (Pilot | Pluckerdb)
filetypehp inurl:index inurlhpicalendar -site:sourceforge.net filetypeot inurl:john.pot
filetypest inurl:\"outlook.pst\" filetypest pst -from -to -date
filetype[Only Registered Users Can See Links] qbb filetype:rdp rdp
filetype:reg \"Terminal Server Client\" filetype:vcs vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:\"email.xls\" Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl (one way)

Seite 50

haccess.ctl (VERY reliable) ICQ chat logs* please... iletype:log cron.log

Liste-Google-Hacking V.2.1

intext:\"Session Start * * * *:*:* *\" filetype:log intext:\"Tobias Oetiker\" \"traffic analysis\"
intextpassword | passcode) intextusername | userid | user) filetype:csv intext:gmail invite intext:[Only Registered Users Can See Links] intext:SQLiteManager inurl:main.php
intitle:\"Apache::Status\" (inurl:server-status | inurl:status.html |
inurl:apache.html)
intitle:\"AppServ Open Project\" -site:[Only Registered Users Can See Links] ([Only Registered Users Can See Links])
intitle:\"ASP Stats Generator *.*\" \"ASP Stats Generator\" \"- weppos\" intitle:\"Big Sister\" +\"OK Attention Trouble\"
intitle:\"edna:streaming mp server\" -forums intitle:\"FTP root at\"
intitle:\"index of\" +myd size
intitle:\"Index Of\" -inurl:maillog maillog size intitle:\"Index Of\" cookies.txt size intitle:\"index of\" mysql.conf OR mysql_config intitle:\"Index of\" upload size parent directory
intitle:\"index.of *\" admin news.asp configview.asp intitle:\"index.of\" .diz .nfo last modified intitle:\"Multimon UPS status page\"
intitle:\"PHP Advanced Transfer\" (inurl:index.php | inurl:showrecent.php )
intitle:\"PhpMyExplorer\" inurl:\"index.php\" -cvs intitle:\"statistics of\" \"advanced web statistics\"
intitle:\"System Statistics\" +\"System and Network Information Center\" intitle:\"Usage Statistics for\" \"Generated by Webalizer\" intitle:\"wbem\" compaq login \"Compaq Information Technologies Group\" intitle:\"Web Server Statistics for ****\"
intitle:\"web server status\" SSH Telnet intitle:\"welcome.to.squeezebox\" intitle:admin intitle:login intitle:index.of \"Apache\" \"server at\" intitle:index.of cleanup.log intitle:index.of dead.letter intitle:index.of inbox
intitle:index.of inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet inurl:intranet +intext:\"phone\" inurl:\"/axs/ax-admin.pl\" -script inurl:\"/cricket/grapher.cgi\" inurl:\"bookmark.htm\"
inurl:\"cacti\" +inurl:\"graph_view.php\" +\"Settings Tree View\" -cvs -RPM
inurl:\"newsletter/admin/\"
inurl:\"newsletter/admin/\" intitle:\"newsletter admin\" inurl:\"putty.reg\"
inurl:\"smb.conf\" intext:\"workgroup\" filetype:conf conf inurl:*db filetype:mdb
inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe \"Please distribute TestCGI\" inurl:changepassword.asp
inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to phpMyAdmin inurl:netscape.hst
inurl:netscape.hst

Seite 51

inurl:netscape.ini inurldbc.ini ext:ini -cvs inurlerl/printenv inurlhp.ini filetype:ini

Liste-Google-Hacking V.2.1

inurlreferences.ini \"[emule]\" inurlrofiles filetype:mdb
inurl:report \"EVEREST Home Edition \" inurl:server-info \"Apache Server Information\" inurl:server-status \"apache\" inurl:snitz_forums_.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php \"page generated\" ipsec.conf
ipsec.secrets ipsec.secrets
Lotus Domino address books
mail filetype:csv -site:gov intext:name
Microsoft Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml - Trillian data files OWA Public Folders (direct view) Peoples MSN contact lists
php-addressbook \"This is the addressbook for *\" -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private key files (.csr) private key files (.key) Quicken data files robots.txt
site:edu admin grades
SQL data dumps
Squid cache server reports
Unreal IRCd WebLog Referrers Welcome to ntop!

\"adding new user\" inurl:addnewuser -\"there are no domains\" (inurl:/cgi-bin/.cobalt/) | (intext:\"Welcome to the Cobalt RaQ\")
+htpasswd +WS_FTP.LOG filetype:log
filetypehp HAXPLORER \"Server Files Browser\" intitle:\"Web Data Administrator - Login\" intitle:admin intitle:login inurl:\"phpOracleAdmin/php\" -download -cvs
inurl:ConnectComputer/precheck.htm | inurl:Remote/logon.aspx
PHP Shell (unprotected)
PHPKonsole PHPShell filetypehp -echo
Public PHP FileManagers

\"Index Of /network\" \"last modified\"
\"index of cgi-bin\"
\"index of\" / picasa.ini
\"index of\" inurl:recycler
\"Index of\" rar r nfo Modified
\"intitle:Index.Of /\" stats merchant cgi-* etc
\"Powered by Invision Power File Manager\" (inurl:login.php) | (intitle:\"Browsing directory /\" )
\"Web File Browser\" \"Use regular expression\"
\"Welcome to phpMyAdmin\" \" Create new database\" allinurl:\"/*/_vti_pvt/\" | allinurl:\"/*/_vti_cnf/\" filetype:cfg ks intext:rootpw -sample -test -howto filetype:ini Desktop.ini intext:mydocs.dll filetype:torrent torrent
Index of phpMyAdmin index.of.dcim index.of.password

Seite 52

index.of.password

Liste-Google-Hacking V.2.1

intext:\"d.aspx?id\" || inurl:\"d.aspx?id\" intext:\"Powered By: TotalIndex\" intitle:\"TotalIndex\"
intitle:\"album permissions\" \"Users who can modify photos\" \"EVERYBODY\" intitle:\"Directory Listing For\" intext:Tomcat -intitle:Tomcat intitle:\"HFS /\" +\"[Only Registered Users Can See Links]\"
intitle:\"Index of *\" inurl:\"my shared folder\" size modified intitle:\"Index of /CFIDE/\" administrator
intitle:\"Index of c:\\Windows\"
intitle:\"index of\" \"parent directory\" \"desktop.ini\" site:dyndns.org intitle:\"index of\" -inurl:htm -inurl:html mp
intitle:\"Index of\" cfide
intitle:\"index of\" intext:\"content.ie\" intitle:\"index of\" inurl:ftp (pub | incoming) intitle:\"index.of.personal\"
intitle:\"webadmin - /*\" filetypehp directory filename permission intitle:index.of (inurl:fileadmin | intitle:fileadmin) intitle:index.of /AlbumArt_
intitle:index.of /maildir/new/
intitle:index.of abyss.conf
intitle:intranet inurl:intranet +intext:\"human resources\" intitle:upload inurl:upload intext:upload -forum -shop -support -wc inurl:/pls/sample/admin_/help/
inurl:/tmp
inurl:backup intitle:index.of inurl:admin inurl:explorer.cfm inurldirpath|This_Directory) inurl:jee/examples/jsp
inurljspdemos private protected secret
secure winnt


filetypel -intext:\"/usr/bin/perl\" inurl:webcal (inurl:webcal | inurl:add |
inurl:delete | inurl:config)
\"File Upload Manager v.\" \"rename to\"
\"Powered by Land Down Under \"
\"powered by YellDL\"
ext:asp \"powered by DUForum\" inurlmessages|details|login|default|register)
-site:duware.com
ext:asp inurlUgallery intitle:\".\" -site:dugallery.com -site:duware.com ext:cgi inurl:ubb_test
ezBOO \"Administrator Panel\" -cvs filetype:cgi inurl:cachemgr.cgi filetype:cnf my.cnf -cvs -example filetype:inc inc intext:setcookie filetype:lit lit (books|ebooks) filetype:mdb inurl:\"news/news\"
filetypehp inurl:\"viewfile\" -\"index.php\" -\"idfil filetype:wsdl wsdl
Gallery configuration setup files
intitle:\"ASP FileMan\" Resend -site:iisworks.com intitle:\"Directory Listing\" \"tree view\" intitle:\"Index of /\" modified php.exe intitle:\"PHP Explorer\" exthp (inurlhpexplorer.php
| inurl:list.php | inurl:browse.php) intitle:\"phpremoteview\" filetypehp \"Name* Size* Type* Modify\"
intitle:mywebftp \"Please enter your password\" inurl:\" [Only Registered Users Can See Links]\" intitle:\"[Only Registered Users Can See Links]\" inurl:\"nph-proxy.cgi\" \"Start browsing through this CGI-based proxy\"
inurl:\"plog/register.php\" inurl:cgi.asx?StoreID inurl:changepassword.cgi -cvs

Seite 53

Liste-Google-Hacking V.2.1 inurl:click.php intext:PHPClickLog
inurlhp.exe filetype:exe -example.com inurl:robpoll.cgi filetype:cgi
link:[Only Registered Users Can See Links] PHP-Nuke - create super user right now ! The Master List

\"More Info about ****Cart Free\" Comersus.mdb database inurl:midicart.mdb inurl:shopdbtest.asp
POWERED BY HIT JAMMER .!
site:ups.com intitle:\"Ups Package tracking\" intext:\"Z


* intitle:\"Index of\" passwords modified
* allinurl:auth_user_file.txt
* \"access denied for user\" \"using password“
* \"A syntax error has occurred\" filetype:ihtml
* allinurl: admin mdb
* \"ORA-00921: unexpected end of SQL command“
* inurl:passlist.txt
* \"Index of /backup“
* \"Chatologica MetaSearch\" \"stack tracking:\"
* inurl:passwd.txt
* “login: *” “password= *” filetype:xls
* \"parent directory \" FILE CHE CERCO -xxx -html -htm -php -shtml -opendivx
-md5 -md5sums
* ?intitle:index.of? mp3 NOME ARTISTA
* inurl:microsoft filetype:iso
* cambiare microsoft con il sito che volete... (ad. es. adobe)
* \"# -FrontPage-\" inurl:service.pwd
\"AutoCreate=TRUE password=*\" Cerca le password per
\"Website Access Analyzer\", un software giapponese
* \"http://*:*@www\" oppure:
* \"http://*:*@www\" gamespy oppure http://*:*@www”gamespy
* oppure provate: \"http://bob:bob@www\"
* \"sets mode: +k\"
* eggdrop filetype:user user
* allinurl: admin mdb
* allinurl:auth_user_file.txt
* intitle:\"Index of\" config.php
* intitle:index.of.etc
*filetype:bak inurl:\"htaccess|passwd|shadow|htusers
* Se cerchiamo il seriale di Windows XP Pro.
* Scriviamo : \"Windows XP Professional\" 94FBR
* Il codice 94FBR &#232; incluso in molti seriali
di MS Office e ci aiuta ad evitare fake e siti pornografici.
* altro esempio: WinZip 8.1 - \"WinZip 8.1\" 94FBR
* inurl:(service | authors | administrators | users) ext:pwd \"# -FrontPage-
</div></pre>
<pre style="color: #3300CC; background-color: #F9F9F9; font-family: 'Courier New', Courier, monospace; font-size: 12px;margin: 2px;padding: 2px;border: none;width: 600px;height: 300px;text-align: left;overflow: auto;">
<div style="margin:3px">
/cgi-bin/axs.cgi
/cgi-bin/bash
/cgi-bin/bb-hist.sh
/cgi-bin/bigconf.cgi
/cgi-bin/bnbform
/cgi-bin/bnbform.cgi
/cgi-bin/cachemgr.cgi
/cgi-bin/calendar
/cgi-bin/campas
/cgi-bin/carbo.dll

Seite 54

/cgi-bin/cgimail.exe
/cgi-bin/Cgitest.exe
/cgi-bin/cgiwrap
/cgi-bin/classified.cgi
/cgi-bin/classifieds
/cgi-bin/classifieds.cgi
/cgi-bin/Count.cgi
/cgi-bin/csh
/cgi-bin/date
/cgi-bin/day5datacopier.cgi
/cgi-bin/day5notifier
/cgi-bin/dbmlparser.exe
/cgi-bin/download.cgi
/cgi-bin/dumpenv.pl
/cgi-bin/edit.pl
/cgi-bin/environ.cgi
/cgi-bin/excite
/cgi-bin/faxsurvey
/cgi-bin/faxsurvey
/cgi-bin/filemail
/cgi-bin/filemail.pl
/cgi-bin/files.pl
/cgi-bin/finger
/cgi-bin/finger.cgi
/cgi-bin/finger.pl
/cgi-bin/flexform
/cgi-bin/flexform.cgi
/cgi-bin/FormHandler.cgi
/cgi-bin/formmail.pl
/cgi-bin/fortune
/cgi-bin/fpexplorer.exe
/cgi-bin/get32.exe|dir
/cgi-bin/glimpse
/cgi-bin/guestbook.cgi
/cgi-bin/guestbook.pl
/cgi-bin/GW5
/cgi-bin/GWWEB.EXE
/cgi-bin/handler
/cgi-bin/handler.cgi
/cgi-bin/htmlscript
/cgi-bin/htmlscript
/cgi-bin/info2www
/cgi-bin/input.bat
/cgi-bin/input2.bat
/cgi-bin/jj
/cgi-bin/ksh
/cgi-bin/lwgate
/cgi-bin/LWGate.cgi
/cgi-bin/lwgate.cgi
/cgi-bin/MachineInfo
/cgi-bin/mail
/cgi-bin/maillist.pl
/cgi-bin/man.sh
/cgi-bin/mlog.phtml
/cgi-bin/mylog.phtml
/cgi-bin/nlog-smb.pl
/cgi-bin/nph-error.pl
/cgi-bin/nph-publish
/cgi-bin/nph-test-cgi
/cgi-bin/passwd
/cgi-bin/passwd.txt
/cgi-bin/password
/cgi-bin/password.txt
/cgi-bin/perl
/cgi-bin/perl.exe
/cgi-bin/perlshop.cgi
/cgi-bin/pfdispaly.cgi
/cgi-bin/phf

Liste-Google-Hacking V.2.1

Seite 55

 /cgi-bin/phf.pp
/cgi-bin/php
/cgi-bin/php.cgi
/cgi-bin/phpscan
/cgi-bin/post-query
/cgi-bin/ppdscgi.exe
/cgi-bin/query
/cgi-bin/redirect
/cgi-bin/responder.cgi
/cgi-bin/rguest.exe
/cgi-bin/rksh
/cgi-bin/rsh
/cgi-bin/rwwwshell.pl
/cgi-bin/sam._
/cgi-bin/search.cgi
/cgi-bin/search97.vts
/cgi-bin/sendform.cgi
/cgi-bin/sh
/cgi-bin/snorkerz.bat
/cgi-bin/snorkerz.cmd
/cgi-bin/status.cgi
/cgi-bin/survey
/cgi-bin/survey.cgi
/cgi-bin/tcsh
/cgi-bin/test.bat
/cgi-bin/test-cgi
/cgi-bin/test-cgi.tcl
/cgi-bin/test-env
/cgi-bin/textcounter.pl
/cgi-bin/tst.bat
/cgi-bin/tst.bat|dir
/cgi-bin/unlg1.1
/cgi-bin/upload.pl
/cgi-bin/uptime
/cgi-bin/view-source
/cgi-bin/visadmin.exe
/cgi-bin/visitor.exe
/cgi-bin/w3-msql
/cgi-bin/w3-sql
/cgi-bin/w3tvars.pm
/cgi-bin/wais.pl
/cgi-bin/webdist.cgi
/cgi-bin/webgais
/cgi-bin/webmap.cgi
/cgi-bin/websendmail
/cgi-bin/wguest.exe
/cgi-bin/whois_raw.cgi
/cgi-bin/wrap
/cgi-bin/wwwadmin.pl
/cgi-bin/wwwboard.pl
/cgi-bin/www-sql
/cgi-bin/zsh
/cgi-dos/args.bat
/cgi-dos/args.cmd
/cgi-shl/win-c-sample.exe
/cgi-win/uploader.exe
/cool-logs/mlog.html
/cool-logs/mylog.html
/database.nsf
/database.nsf
/domcfg.nsf
/domlog.nsf
/hosts.dat
/iisadmpwd/achg.htr
/IISADMPWD/achg.htr
/iisadmpwd/aexp.htr
/iisadmpwd/aexp2.htr
/iisadmpwd/aexp2b.htr

Liste-Google-Hacking V.2.1

Seite 56

/iisadmpwd/aexp3.htr
/iisadmpwd/aexp4.htr
/iisadmpwd/aexp4b.htr
/iisadmpwd/anot.htr
/iisadmpwd/anot3.htr

Liste-Google-Hacking V.2.1

/iissamples/exair/howitworks/codebrws.asp
/iissamples/sdk/asp/docs/codebrws.asp
/log.nsf
/manage/cgi/cgiproc
/msadc/msadcs.dll
/msadc/samples/adctest.asp
/msadc/Samples/SELECTOR/codebrws.cfm
/msadc/Samples/SELECTOR/showcode.asp
/msads/samples/selector/showcode.asp
/names.nsf
/names.nsf
/passwd
/passwd.txt
/password
/password.txt
/publisher/
/samples/search/queryhit.htm
/scripts/CGImail.exe
/scripts/convert.bas
/scripts/counter.exe
/scripts/cpshost.dll
/scripts/fpcount.exe
/scripts/iisadmin/bdir.htr
/scripts/iisadmin/ism.dll
/scripts/iisadmin/tools/ctss.idc
/scripts/iisadmin/tools/getdrvrs.exe
/scripts/iisadmin/tools/mkilog.exe
/scripts/issadmin/bdir.htr
/scripts/perl
/scripts/postinfo.asp
/scripts/proxy/w3proxy.dll
/scripts/samples/ctguestb.idc
/scripts/samples/details.idc
/scripts/samples/search/webhits.exe
/scripts/tools/dsnform.exe
/scripts/tools/getdrvrs.exe
/scripts/tools/getdrvs.exe
/scripts/tools/newdsn.exe
/scripts/upload.asp
/scripts/uploadn.asp
/scripts/uploadx.asp
/search
/search97.vts
/secure/.htaccess
/secure/.wwwacl
/session/adminlogin
/showfile.asp
/smdata.dat
/ssi/envout.bat
/today.nsf
/tree.dat
/WebSTAR
/ws_ftp.ini
/wwwboard/passwd.txt</div></pre> "#mysql dump" filetype:sql
"Certificate Practice Statement" filetype:PDF | DOC "Generated by phpSystem"
"HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Host Vulnerability Summary Report"
"Index of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 C
 
Seite 57

Liste-Google-Hacking V.2.1
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"Most Submitted Forms and Scripts" "this section" "Network Vulnerability Assessment Report"
"Request Details" "Control Tree" "Server Variables" "Running in Child mode"
"Thank you for your order" +receipt
"These statistics were produced by getstats" "This is a Shareaza Node"
"This report was generated by WebLog" "This summary was generated by wwwstat" "allow_call_time_pass_reference" "PATH_INFO" "generated by wwwstat"
"not for distribution" confidential
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"produced by getstats"
"robots.txt" "Disallow:" filetype:txt
"sets mode: +p" "sets mode: +s"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intext:password|subject
(inurl:"robot.txt" | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt
+"HSTSNR" -"netop.com"
-site:php.net -"The PHP Group" inurl:source inurl:url ext:pHp
94FBR "ADOBE PHOTOSHOP" AIM buddy lists
Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
ICQ chat logs, please... Lotus Domino address books Microsoft Money Data Files MySQL tabledata dumps
OWA Public Folders (direct view) Peoples MSN contact lists
Quicken data files
SQL data dumps
Squid cache server reports
Unreal IRCd Welcome to ntop! allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet buddylist.blt
cgiirc.conf
data filetype:mdb -site:gov -site:mil e-mail address filetype:csv csv exported email addresses
ext:asp inurl:pathto.asp
ext:cgi inurl:editcgi.cgi inurl:file=
ext:conf NoCatAuth -cvs
ext:conf inurl:rsyncd.conf -cvs -man ext:dat bpk.dat
ext:gho gho
ext:ini intext:env.ini ext:ldif ldif
ext:log "Software: Microsoft Internet Information
ext:log "Software: Microsoft Internet Information Services *.*" ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil ext:pqi pqi -database ext:reg "username=*" putty
ext:txt "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:bkf bkf

Seite 58


filetype:blt "buddylist"

Liste-Google-Hacking V.2.1

filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:"Subject" +intext:"From" +intext:"To" filetype:fp3 fp3
filetype:fp5 fp5 -site:gov -site:mil -"cvs log" filetype:fp7 fp7
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key filetype:log access.log -CVS filetype:mbx mbx intext:Subject filetype:myd myd -CVS filetype:ns1 ns1
filetype:ora ora
filetype:pdb pdb backup (Pilot | Pluckerdb)
filetype:php inurl:index inurl:phpicalendar -site:sourceforge.net filetype:pot inurl:john.pot
filetype:pst inurl:"outlook.pst" filetype:pst pst -from -to -date filetype:qbb qbb
filetype:rdp rdp
filetype:reg "Terminal Server Client" filetype:vcs vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:"email.xls" haccess.ctl (VERY reliable) haccess.ctl (one way)
iletype:log cron.log
intext:"Session Start * * * *:*:* *" filetype:log intext:"Tobias Oetiker" "traffic analysis"
intext:(password | passcode) intext:(username | userid | user) filetype:csv intext:SQLiteManager inurl:main.php
intext:gmail invite intext:http://gmail.google.com/gmail/a
intitle:"ASP Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intitle:"Apache::Status" (inurl:server-status | inurl:status.html | inurl:apache.html)
intitle:"AppServ Open Project" -site:www.appservnetwork.com intitle:"Big Sister" +"OK Attention Trouble" intitle:"DocuShare" inurl:"docushare/dsweb/" -faq intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu intitle:"FTP root at"
intitle:"Index Of" -inurl:maillog maillog size intitle:"Index Of" cookies.txt size intitle:"Index of" upload size parent directory intitle:"Multimon UPS status page"
intitle:"PHP Advanced Transfer" (inurl:index.php | inurl:showrecent.php )
intitle:"PhpMyExplorer" inurl:"index.php" -cvs
intitle:"System Statistics" +"System and Network Information Center" intitle:"Usage Statistics for" "Generated by Webalizer"
intitle:"Web Server Statistics for ****" intitle:"edna:streaming mp3 server" -forums intitle:"index of" +myd size
intitle:"index of" mysql.conf OR mysql_config intitle:"index.of *" admin news.asp configview.asp intitle:"index.of" .diz .nfo last modified intitle:"statistics of" "advanced web statistics" intitle:"wbem" compaq login
intitle:"web server status" SSH Telnet intitle:"welcome.to.squeezebox" intitle:admin intitle:login intitle:index.of "Apache" "server at" intitle:index.of cgiirc.config

Seite 59

Liste-Google-Hacking V.2.1 intitle:index.of cleanup.log
intitle:index.of dead.letter intitle:index.of inbox intitle:index.of inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet inurl:intranet +intext:"phone" intitle:phpinfo "PHP Version"
intitle:phpinfo "PHP Version" inurl:"/axs/ax-admin.pl" -script inurl:"/cricket/grapher.cgi" inurl:"bookmark.htm"
inurl:"cacti" +inurl:"graph_view.php" +"Settings Tree View" -cvs -RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/" intitle:"newsletter admin" inurl:"putty.reg"
inurl:"shopadmin.asp" "Shop Administrators only" inurl:"smb.conf" intext:"workgroup" filetype:conf conf inurl:*db filetype:mdb
inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe "Please distribute TestCGI" inurl:changepassword.asp
inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php Welcome to phpMyAdmin inurl:main.php phpMyAdmin inurl:netscape.hst
inurl:netscape.ini inurl:odbc.ini ext:ini -cvs inurl:perl/printenv inurl:php.ini filetype:ini inurl:preferences.ini "[emule]" inurl:profiles filetype:mdb
inurl:report "EVEREST Home Edition " inurl:server-info "Apache Server Information" inurl:server-status "apache" inurl:snitz_forums_2000.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php "page generated" ipsec.conf
ipsec.secrets
letype:cnf inurl:_vti_pvt access.cnf mail filetype:csv -site:gov intext:name mt-db-pass.cgi files
mystuff.xml - Trillian data files
php-addressbook "This is the addressbook for *" -warning phpMyAdmin dumps
phpinfo()
private key files (.csr) private key files (.key) robots.txt
site:edu admin grades
intitle: "index of" passwd passwd.bak error has occurred" filetype:ihtml
"access denied for user" "using password" "Chatologica MetaSearch" "stack tracking:" "Index of /backup"
"ORA-00921: unexpected end of SQL command"
"parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums

Seite 60

Liste-Google-Hacking V.2.1
"parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Name of Singer or album -xxx -html -htm -php -shtml
-opendivx -md5 -md5sums
"parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
?intitle:index.of? mp3 name allintitle:"Network Camera NetworkCamera" allinurl: admin mdb allinurl:auth_user_file.txt
intitle:"live view" intitle:axis intitle:axis intitle:"video server" intitle:liveapplet inurl:"ViewerFrame?Mode="
inurl:axis-cgi/jpg
inurl:axis-cgi/mjpg (motion-JPEG) inurl:passlist.txt inurl:view/index.shtml inurl:view/indexFrame.shtml inurl:view/view.shtml inurl:ViewerFrame?Mode=Refresh liveapplet
!Host=*.* intext:enc_UserPassword=* ext:pcf
" -FrontPage-" ext:pwd inurl:(service | authors | administrators | users) "A syntax error has occurred" filetype:ihtml
"About Mac OS Personal Web Sharing" "access denied for user" "using password" "allow_call_time_pass_reference" "PATH_INFO"
"An illegal character has been found in the statement" -"previous message" "ASP.NET_SessionId" "data source="
"AutoCreate=TRUE password=*"
"Can't connect to local" intitle:warning "Certificate Practice Statement" inurl:(PDF | DOC) "Chatologica MetaSearch" "stack tracking" "Copyright (c) Tektronix, Inc." "printer status"
"detected an internal error [IBM][CLI Driver][DB2/6000]" "Dumping data for table"
"Error Diagnostic Information" intitle:"Error Occurred While" "error found handling the request" cocoon filetype:xml
"Fatal error: Call to undefined function" -reply -the -next

"Generated by phpSystem" "generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "IMail Server Web Messaging" intitle:login
"Incorrect syntax near" "Index of /" +.htaccess "Index of /" +passwd
"Index of /" +password.txt
"Index of /admin" "Index of /mail"
"Index Of /network" "last modified" "Index of /password"
"index of /private" site:mil
"index of /private" -site:net -site:com -site:org
"Index of" / "chat/logs"
"index of/" "ws_ftp.ini" "parent directory" "Installed Objects Scanner" inurl:default.asp "Internal Server Error" "server at"
"liveice configuration file" ext:cfg
"Login - Sun Cobalt RaQ"
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"More Info about MetaCart Free"
"Most Submitted Forms and Scripts" "this section" "mysql dump" filetype:sql
"mySQL error with query"

Seite 61

Liste-Google-Hacking V.2.1 "Network Vulnerability Assessment Report" ???? pc007.com "not for distribution" confidential
"ORA-00921: unexpected end of SQL command" "ORA-00933: SQL command not properly ended" "ORA-00936: missing expression"
"pcANYWHERE EXPRESS Java Client"
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin MySQL-Dump" "INSERT INTO" -"the"
"phpMyAdmin MySQL-Dump" filetype:txt
"phpMyAdmin" "running on" inurl:"main.php"
"PostgreSQL query failed: ERROR: parser: parse error" "Powered by mnoGoSearch - free web search engine software" "powered by openbsd" +"powered by apache"
"Powered by UebiMiau" -site:sourceforge.net
"produced by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +k"
"sets mode: +p" "sets mode: +s"
"Supplied argument is not a valid MySQL result resource" "Supplied argument is not a valid PostgreSQL result" "Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"

"This summary was generated by wwwstat" "VNC Desktop" inurl:5800
"Warning: Cannot modify header information - headers already sent" "Web File Browser" "Use regular expression"
"xampp/phpinfo
"You have an error in your SQL syntax near"
"Your password is * Remember this for later use" aboutprinter.shtml
allintitle: "index of/admin" allintitle: "index of/root" allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov allintitle: sensitive filetype:doc allintitle:\"Test page for Apache Installation\" allintitle:admin.php
allinurl:"/*/_vti_pvt/" | allinurl:"/*/_vti_cnf/" allinurl:admin mdb
allinurl:auth_user_file.txt allinurl:servlet/SnoopServlet
An unexpected token "END-OF-STATEMENT" was found camera linksys inurl:main.cgi
Canon Webview netcams Comersus.mdb database confidential site:mil
ConnectionTest.java filetype:html
data filetype:mdb -site:gov -site:mil eggdrop filetype:user user
ext:conf NoCatAuth -cvs
ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-" ext:txt inurl:unattend.txt
filetype:ASP ASP filetype:ASPX ASPX filetype:BML BML
filetype:cfg ks intext:rootpw -sample -test -howto filetype:cfm "cfapplication name" password filetype:CFM CFM
filetype:CGI CGI
filetype:conf inurl:psybnc.conf "USER.PASS=" filetype:dat "password.dat
filetype:DIFF DIFF
filetype:DLL DLL

Seite 62


filetype:DOC DOC filetype:FCGI FCGI filetype:HTM HTM filetype:HTML HTML filetype:inf sysprep filetype:JHTML JHTML filetype:JSP JSP

Liste-Google-Hacking V.2.1

filetype:log inurl:password.log filetype:MV MV
filetype:pdf "Assessment Report" nessus filetype:PDF PDF
filetype:PHP PHP filetype:PHP3 PHP3 filetype:PHP4 PHP4 filetype:PHTML PHTML filetype:PL PL filetype:PPT PPT filetype:PS PS filetype:SHTML SHTML filetype:STM STM filetype:SWF SWF filetype:TXT TXT filetype:XLS XLS htpasswd / htpasswd.bak Index of phpMyAdmin
index of: intext:Gallery in Configuration mode index.of passlist
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board" intext:"d.aspx?id" || inurl:"d.aspx?id" intext:"enable secret 5 $"
intext:"powered by Web Wiz Journal"
intext:"SteamUserPassphrase=" intext:"SteamAppUser=" -"username" -"user" intitle:"--- VIDEO WEB SERVER ---" intext:"Video Web Server" "Any time & Any where" username password
intitle:"500 Internal Server Error" "server at"
intitle:"actiontec" main setup status "Copyright 2001 Actiontec Electronics Inc" intitle:"Browser Launch Page"
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu intitle:"EverFocus.EDSR.applet"
intitle:"Index of" ".htpasswd" "htgroup" -intitle:"dist" -apache -htpasswd.c intitle:"Index of" .bash_history
intitle:"Index of" .mysql_history intitle:"Index of" .mysql_history intitle:"Index of" .sh_history intitle:"Index of" cfide intitle:"index of" etc/shadow intitle:"index of" htpasswd intitle:"index of" intext:globals.inc
intitle:"index of" master.passwd 007???? intitle:"index of" members OR accounts intitle:"index of" passwd
intitle:"Index of" passwords modified intitle:"index of" people.lst intitle:"index of" pwd.db intitle:"Index of" pwd.db intitle:"index of" spwd
intitle:"Index of" spwd.db passwd -pam.conf intitle:"index of" user_carts OR user_cart intitle:"Index of..etc" passwd intitle:"iVISTA.Main.Page"
intitle:"network administration" inurl:"nic"
intitle:"OfficeConnect Cable/DSL Gateway" intext:"Checking your browser" intitle:"remote assessment" OpenAanval Console
intitle:"Remote Desktop Web Connection" inurl:tsweb intitle:"switch login" "IBM Fast Ethernet Desktop" intitle:"SWW link" "Please wait....." intitle:"teamspeak server-administration intitle:"TUTOS Login"

Seite 63

Liste-Google-Hacking V.2.1 intitle:"VMware Management Interface:" inurl:"vmware/en/" intitle:"Welcome to the Advanced Extranet Server, ADVX!" intitle:"Welcome to Windows 2000 Internet Services" intitle:"Connection Status" intext:"Current login"
intitle:"inc. vpn 3000 concentrator" intitle:asterisk.management.portal web-access
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:index.of cgiirc.config intitle:Index.of etc shadow site:passwd
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:index.of master.passwd
intitle:index.of passwd passwd.bak intitle:index.of people.lst intitle:index.of trillian.ini
intitle:Novell intitle:WebAccess "Copyright &# Novell, Inc" intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
intitle:open-xchange inurl:login.pl inurl:":10000" intext:webmin inurl:"8003/Display?what=" inurl:"auth_user_file.txt" inurl:"GRC.DAT" intext:"password"
inurl:"printer/main.html" intext:"settings"
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"ViewerFrame?Mode="
inurl:"wvdial.conf" intext:"password" ????007????
inurl:"wwwroot/ inurl:/Citrix/Nfuse17/ inurl:/db/main.mdb inurl:/wwwboard inurl:access
inurl:admin filetype:db inurl:asp
inurl:buy
inurl:ccbill filetype:log inurl:cgi inurl:cgiirc.config inurl:chap-secrets -cvs
inurl:config.php dbuname dbpass inurl:data
inurl:default.asp intitle:"WebCommander" inurl:download
inurl:file inurl:filezilla.xml -cvs inurl:forum
inurl:home inurl:hp/device/this.LCDispatcher inurl:html
inurl:iisadmin inurl:inc inurl:info
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:list
inurl:login filetype:swf swf inurl:mail
inurl:midicart.mdb inurl:names.nsf?opendatabase inurl:new
inurl:nuke filetype:sql inurl:order
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pages
inurl:pap-secrets -cvs inurl:passlist.txt inurl:passwd filetype:txt

Seite 64

inurl:Proxy.txt inurl:public inurl:search

Liste-Google-Hacking V.2.1

inurl:secring ext:skr | ext:pgp | ext:bak inurl:shop
inurl:shopdbtest.asp inurl:software inurl:support inurl:user
inurl:vtund.conf intext:pass -cvs s inurl:web
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:"index.of./" sites.ini modified
POWERED BY HIT JAMMER 1.0!
signin filetype:url
site:ups.com intitle:"Ups Package tracking" intext:"1Z ### ### ## #### ### #" top secret site:mil
Ultima Online loginservers
VP-ASP Shop Administrators only
XAMPP "inurl:xampp/index
robots.txt" "Disallow:" filetype:txt intitle:index.of passwd passwd.bak intitle:index.of haccess.ctl intitle:index.of dead.letter filetype:xls username password email inurl:admin filetype:xls
"Thank you for your purchase" +download intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu "#mysql dump" filetype:sql
"allow_call_time_pass_reference" "PATH_INFO" "Certificate Practice Statement" filetype:PDF | DOC "Generated by phpSystem"
"generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Index of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"Most Submitted Forms and Scripts" "this section" "Network Vulnerability Assessment Report"
"not for distribution" confidential
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"produced by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +p"
"sets mode: +s"
"Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intextassword|subject
(inurl:"robot.txt" | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt
+"HSTSNR" -"netop.com"
-sitehp.net -"The PHP Group" inurl:source inurl:url extHp
94FBR "ADOBE PHOTOSHOP" AIM buddy lists allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet cgiirc.conf
cgiirc.conf
data filetype:mdb -site:gov -site:mil exported email addresses

Seite 65

ext:asp inurlathto.asp

Liste-Google-Hacking V.2.1

ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho
ext:ini intext:env.ini ext:ldif ldif
ext:log "Software: Microsoft Internet Information Services *.*" ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil extqi pqi -database
ext:reg "username=*" putty ext:txt "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:bkf bkf filetype:blt "buddylist" filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf filetype:conf inurl:firewall -intitle:cvs filetype:config web.config -CVS filetype:ctt Contact
filetype:ctt ctt messenger
filetype:eml eml +intext:"Subject" +intext:"From" +intext:"To" filetype:fp3 fp3
filetype:fp5 fp5 -site:gov -site:mil -"cvs log" filetype:fp7 fp7
filetype:inf inurl:capolicy.inf filetype:lic lic intext:key filetype:log access.log -CVS filetype:mbx mbx intext:Subject filetype:myd myd -CVS filetype:ns1 ns1
filetypera ora
filetypedb pdb backup (Pilot | Pluckerdb)
filetypehp inurl:index inurlhpicalendar -site:sourceforge.net filetypeot inurl:john.pot
filetypest inurl:"outlook.pst" filetypest pst -from -to -date filetype:qbb qbb
filetype:rdp rdp
filetype:reg "Terminal Server Client" filetype:vcs vcs
filetype:wab wab
filetype:xls -site:gov inurl:contact filetype:xls inurl:"email.xls" Financial spreadsheets: finance.xls Financial spreadsheets: finances.xls Ganglia Cluster Reports
haccess.ctl (one way) haccess.ctl (VERY reliable) ICQ chat logs, please... filetype:log cron.log
intext:"Session Start * * * *:*:* *" filetype:log intext:"Tobias Oetiker" "traffic analysis"
intext:password | passcode) intextusername | userid | user) filetype:csv intext:gmail invite intext:http://gmail.google.com/gmail/a intext:SQLiteManager inurl:main.php
intitle:"Apache::Status" (inurl:server-status | inurl:status.html |
inurl:apache.html)
intitle:"AppServ Open Project" -site:www.appservnetwork.com
intitle:"ASP Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intitle:"Big Sister" +"OK Attention Trouble"
intitle:"edna:streaming mp3 server" -forums

Seite 66

intitle:"FTP root at"

Liste-Google-Hacking V.2.1

intitle:"index of" +myd size
intitle:"Index Of" -inurl:maillog maillog size intitle:"Index Of" cookies.txt size intitle:"index of" mysql.conf OR mysql_config intitle:"Index of" upload size parent directory
intitle:"index.of *" admin news.asp configview.asp intitle:"index.of" .diz .nfo last modified intitle:"Multimon UPS status page"
intitle:"PHP Advanced Transfer" (inurl:index.php | inurl:showrecent.php )
intitle:"PhpMyExplorer" inurl:"index.php" -cvs intitle:"statistics of" "advanced web statistics"
intitle:"System Statistics" +"System and Network Information Center" intitle:"Usage Statistics for" "Generated by Webalizer" intitle:"wbem" compaq login
intitle:"Web Server Statistics for ****" intitle:"web server status" SSH Telnet intitle:"welcome.to.squeezebox" intitle:admin intitle:login intitle:index.of "Apache" "server at" intitle:index.of cleanup.log intitle:index.of dead.letter intitle:index.of inbox
intitle:index.of inbox dbx intitle:index.of ws_ftp.ini
intitle:intranet inurl:intranet +intext:"phone" inurl:"/axs/ax-admin.pl" -script inurl:"/cricket/grapher.cgi" inurl:"bookmark.htm"
inurl:"cacti" +inurl:"graph_view.php" +"Settings Tree View" -cvs -RPM
inurl:"newsletter/admin/"
inurl:"newsletter/admin/" intitle:"newsletter admin" inurl:"putty.reg"
inurl:"smb.conf" intext:"workgroup" filetype:conf conf inurl:*db filetype:mdb
inurl:/_layouts/settings inurl:admin filetype:xls inurl:admin intitle:login inurl:backup filetype:mdb inurl:cgi-bin/printenv
inurl:cgi-bin/testcgi.exe "Please distribute TestCGI" inurl:changepassword.asp
inurl:ds.py
inurl:email filetype:mdb inurl:fcgi-bin/echo inurl:forum filetype:mdb
inurl:forward filetype:forward -cvs inurl:getmsg.html intitle:hotmail inurl:log.nsf -gov
inurl:main.php phpMyAdmin inurl:main.php Welcome to phpMyAdmin inurl:netscape.hst
inurl:netscape.hst inurl:netscape.ini inurldbc.ini ext:ini -cvs inurlerl/printenv inurlhp.ini filetype:ini
inurlreferences.ini "[emule]" inurlrofiles filetype:mdb inurl:report "EVEREST Home Edition "
inurl:server-info "Apache Server Information" inurl:server-status "apache" inurl:snitz_forums_2000.mdb
inurl:ssl.conf filetype:conf inurl:tdbin
inurl:vbstats.php "page generated" ipsec.conf
ipsec.secrets

Seite 67

ipsec.secrets
Lotus Domino address books

Liste-Google-Hacking V.2.1

mail filetype:csv -site:gov intext:name
Microsoft Money Data Files mt-db-pass.cgi files
MySQL tabledata dumps
mystuff.xml - Trillian data files OWA Public Folders (direct view) Peoples MSN contact lists
php-addressbook "This is the addressbook for *" -warning phpinfo()
phpMyAdmin dumps phpMyAdmin dumps
private key files (.csr) private key files (.key) Quicken data files robots.txt
site:edu admin grades
SQL data dumps
Squid cache server reports
Unreal IRCd Welcome to ntop! intitlehpinfo "PHP Version"
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq "#mysql dump" filetype:sql "allow_call_time_pass_reference" "PATH_INFO" "Certificate Practice Statement" filetype:PDF | DOC "Generated by phpSystem"
"This summary was generated by wwwstat" "Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "Index of" / "chat/logs"
"Installed Objects Scanner" inurl:default.asp
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 C "Most Submitted Forms and Scripts" "this section" "Network Vulnerability Assessment Report"
+"HSTSNR" -"netop.com"
"not for distribution" confidential
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin" "running on" inurl:"main.php"
"These statistics were produced by getstats" "Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +p"
"sets mode: +s"
"Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"
( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx )
intextassword|subject
(inurl:"robot.txt" | inurl:"robots.txt" ) intext:disallow filetype:txt
+":8080" +":3128" +":80" filetype:txt buddylist.blt allinurl:/examples/jsp/snp/snoop.jsp allinurl:servlet/SnoopServlet intitle:index.of cgiirc.config
data filetype:mdb -site:gov -site:mil e-mail address filetype:csv csv ext:asp inurlathto.asp
ext:cgi inurl:editcgi.cgi inurl:file= ext:conf inurl:rsyncd.conf -cvs -man ext:conf NoCatAuth -cvs
ext:dat bpk.dat ext:gho gho
ext:ini intext:env.ini ext:ldif ldif

Seite 68

Liste-Google-Hacking V.2.1 ext:log "Software: Microsoft Internet Information ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
ext:nsf nsf -gov -mil extqi pqi -database
ext:reg "username=*" putty ext:txt "Final encryption key" ext:txt inurl:dxdiag
ext:vmdk vmdk ext:vmx vmx filetype:bkf bkf
filetype:asp DBQ=" * Server.MapPath("*.mdb")
filetype:blt "buddylist" filetype:blt blt +intext:screenname filetype:cfg auto_inst.cfg
filetype:cnf inurl:_vti_pvt access.cnf inurl:*db filetype:mdb
inurl:"shopadmin.asp" "Shop Administrators only" inurl:getmsg.html intitle:hotmail
inurl:admin intitle:login inurl:backup filetype:mdb inurl:admin filetype:xls
intitle:index.of "Apache" "server at" intitle:admin intitle:login intitle:"FTP root at"
intitle:"Apache::Status" (inurl:server-status | inurl:status.html |
inurl:apache.html)
intitle:"ASP Stats Generator *.*" "ASP Stats Generator" "2003-2004 weppos" intext:SQLiteManager inurl:main.php
intext:gmail invite intext:http://gmail.google.com/gmail/a intextpassword | passcode) intextusername | userid | user) filetype:csv intitlehpinfo "PHP Version"
"access denied for user" "using password" "Chatologica MetaSearch" "stack tracking:" "Index of /backup"
"ORA-00921: unexpected end of SQL command"
"parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Name of Singer or album -xxx -html -htm -php -shtml
-opendivx -md5 -md5sums
"parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
?intitle:index.of? mp3 name allintitle:"Network Camera NetworkCamera" allinurl: admin mdb allinurl:auth_user_file.txt
intitle:"live view" intitle:axis intitle:axis intitle:"video server" intitle:liveapplet inurl:"ViewerFrame?Mode="
inurl:axis-cgi/jpg
inurl:axis-cgi/mjpg (motion-JPEG) inurl:passlist.txt inurl:view/index.shtml inurl:view/indexFrame.shtml inurl:view/view.shtml inurl:ViewerFrame?Mode=Refresh liveapplet
!Host=*.* intext:enc_UserPassword=* ext:pcf
" -FrontPage-" ext:pwd inurl:(service | authors | administrators | users)
/surveys/survey.inc.php?path=
index.php?body=
/classes/adodbt/sql.php?classes_dir=
enc/content.php?Home_Path=
/classified_right.php?language_dir=
/sources/functions.php?CONFIG[main_path]=
/sources/template.php?CONFIG[main_path]=
/embed/day.php?path=

Seite 69

Liste-Google-Hacking V.2.1
/includes/dbal.php?eqdkp_root_path=
/sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]=
/includes/kb_constants.php?module_root_path=
/mcf.php?content=
/components/com_facileforms/facileforms.frame.php?ff_compath=
skins/advanced/advanced1.php?pluginpath[0]=
/zipndownload.php?PP_PATH=
/administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolu te_path=
/components/com_zoom/includes/database.php?mosConfig_absolute_path=
/main.php?sayfa=
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_ab solute_path=
/addpost_newpoll.php?addpoll=preview&thispath=
/header.php?abspath= components/com_performs/performs.php?mosConfig_absolute_path= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
impex/ImpExData.php?systempath=
/modules/vwar/admin/admin.php?vwar_root=
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
/tools/send_reminders.php?includedir= allinurl:day.php?date=
/skin/zero_vote/error.php?dir=
/modules/TotalCalendar/about.php?inc_dir=
/login.php?dir=
/tags.php?BBCodeFile=
index.php?pageurl=
/templates/headline_temp.php?nst_inc=
index.php?var= index.php?pagina= index.php?go= index.php?site=
phpwcms/include/inc_ext/spaw/dialogs/table.php?spaw_root= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
index.php?pagina= index.php?id= index1.php?= index.php?site= main.php?id= content.php?page= admin.php?page= lib/gore.php?libpath=
SQuery/lib/gore.php?libpath=
index2.php?p= index1.php?go= news_detail.php?file= old_reports.php?file= index.php?x= index.php?nic= homepage.php?sel= index.php?sel= main.php?x=
components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path=
index2.php?x= main.php?pagina= test.php?page=
components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
akocomments.php?mosConfig_absolute_path=
index.php?page= index.php?oldal= index.php?lang= index.php?pag= index.php?incl= avatar.php?page=
index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOB

Seite 70

Liste-Google-Hacking V.2.1
ALS=&mosConfig_absolute_path= index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOB ALS=&mosConfig_absolute_path=
index.php?p=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
index.php?x= index.php?mode= index.php?stranica= index.php?sub= index.php?id= index.php?t= index.php?r= index.php?menu= index.php?pag= solpot.html?body= port.php?content= index0.php?show=
administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
/tools/send_reminders.php?includedir= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
/tags.php?BBCodeFile= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
content.php?page= index.php?topic= index.php?u=
administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosCon fig_absolute_path= administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir= modules/My_eGallery/index.php?basepath=
/modules/vwar/admin/admin.php?vwar_root= index.php?loc= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/tags.php?BBCodeFile=
myevent.php?myevent_path=
/administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path=
myevent.php?myevent_path= includes/functions.php?phpbb_root_path= m2f/m2f_phpbb204.php?m2f_root_path=
/tags.php?BBCodeFile= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
show.php?path= show.php?path= administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosCon fig_absolute_path= administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_l ive_site=
index.php?template= search.php?cutepath= show_news.php?cutepath= page.php?doc=
administrator/components/com_webring/admin.webring.docs.php?component_dir= administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path= help.php?css_path= components/com_galleria/galleria.html.php?mosConfig_absolute_path= big.php?pathtotemplate= includes/search.php?GlobalSettings[templatesDirectory]= interna/tiny_mce/plugins/ibrowser/ibrowser.php?tinyMCE_imglib_include=
/functions.php?include_path= modules/My_eGallery/index.php?basepath= components/com_galleria/galleria.html.php?mosConfig_absolute_path=
/includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob[rootDir]=
/class.mysql.php?path_to_bt_dir=

Seite 71

Liste-Google-Hacking V.2.1
/include/footer.inc.php?_AMLconfig[cfg_serverpath]=
/squirrelcart/cart_content.php?cart_isp_root=
index2.php?to= index.php?load= home.php?pagina=
/modules/coppermine/include/init.inc.php?CPG_M_DIR=
/modules/Forums/admin/admin_styles.php?phpbb_root_path=
/modules/vwar/admin/admin.php?vwar_root=
/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=
/modules/My_eGallery/public/displayCategory.php?basepath=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/modules/4nAlbum/public/displayCategory.php?basepath=
/include/write.php?dir= db.php?path_local= index.php?site= index.php?url= index.php?p= index.php?openfile= index.php?file= index.php?go= index.php?content= index.php?side= index.php?kobr= index.php?doc= index.php?l= index.php?a= index.php?principal= index.php?show= index.php?opcao= index.php?conteudo= index.php?meio= index.php?inc= index.php?c= index.php?rage= index.php?arquivo= index.php?nic= index.php?x=
components/com_mtree/Savant2/Savant2_Plugin_stylesheet.php?mosConfig_absolute_pa th=
index.php?place= index.php?show= index.php?dsp= index.php?dept= index.php?lg= index.php?inhalt= index.php?ort= index.php?pilih= principal.php?conteudo= main.php?site= template.php?pagina= contenido.php?sec= index_principal.php?pagina= template.php?name= forum.php?act= home.php?action= home.php?pagina= noticias.php?arq= main.php?x=
main.php?page= default.php?page= index.php?cont= index.php?configFile= index.php?meio.php= index.php?include= index.php?open= index.php?visualizar= index.php?x= index.php?pag=

Seite 72

index.php?cat= index.php?action= index.php?do= index2.php?x= index2.php?content= main.php?pagina= index.phpmain.php?x= index.php?link= index.php?canal= index.php?screen= index.php?langc= services.php?page= htmltonuke.php?filnavn= ihm.php?p= default.php?page= folder.php?id= index.php?Load= index.php?Language= hall.php?file= hall.php?page= template.php?goto= video.php?content= pages.php?page= print.php?page= show.php?page= view.php?page= media.php?page= index1.php?choix= index1.php?menu= index.php?ort= index2.php?showpage= index2.php?ascii_seite= index2.php?DoAction= index2.php?ID= index2.php?url_page= index1.php?dat= index1.php?site= index0.php?show= home.php?content= port.php?content= main.php?link= home.php?x= index1.php?x= index2.php?x= main.php?x= homepage.php?sel=

Liste-Google-Hacking V.2.1

/modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
/modules/agendax/addevent.inc.php?agendax_path=
/include/main.php?config[search_disp]=true&include_dir=
/contrib/yabbse/poc.php?poc_root_path=
/phpopenchat/contrib/yabbse/poc.php?sourcedir=
/photoalb/lib/static/header.php?set_menu=
/squito/photolist.inc.php?photoroot=
/bz/squito/photolist.inc.php?photoroot=
/ppa/inc/functions.inc.php?config[ppa_root_path]=
/spid/lang/lang.php?lang_path=
/classes.php?LOCAL_PATH=
al_initialize.php?alpath=
/modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=
/index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mo sConfig_absolute_path=
/extensions/moblog/moblog_lib.php?basedir=
/app/common/lib/codeBeautifier/Beautifier/Core.php?BEAUT_PATH= components/com_performs/performs.php?mosConfig_absolute_path= modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=
/components/com_rsgallery/rsgallery.html.php?mosConfig_absolute_path=
/components/com_smf/smf.php?mosConfig_absolute_path=
/components/com_cpg/cpg.php?mosConfig_absolute_path=

Seite 73

Liste-Google-Hacking V.2.1 administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_ path=
/admin_modules/admin_module_deldir.inc.php?config[path_src_include]=
inc/cmses/aedating4CMS.php?dir[inc]= inurl:flashchat site:br bp_ncom.php?bnrep=
/components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_pat h=
/jscript.php?my_ms[root]=
/popup_window.php?site_isp_root=
/yabbse/Sources/Packages.php?sourcedir=
/include/main.php?config[search_disp]=true&include_dir=
/include/main.php?config[search_disp]=true&include_dir=
/includes/functions_portal.php?phpbb_root_path=
/surveys/survey.inc.php?path=
index.php?body=
/classes/adodbt/sql.php?classes_dir=
enc/content.php?Home_Path=
/classified_right.php?language_dir=
/sources/functions.php?CONFIG[main_path]=
/sources/template.php?CONFIG[main_path]=
/embed/day.php?path=
/includes/dbal.php?eqdkp_root_path=
sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]=
/includes/kb_constants.php?module_root_path=
/mcf.php?content=
/components/com_facileforms/facileforms.frame.php?ff_compath=
skins/advanced/advanced1.php?pluginpath[0]=
/zipndownload.php?PP_PATH=
/administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolu te_path=
/components/com_zoom/includes/database.php?mosConfig_absolute_path=
/main.php?sayfa=
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_ab solute_path=
/addpost_newpoll.php?addpoll=preview&thispath=
/header.php?abspath= components/com_performs/performs.php?mosConfig_absolute_path= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
/modules/vwar/admin/admin.php?vwar_root=
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
/tools/send_reminders.php?includedir=
/skin/zero_vote/error.php?dir=
/modules/TotalCalendar/about.php?inc_dir=
login.php?dir=
/tags.php?BBCodeFile=
index.php?pageurl=
/templates/headline_temp.php?nst_inc=
index.php?var= index.php?pagina= index.php?go= index.php?site=
phpwcms/include/inc_ext/spaw/dialogs/table.php?spaw_root= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
index.php?pagina= index.php?id= index1.php?= index.php?site= main.php?id= content.php?page= admin.php?page= lib/gore.php?libpath=
SQuery/lib/gore.php?libpath=
index2.php?p= index1.php?go= news_detail.php?file=

Seite 74

old_reports.php?file= index.php?x= index.php?nic= homepage.php?sel= index.php?sel=

Liste-Google-Hacking V.2.1

config.php?_CCFG[_PKG_PATH_DBSE]= main.php?x= components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path= index2.php?x=
main.php?pagina= test.php?page= components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path= akocomments.php?mosConfig_absolute_path=
index.php?page= index.php?oldal= index.php?lang=gr&file index.php?pag= index.php?incl= avatar.php?page=
index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOB ALS=&mosConfig_absolute_path= index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOB ALS=&mosConfig_absolute_path=
index.php?p=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR= index.php?x= index.php?mode=index.php?stranica= index.php?sub=index.php?id=index.php?t=
index.php?r= index.php?menu= index.php?pag= solpot.html?body= port.php?content= index0.php?show=
administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h= /tools/send_reminders.php?includedir= allinurl:day.php?date= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path= /tags.php?BBCodeFile= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
content.php?page= index.php?topic= index.php?u=administrator/components/com_linkdirectory/toolbar.linkdirectory.htm l.php?mosConfig_absolute_path= administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=modules
/My_eGallery/index.php?basepath=
/modules/vwar/admin/admin.php?vwar_root=index.php?loc=

allinurl:.br/index.php?loc= administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_pat h=
administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/tags.php?BBCodeFile=
myevent.php?myevent_path=
/administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path=
myevent.php?myevent_path= includes/functions.php?phpbb_root_path= m2f/m2f_phpbb204.php?m2f_root_path=
/tags.php?BBCodeFile= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
show.php?path= show.php?path= administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosCon fig_absolute_path= administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_l ive_site=
index.php?template=
search.php?cutepath

Seite 75

show_news.php?cutepath=
page.php?doc=

Liste-Google-Hacking V.2.1

administrator/components/com_webring/admin.webring.docs.php?component_dir= administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path= help.php?css_path= components/com_galleria/galleria.html.php?mosConfig_absolute_path= big.php?pathtotemplate= includes/search.php?GlobalSettings[templatesDirectory]= interna/tiny_mce/plugins/ibrowser/ibrowser.php?tinyMCE_imglib_include=
/functions.php?include_path= modules/My_eGallery/index.php?basepath= components/com_galleria/galleria.html.php?mosConfig_absolute_path=
/includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob[rootDir]=
/class.mysql.php?path_to_bt_dir=
/include/footer.inc.php?_AMLconfig[cfg_serverpath]=
/squirrelcart/cart_content.php?cart_isp_root=
index2.php?to= index.php?load= home.php?pagina=
/modules/coppermine/include/init.inc.php?CPG_M_DIR=
/modules/Forums/admin/admin_styles.php?phpbb_root_path=
/modules/vwar/admin/admin.php?vwar_root=
/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=
/modules/My_eGallery/public/displayCategory.php?basepath=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/modules/4nAlbum/public/displayCategory.php?basepath=
/include/write.php?dir= db.php?path_local= index.php?site= index.php?url= index.php?p= index.php?openfile= index.php?file= index.php?go= index.php?content= index.php?side= index.php?kobr= index.php?pg= index.php?doc= index.php?l= index.php?a= index.php?principal= index.php?show= index.php?opcao= index.php?conteudo= index.php?meio= index.php?inc= index.php?c= index.php?rage= index.php?arquivo= index.php?nic= index.php?x=
components/com_mtree/Savant2/Savant2_Plugin_stylesheet.php?mosConfig_absolute_pa th=
index.php?place= index.php?show= index.php?dsp= index.php?dept= index.php?lg= index.php?inhalt= index.php?ort= index.php?pilih= principal.php?conteudo= main.php?site= template.php?pagina= contenido.php?sec= index_principal.php?pagina= template.php?name=

Seite 76

forum.php?act= home.php?action= home.php?pagina= noticias.php?arq= main.php?x= main.php?page= default.php?page= index.php?cont= index.php?configFile= index.php?meio.php= index.php?include= index.php?open= index.php?visualizar= index.php?x= index.php?pag= index.php?cat= index.php?action= index.php?do= index2.php?x= index2.php?content= main.php?pagina= index.phpmain.php?x= index.php?link= index.php?canal= index.php?screen= index.php?langc= services.php?page= htmltonuke.php?filnavn= ihm.php?p= default.php?page= folder.php?id= index.php?Load= index.php?Language= hall.php?file= hall.php?page= template.php?goto= video.php?content= pages.php?page= print.php?page= show.php?page= view.php?page= media.php?page= index1.php?choix= index1.php?menu= index.php?ort= index2.php?showpage= index2.php?ascii_seite= index2.php?DoAction= index2.php?ID= index2.php?url_page= index1.php?dat= index1.php?site= index0.php?show= home.php?content= port.php?content= main.php?link= home.php?x= index1.php?x= index2.php?x= main.php?x= homepage.php?sel=

Liste-Google-Hacking V.2.1

/modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
/modules/agendax/addevent.inc.php?agendax_path=
/include/main.php?config[search_disp]=true&include_dir=
/contrib/yabbse/poc.php?poc_root_path=
/phpopenchat/contrib/yabbse/poc.php?sourcedir=
/photoalb/lib/static/header.php?set_menu=
/squito/photolist.inc.php?photoroot=

Seite 77

Liste-Google-Hacking V.2.1
/bz/squito/photolist.inc.php?photoroot=
/ppa/inc/functions.inc.php?config[ppa_root_path]=
/spid/lang/lang.php?lang_path=
/classes.php?LOCAL_PATH=
al_initialize.php?alpath=
/modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=
/index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mo sConfig_absolute_path=
/extensions/moblog/moblog_lib.php?basedir=
/app/common/lib/codeBeautifier/Beautifier/Core.php?BEAUT_PATH= components/com_performs/performs.php?mosConfig_absolute_path= modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=
/components/com_rsgallery/rsgallery.html.php?mosConfig_absolute_path=
/components/com_smf/smf.php?mosConfig_absolute_path=
/components/com_cpg/cpg.php?mosConfig_absolute_path= administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_ path=
/admin_modules/admin_module_deldir.inc.php?config[path_src_include]=
inc/cmses/aedating4CMS.php?dir[inc]=
bp_ncom.php?bnrep=
/components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_pat h=
/jscript.php?my_ms[root]=
/popup_window.php?site_isp_root=
/yabbse/Sources/Packages.php?sourcedir=
/include/main.php?config[search_disp]=true&include_dir=
/include/main.php?config[search_disp]=true&include_dir=
/includes/functions_portal.php?phpbb_root_path=
pagina.php?ir= home.php?qry= index3.php?url= index1.php?action= press.php?param= view.php?adresa= pagina.php?type= file.php?ki= gallery.php?seite= include.php?loader= index2.php?module= gallery.php?strona= general.php?itemnav= template.php?h= nota.php?header= blank.php?ki= enter.php?base_dir= index1.php?modo= general.php?thispage= view.php?var= include.php?*[*]*= layout.php?pagina= nota.php?pollname= index3.php?p= padrao.php?pre= home.php?pa= main.php?type= padrao.php?ir=
*inc*.php?left= sitio.php?start= gallery.php?eval= index2.php?base_dir= index1.php?op=
*.php?include= padrao.php?sivu= enter.php?pagina= general.php?xlink= principal.php?recipe= file.php?pref= show.php?go=

Seite 78


nota.php?ki= down*.php?oldal= layout.php?disp= standard.php?goto= index2.php?phpbb_root_path= path.php?action= enter.php?chapter= base.php?incl= mod*.php?link= include.php?nivel= head.php?pollname= enter.php?mod= show.php?corpo= default.php?name= standard.php?param= general.php?where= head.php?*[*]*= info.php?strona= principal.php?url= template.php?str= home.php?ref= down*.php?left= standard.php?url= main.php?doshow= press.php?*root*= view.php?*[*]*= view.php?second= index.php?to=
page.php?cmd= view.php?b= include.php?loc= info.php?option= show.php?x= template.php?texto= index3.php?ir= template.php?second= print.php?chapter= file.php?inc= file.php?cont= index.php?filepath= home.php?pr= view.php?cmd= index.php?module= file.php?url= include.php?chapter= path.php?my= principal.php?param= general.php?menue= index1.php?b= info.php?chapter= nota.php?chapter= general.php?include= start.php?addr= home.php?itemnav= index1.php?qry= default.php?read= view.php?incl= down*.php?to= index1.php?loc= principal.php?viewpage= index2.php?choix= page.php?addr= index1.php?dir= principal.php?pr= press.php?seite= standard.php?seccion= page.php?goto= head.php?cmd=

Liste-Google-Hacking V.2.1

Seite 79

home.php?sec= home.php?category= standard.php?cmd= mod*.php?thispage=
*.php?secc= base.php?to= index3.php?chapter= start.php?seccion= base.php?middlePart= view.php?choix= template.php?panel= base.php?panel= template.php?mod= path.php?menue= info.php?j= blank.php?pref= sub*.php?channel= padrao.php?secc= standard.php?in= general.php?cmd= pagina.php?panel=
*inc*.php?inc= template.php?where= general.php?id= path.php?channel= standard.php?pref= template.php?play= gallery.php?seccion= layout.php?my= page.php?tipo= sitio.php?rub= pagina.php?u= file.php?ir=
*inc*.php?sivu= padrao.php?seite= press.php?i= path.php?start= mod*.php?tipo= page.php?chapter= home.php?recipe= gallery.php?ref= enter.php?pname= press.php?inc= layout.php?path= print.php?open= mod*.php?channel= down*.php?phpbb_root_path=
*inc*.php?str=

Liste-Google-Hacking V.2.1

gallery.php?phpbb_root_path= include.php?middlePart= sub*.php?destino= index2.php?left= view.php?phpbb_root_path= info.php?read=
base.php?k= home.php?sp= index3.php?pag= down*.php?OpenPage= sitio.php?strona= nota.php?seite= main.php?strona= sitio.php?get= sitio.php?index= index3.php?option= index.php?basepath= enter.php?a= main.php?second= info.php?in=

Seite 80

print.php?pname= start.php?where= blank.php?itemnav= default.php?n= down*.php?filepath= blank.php?pagina= main.php?corpo= principal.php?filepath= view.php?option= index1.php?d= show.php?*root*= principal.php?pre= start.php?p= standard.php?home= down*.php?where=
*inc*.php?include= enter.php?numero= path.php?pre= index2.php?oldal= general.php?addr= home.php?loader= general.php?tipo= start.php?eval= index.php?secao= index.php?disp= info.php?op= head.php?mod= template.php?page= include.php?sivu= sitio.php?section= nota.php?doshow= home.php?seite= home.php?a= index.php?modo= page.php?url= show.php?module= pagina.php?left= layout.php?c= sitio.php?texto= gallery.php?oldal= press.php?incl= principal.php?w= index2.php?pname= path.php?path= principal.php?goto=
*inc*.php?category= standard.php?base_dir= default.php?pag= home.php?where= default.php?pr= page.php?sivu= main.php?adresa=
*inc*.php?adresa= default.php?to= padrao.php?str= include.php?my= default.php?opcion= show.php?home= main.php?str= index.php?load= index3.php?rub= sub*.php?str= path.php?in= base.php?ev= principal.php?choix= start.php?index= nota.php?mod= default.php?m=

Liste-Google-Hacking V.2.1

Seite 81

sub*.php?mid= include.php?name= path.php?link= view.php?pag= principal.php?my= index1.php?*[*]*= pagina.php?oldal= padrao.php?loc= path.php?header=
*inc*.php?base_dir= padrao.php?rub= principal.php?basepath= view.php?disp= page.php?incl= gallery.php?disp= head.php?modo= nota.php?oldal= include.php?u= principal.php?pagina= show.php?left= gallery.php?url= sub*.php?*root*= print.php?choix= head.php?filepath= include.php?corpo= mod*.php?section= general.php?name= base.php?disp= sub*.php?action= principal.php?module= head.php?pname= index.php?inc= sub*.php?OpenPage= press.php?dir= gallery.php?xlink= mod*.php?to= show.php?xlink= file.php?left= padrao.php?oldal= sub*.php?lang= nota.php?destino= general.php?module= down*.php?x= main.php?id= enter.php?sp= index2.php?loader= enter.php?loader= index3.php?redirect= down*.php?param= default.php?ki= principal.php?disp= sub*.php?viewpage= template.php?pre= mod*.php?goFile= padrao.php?h= press.php?second= padrao.php?read= base.php?seccion= mod*.php?cont= index1.php?l= down*.php?pr= gallery.php?viewpage= template.php?load= sitio.php?doshow=
*inc*.php?type= nota.php?pr= padrao.php?destino= show.php?filepath=

Liste-Google-Hacking V.2.1

Seite 82

sitio.php?qry= general.php?pr= layout.php?panel= index2.php?channel= principal.php?opcion= pagina.php?go= start.php?str= press.php?*[*]*= default.php?var= index.php?ev= pagina.php?pre= nota.php?content= include.php?adresa= sub*.php?corpo= sitio.php?t= index.php?sivu= principal.php?q= file.php?viewpage= press.php?itemnav= mod*.php?ev= blank.php?OpenPage= path.php?ev= print.php?module= head.php?tipo= index.php?loc= nota.php?basepath= sitio.php?sec= padrao.php?tipo= index2.php?in= default.php?cmd= blank.php?channel= mod*.php?j= principal.php?eval= layout.php?modo= head.php?pageweb= file.php?qry= path.php?type= info.php?t= layout.php?g= enter.php?play= general.php?var= principal.php?s= standard.php?pagina= standard.php?subject= base.php?second= nota.php?base_dir= index2.php?showpage= index3.php?type= head.php?inc= pagina.php?basepath= base.php?cont= main.php?pname= mod*.php?chapter= sitio.php?ev= home.php?sekce= sitio.php?sp=
*inc*.php?modo= nota.php?tipo= include.php?goto= file.php?pg= head.php?g= general.php?header= view.php?to= include.php?middle= start.php?*root*= enter.php?pref= index3.php?open= start.php?module=

Liste-Google-Hacking V.2.1

Seite 83

Liste-Google-Hacking V.2.1 include.php?phpbb_root_path=
main.php?load= index2.php?include= enter.php?pg= nota.php?itemnav= include.php?option= index2.php?type= padrao.php?redirect= pagina.php?my= gallery.php?pre= base.php?link= path.php?chapter= show.php?sp= enter.php?w= info.php?texto= enter.php?open= base.php?rub= home.php?section= default.php?y= gallery.php?*[*]*= include.php?cmd= standard.php?dir= pagina.php?link= layout.php?page= index3.php?pageweb= index1.php?o= gallery.php?addr= include.php?numero= path.php?destino= index3.php?home=
*inc*.php?menu= default.php?seite= path.php?where= path.php?eval= pagina.php?home= base.php?choix= template.php?cont= info.php?pagina= file.php?doshow= index3.php?pname= nota.php?in= default.php?x= path.php?middlePart= down*.php?sp= page.php?module= default.php?option= index3.php?ev= standard.php?eval= gallery.php?ki= down*.php?second= blank.php?path= pagina.php?v= path.php?y= template.php?qry= start.php?option= info.php?subject= page.php?abre= sub*.php?g= file.php?pollname= index3.php?var= layout.php?goto= home.php?g= pagina.php?incl= home.php?action= include.php?oldal= print.php?left= file.php?play= print.php?u=
Seite 84


nota.php?v= home.php?str= start.php?loader= press.php?panel= start.php?showpage= info.php?ref= pagina.php?id= blank.php?name= page.php?mod= default.php?param= down*.php?texto= head.php?str= print.php?header= mod*.php?dir= index3.php?mid= down*.php?disp= blank.php?j= view.php?where= path.php?goto= default.php?type= blank.php?subject= mod*.php?incl= path.php?play= base.php?l= path.php?filepath= gallery.php?base_dir= show.php?middlePart=
*inc*.php?to= index2.php?rub= general.php?opcion= layout.php?xlink= home.php?page= padrao.php?name= layout.php?z= pagina.php?nivel= default.php?oldal= view.php?seccion= template.php?k= sitio.php?*root*= file.php?strona= main.php?chapter= layout.php?chapter= layout.php?incl= include.php?url= base.php?sivu= index.php?link= sub*.php?cont= mod*.php?pag= info.php?oldal= index2.php?ref= general.php?rub= default.php?str= head.php?ev= head.php?sekce= sub*.php?path= view.php?page= layout.php?pref= main.php?j= index2.php?basepath= path.php?doshow= path.php?panel= file.php?pagina= gallery.php?qry= index2.php?e= path.php?sp= main.php?url= pagina.php?load= general.php?section=

Liste-Google-Hacking V.2.1

Seite 85

index.php?include= base.php?filepath= default.php?incl= include.php?content= show.php?redirect= blank.php?basepath= template.php?ref= index1.php?pre= head.php?load= main.php?subject= general.php?base_dir= start.php?in= show.php?abre= file.php?y= down*.php?ev= padrao.php?choix= index.php?channel= index1.php?home= home.php?ev= nota.php?t= index2.php?ki= base.php?pag= blank.php?panel= default.php?ir= sub*.php?header= info.php?var= general.php?qry= index2.php?home= press.php?nivel= enter.php?read= head.php?adresa= print.php?param= default.php?sp= enter.php?pr= start.php?panel= template.php?dir= blank.php?loader= start.php?cmd= show.php?pre= padrao.php?d= view.php?content= print.php?strona= sitio.php?recipe= principal.php?read= standard.php?showpage= main.php?pg= sitio.php?inc= page.php?panel= info.php?header= press.php?addr= info.php?itemnav= template.php?s= file.php?to= main.php?tipo= base.php?itemnav= standard.php?where=
*inc*.php?ev= sitio.php?modo= sitio.php?disp= print.php?addr= mod*.php?oldal= padrao.php?page= show.php?thispage= sub*.php?go= start.php?load= index2.php?option= home.php?secao= blank.php?mod=

Liste-Google-Hacking V.2.1

Seite 86

index3.php?inc= main.php?start= standard.php?my= enter.php?y= enter.php?mid= base.php?pageweb= padrao.php?*root*= main.php?action= pagina.php?path= press.php?id= sub*.php?phpbb_root_path= path.php?home= index3.php?middle= main.php?inc= index3.php?get= default.php?seccion= index3.php?cmd= index.php?pname= print.php?numero= include.php?in= press.php?subject= include.php?secao= include.php?sec= index3.php?xlink= general.php?texto= index3.php?go= sub*.php?sec= home.php?channel= base.php?body= index.php?cmd= enter.php?ir= home.php?oldal= index3.php?disp= index3.php?left= sub*.php?middle= head.php?pag= general.php?menu= nota.php?seccion= path.php?xlink= show.php?modo= page.php?mid= index1.php?link= blank.php?sp= index1.php?pagina= head.php?left= default.php?panel=
*inc*.php?doshow= blank.php?id= print.php?read= enter.php?phpbb_root_path= sitio.php?destino= show.php?z= start.php?basepath= principal.php?d= blank.php?strona= start.php?name= default.php?chapter= template.php?y= head.php?goto= page.php?where= layout.php?category= index1.php?my= path.php?qry=

Liste-Google-Hacking V.2.1

principal.php?phpbb_root_path= nota.php?channel= default.php?*root*= enter.php?cmd= file.php?include=


Seite 87


enter.php?body= index.php?chapter= page.php?choix= start.php?xlink= home.php?k=

Liste-Google-Hacking V.2.1

standard.php?phpbb_root_path= principal.php?middlePart= include.php?panel=
mod*.php?m= default.php?choix= start.php?oldal= index.php?recipe= template.php?path= down*.php?ir= pagina.php?dir= sitio.php?abre= nota.php?module= info.php?xlink= enter.php?lang= index1.php?recipe= general.php?redirect= view.php?recipe= home.php?ir= padrao.php?open= blank.php?page= sub*.php?category=
*inc*.php?body= enter.php?middle= home.php?path= base.php?subject= padrao.php?u= sub*.php?my= enter.php?type= down*.php?pre= base.php?w= main.php?path= nota.php?ir= press.php?link= blank.php?ir= page.php?showpage= home.php?disp= gallery.php?pollname= index3.php?secc= down*.php?open= down*.php?pageweb= home.php?panel= default.php?eval= index1.php?pr= main.php?ref= view.php?showpage= layout.php?link= show.php?get= standard.php?qry= sitio.php?tipo= index2.php?thispage= layout.php?cont= index3.php?pollname= default.php?destino= pagina.php?cmd= view.php?body= head.php?rub= standard.php?include= padrao.php?seccion= down*.php?r= path.php?secao= press.php?opcion= gallery.php?tipo= main.php?param=

Seite 88

standard.php?e= index1.php?v= down*.php?in= pagina.php?secao= nota.php?include= sitio.php?secao= standard.php?secc= print.php?my= general.php?abre= general.php?link= gallery.php?loader= default.php?id= index3.php?include= pagina.php?to= enter.php?strona= standard.php?panel= sub*.php?s= show.php?channel= enter.php?get= path.php?var= enter.php?r= general.php?subject=
index3.php?phpbb_root_path= enter.php?pa= gallery.php?where= include.php?header= head.php?middle= include.php?mid= blank.php?incl= sub*.php?load= index2.php?corpo= gallery.php?sp= show.php?chapter= sub*.php?b=
index1.php?incl= home.php?choix= general.php?adresa= index1.php?c= print.php?goto= index2.php?var= main.php?pref= sub*.php?sp= index1.php?pname= template.php?doshow= padrao.php?base_dir= path.php?incl= info.php?recipe= view.php?sec= file.php?where= index2.php?my= print.php?name= info.php?c= include.php?w= start.php?op= principal.php?cont= print.php?menue= info.php?f= main.php?section= padrao.php?xlink= view.php?header= index1.php?url= gallery.php?basepath= layout.php?menue= head.php?y= template.php?mid= sub*.php?id= sub*.php?content= show.php?type=

Liste-Google-Hacking V.2.1

Seite 89

start.php?corpo= file.php?chapter= base.php?id= mod*.php?qry= home.php?chapter= standard.php?chapter= press.php?page= default.php?strona= sitio.php?chapter= nota.php?n= start.php?adresa= gallery.php?index= nota.php?h= page.php?oldal= enter.php?panel= blank.php?t= default.php?e= sub*.php?itemnav= standard.php?go= start.php?pollname= sitio.php?menu= sub*.php?module= press.php?goFile= principal.php?id= enter.php?thispage= down*.php?incl= principal.php?z= main.php?my= start.php?ir= mod*.php?index= info.php?ki= file.php?loader= index.php?mid= sitio.php?r= down*.php?seite= sub*.php?play= index2.php?doshow= index2.php?chapter= show.php?path= base.php?lang= nota.php?inc= standard.php?index= gallery.php?to= info.php?base_dir= index1.php?var= gallery.php?abre= principal.php?p= pagina.php?index= view.php?qry= home.php?tipo= page.php?numero= index1.php?strona= show.php?inc= gallery.php?pag= view.php?channel= index2.php?redirect= pagina.php?middlePart= template.php?base_dir= default.php?mod= index.php?op= info.php?mid= home.php?module= general.php?left= general.php?pre= print.php?doshow= general.php?page= path.php?adresa= padrao.php?type=

Liste-Google-Hacking V.2.1

Seite 90

template.php?pag= standard.php?pre= blank.php?ref= down*.php?z= general.php?inc= home.php?read= page.php?seite= pagina.php?section= home.php?menu= default.php?basepath= index2.php?open= blank.php?pname= sub*.php?modo= index2.php?goto= path.php?subject= index.php?pre= general.php?sivu= general.php?read= principal.php?ev= press.php?to= main.php?middle= sitio.php?pageweb= base.php?seite= print.php?pollname= index2.php?strona= template.php?f=
*inc*.php?j= index2.php?filepath= file.php?type= index1.php?oldal= template.php?e= index2.php?second= press.php?pagina= print.php?ki= index3.php?sekce= page.php?z= enter.php?left= info.php?filepath= head.php?middlePart= gallery.php?ev= index3.php?ref= base.php?opcion= file.php?id= path.php?category= index3.php?start= print.php?loc= sitio.php?body= pagina.php?n= start.php?rub=
*inc*.php?i= down*.php?s= padrao.php?a= page.php?OpenPage= gallery.php?option= mod*.php?sekce= blank.php?pre= general.php?channel= template.php?thispage= head.php?viewpage= index2.php?OpenPage= file.php?incl= sitio.php?e= page.php?section= mod*.php?middle= page.php?cont= sub*.php?adresa= index1.php?goFile= blank.php?action=

Liste-Google-Hacking V.2.1


Seite 91

principal.php?loader= gallery.php?id= index2.php?pg= sub*.php?op= layout.php?thispage= padrao.php?body= base.php?t= main.php?addr= start.php?mid= gallery.php?secao= press.php?redirect= pagina.php?tipo= pagina.php?seccion= layout.php?action= index.php?w= sitio.php?option= head.php?where= principal.php?tipo= index2.php?category= pagina.php?lang= include.php?ref= press.php?loader= gallery.php?showpage= gallery.php?go= enter.php?start= press.php?lang= general.php?p= index3.php?thispage= index.php?sekce= sub*.php?seite= index2.php?get= sitio.php?go= layout.php?addr= nota.php?mid= page.php?p= mod*.php?corpo= include.php?cont= press.php?t= blank.php?category= sub*.php?where=
*inc*.php?y= index3.php?index= path.php?recipe= nota.php?category= info.php?loader= print.php?sp= show.php?d= enter.php?menue=
page.php?phpbb_root_path= path.php?body= index1.php?t= principal.php?menue= print.php?cont= pagina.php?z= nota.php?adresa= main.php?thispage= default.php?mid= layout.php?tipo= blank.php?xlink= index3.php?d=
enter.php?b= main.php?loc= sub*.php?oldal= standard.php?z= general.php?b= include.php?left= show.php?base_dir= sitio.php?middlePart=

Liste-Google-Hacking V.2.1


Seite 92

template.php?a= print.php?sivu= press.php?OpenPage= page.php?read= index.php?param= default.php?channel= default.php?cont= sub*.php?link= general.php?pollname= padrao.php?texto= base.php?base_dir= template.php?nivel= file.php?texto= enter.php?page= file.php?middle= standard.php?str= gallery.php?get= main.php?v= base.php?middle= pagina.php?base_dir= print.php?tipo= down*.php?subject= principal.php?pag= index2.php?loc= enter.php?sivu= path.php?option= nota.php?option= index.php?strona= home.php?index= index1.php?choix= index2.php?f= press.php?destino= print.php?base_dir= file.php?get= pagina.php?channel= principal.php?b= info.php?content= home.php?include= default.php?goto= default.php?page= start.php?include= head.php?numero= print.php?option= default.php?v= base.php?numero= index2.php?qry= general.php?ref= sub*.php?secao= main.php?dir= gallery.php?cont= principal.php?type= file.php?param= default.php?secao= sub*.php?secc= mod*.php?lang= path.php?pageweb= standard.php?pollname= info.php?r= default.php?load= show.php?j= base.php?phpbb_root_path= main.php?itemnav= view.php?pg=
down*.php?pa= standard.php?open= pagina.php?choix= default.php?itemnav= index2.php?cmd=

Liste-Google-Hacking V.2.1

Seite 93

file.php?disp= press.php?xlink= print.php?s= layout.php?url= mod*.php?secc= index1.php?param= index.php?path= index1.php?second= start.php?modo= index3.php?sivu= index1.php?get= mod*.php?pg= index3.php?my= layout.php?cmd= info.php?phpbb_root_path= sub*.php?left= print.php?OpenPage= print.php?inc= default.php?thispage= enter.php?sec= view.php?type= path.php?*[*]*= base.php?adresa= home.php?middlePart= index3.php?channel= index3.php?oldal= template.php?sekce= down*.php?goFile= blank.php?header= start.php?body= standard.php?body= base.php?path= base.php?module= default.php?l= principal.php?strona= info.php?l= template.php?left= index2.php?texto= home.php?eval= padrao.php?section= blank.php?goFile= head.php?loc= index.php?index= page.php?ir= print.php?path= layout.php?ir= blank.php?pollname= down*.php?path= include.php?x= sitio.php?opcion= pagina.php?category= start.php?pageweb= gallery.php?rub= template.php?sp= sub*.php?basepath= press.php?menu= standard.php?section= enter.php?abre= index2.php?pref= index1.php?pa= sitio.php?incl= principal.php?seite= show.php?ki= gallery.php?chapter= nota.php?qry= pagina.php?pagina= index3.php?x= default.php?menu=

Liste-Google-Hacking V.2.1



Seite 94


page.php?strona=
*inc*.php?open= index3.php?secao= standard.php?*[*]*= default.php?abre= template.php?basepath= standard.php?goFile= index2.php?ir= file.php?modo= gallery.php?itemnav= main.php?oldal= press.php?pg= down*.php?showpage= start.php?nivel= start.php?destino= index1.php?filepath= blank.php?rub= path.php?ir= layout.php?var= padrao.php?op= mod*.php?pre= index1.php?texto= start.php?pg= default.php?pa= press.php?strona= nota.php?cmd= index1.php?showpage= info.php?go= standard.php?abre= general.php?seccion= index1.php?itemnav= layout.php?seite= path.php?load= home.php?pollname= path.php?left= down*.php?inc= index3.php?abre= blank.php?where= info.php?start= include.php?channel= print.php?dir= page.php?secao= nota.php?pag= main.php?disp= nota.php?second= print.php?pre= index2.php?to= standard.php?name= padrao.php?cont= start.php?strona= padrao.php?menu= mod*.php?numero= press.php?home= path.php?addr= info.php?z= mod*.php?path= blank.php?base_dir= base.php?sekce= pagina.php?loader= page.php?go= press.php?category= base.php?texto= gallery.php?left= nota.php?secc= index.php?tipo= index.php?goto= print.php?pag= down*.php?qry=

Liste-Google-Hacking V.2.1


Seite 95

view.php?secao= general.php?strona= show.php?my= file.php?second= page.php?e= padrao.php?index= include.php?pag= gallery.php?thispage= base.php?ir= start.php?base_dir= default.php?tipo= template.php?addr= gallery.php?panel= sitio.php?nivel= standard.php?ev= include.php?destino= standard.php?destino= general.php?middle= main.php?basepath= head.php?disp= standard.php?q= general.php?w= gallery.php?sec= base.php?var= enter.php?addr= enter.php?go= page.php?middle= start.php?home= index1.php?tipo= info.php?rub= mod*.php?choix= template.php?ir= pagina.php?OpenPage= show.php?adresa= general.php?mid= head.php?content= principal.php?pref= index3.php?adresa= pagina.php?sec= template.php?secao= home.php?w= home.php?in= path.php?disp= main.php?index= file.php?eval= general.php?content= press.php?base_dir= sub*.php?recipe= main.php?category= main.php?content= enter.php?viewpage= show.php?disp= main.php?ir= index.php?pg= show.php?pageweb= index.php?opcion= principal.php?ir= view.php?loader= down*.php?strona= default.php?pageweb= principal.php?seccion= index.php?oldal= principal.php?n= blank.php?link= file.php?sivu= head.php?d= info.php?adresa=
*inc*.php?ki=

Liste-Google-Hacking V.2.1


Seite 96

gallery.php?mid= padrao.php?incl= index.php?type= main.php?eval= gallery.php?nivel= standard.php?j= sub*.php?goFile= info.php?sec= show.php?oldal= enter.php?link= enter.php?content= blank.php?filepath= standard.php?channel= main.php?include= main.php?page= base.php?*[*]*= info.php?incl= down*.php?include= press.php?modo= file.php?choix= home.php?rub= default.php?k= index3.php?t= press.php?type= blank.php?goto= index3.php?showpage= file.php?showpage= principal.php?subject= enter.php?home= start.php?chapter= show.php?r= pagina.php?thispage= general.php?chapter= info.php?menue= index.php?middlePart= blank.php?corpo= press.php?where= path.php?p= page.php?base_dir= page.php?qry= show.php?incl= page.php?*[*]*= main.php?h= enter.php?path= file.php?seccion= default.php?pre= principal.php?index= press.php?ir= principal.php?inc= home.php?z= pagina.php?in= show.php?play= nota.php?subject= index1.php?path= default.php?secc= sub*.php?option= sub*.php?pag= layout.php?where= default.php?loader= info.php?o= padrao.php?var= file.php?oldal= template.php?menue= press.php?abre= mod*.php?b= layout.php?OpenPage= default.php?showpage= home.php?play=

Liste-Google-Hacking V.2.1


Seite 97


sitio.php?pg= press.php?channel= pagina.php?ev= sitio.php?name= page.php?option= main.php?filepath= press.php?mid= general.php?to= index1.php?*root*= show.php?qry= print.php?where= down*.php?corpo= view.php?get= index2.php?itemnav= pagina.php?q= enter.php?str= enter.php?name= print.php?thispage= sitio.php?addr= principal.php?home= show.php?param= standard.php?sivu= enter.php?incl= index3.php?mod= template.php?opcion= index3.php?panel= include.php?play= path.php?cmd= file.php?sp= nota.php?pre= template.php?section= view.php?str= blank.php?left= head.php?lang= nota.php?lang= pagina.php?g= path.php?sivu= main.php?e= default.php?ref= start.php?seite= default.php?inc= print.php?disp= include.php?tipo= home.php?h= principal.php?loc= index3.php?sp= gallery.php?var= sub*.php?base_dir= path.php?middle= default.php?loc= principal.php?destino= pagina.php?str= index3.php?menue= base.php?play= base.php?v= sitio.php?sivu= index.php?y= home.php?opcion= print.php?middlePart= main.php?r= sitio.php?secc= file.php?nivel= start.php?sivu= show.php?read= standard.php?var= template.php?c= info.php?param= general.php?second=

Liste-Google-Hacking V.2.1

Seite 98

head.php?start= sub*.php?mod= view.php?oldal= home.php?loc= mod*.php?play= head.php?corpo= gallery.php?h= standard.php?op= index2.php?inc= info.php?pref= pagina.php?mid= base.php?basepath= sub*.php?thispage= print.php?basepath=
*inc*.php?m= layout.php?loader= enter.php?qry= padrao.php?filepath= base.php?home= layout.php?strona= padrao.php?url= sitio.php?oldal= include.php?ir= pagina.php?read= sub*.php?u= base.php?chapter= index1.php?go= press.php?pageweb= standard.php?s= page.php?eval= sub*.php?pa= index.php?j= pagina.php?pr= enter.php?texto= start.php?secao= home.php?link= template.php?*[*]*= gallery.php?action= base.php?oldal= nota.php?get= index3.php?dir= include.php?ki= index3.php?link= home.php?e= index3.php?body= gallery.php?name= nota.php?eval= standard.php?oldal= sub*.php?abre= index2.php?load= principal.php?in= view.php?load= mod*.php?action= nota.php?showpage= default.php?p= general.php?f= head.php?c= template.php?viewpage= view.php?mid= padrao.php?addr= padrao.php?pag=
*inc*.php?rub= index2.php?adresa= view.php?go= head.php?sec= nota.php?filepath= print.php?link= gallery.php?pname=

Liste-Google-Hacking V.2.1


Seite 99


file.php?basepath= show.php?pname= home.php?pre= include.php?goFile= layout.php?play= index1.php?subject= info.php?middlePart= base.php?loc= down*.php?pg= file.php?q= gallery.php?sivu= sub*.php?body= index.php?option= sub*.php?chapter= default.php?t= padrao.php?header= head.php?opcion= layout.php?abre= index3.php?pref= enter.php?subject= nota.php?panel= page.php?modo= page.php?left= sitio.php?left= show.php?include= base.php?abre= index3.php?addr= pagina.php?start= blank.php?pr= head.php?choix= index3.php?tipo=
*inc*.php?get= print.php?play= padrao.php?secao= index.php?str= general.php?sekce= show.php?m= index3.php?choix= down*.php?channel= base.php?pa= head.php?b= nota.php?sekce= index1.php?mod= home.php?showpage= home.php?cmd= show.php?l= index1.php?read= page.php?load= general.php?choix= show.php?index= blank.php?url= home.php?my= start.php?param= layout.php?sekce= start.php?thispage= nota.php?play= enter.php?module= mod*.php?secao= show.php?second= show.php?n= start.php?pname= enter.php?include= down*.php?doshow= index2.php?pre= layout.php?nivel= home.php?base_dir= include.php?eval= principal.php?middle=

Liste-Google-Hacking V.2.1


Seite 100

standard.php?xlink= main.php?where= info.php?home= padrao.php?link= general.php?body= head.php?play= path.php?strona= index3.php?read= file.php?index= mod*.php?module= standard.php?viewpage= mod*.php?OpenPage= standard.php?pr= pagina.php?ref= index.php?b= principal.php?ki= sub*.php?panel= path.php?sec= path.php?pname= nota.php?left= default.php?header= padrao.php?mid= info.php?eval= include.php?path= padrao.php?qry= page.php?subject= file.php?corpo= padrao.php?strona= sub*.php?qry= sub*.php?z= head.php?module= nota.php?opcion= head.php?abre= pagina.php?include= page.php?link= start.php?abre= print.php?goFile=
*inc*.php?c= down*.php?cmd= base.php?str= home.php?body= home.php?middle= gallery.php?module= sub*.php?open= include.php?second= head.php?sivu= sitio.php?menue= path.php?tipo= page.php?inc= home.php?addr= pagina.php?header= mod*.php?v= home.php?doshow= padrao.php?n= gallery.php?pref= pagina.php?k= index1.php?chapter= padrao.php?basepath= head.php?strona= general.php?e= index.php?r= blank.php?get= index3.php?seccion= sitio.php?mid= index.php?where= general.php?type= pagina.php?goto= page.php?pa=

Liste-Google-Hacking V.2.1


Seite 101

default.php?menue= main.php?goto= index1.php?abre= blank.php?sivu= info.php?seccion= index2.php?pa= sitio.php?read= layout.php?pageweb= nota.php?disp= index1.php?body= home.php?thispage= pagina.php?loc= layout.php?qry= print.php?*root*= show.php?to= view.php?u= default.php?nivel= show.php?header= down*.php?pag= view.php?chapter= start.php?tipo= standard.php?w= index.php?open= blank.php?menu= principal.php?nivel= info.php?secao= general.php?nivel= padrao.php?nivel= index.php?var= nota.php?abre= standard.php?menu= index2.php?pollname= index3.php?path= home.php?redirect= index.php?base_dir= padrao.php?corpo= down*.php?url= enter.php?goto= general.php?secao= mod*.php?home= down*.php?addr= down*.php?section= sub*.php?j= principal.php?f= default.php?index= sub*.php?menue= general.php?doshow= padrao.php?abre= index2.php?section= enter.php?seite= general.php?my= down*.php?lang= head.php?loader= main.php?xlink= general.php?goto= include.php?dir= index3.php?base_dir= gallery.php?redirect= layout.php?basepath= start.php?header= pagina.php?modo= blank.php?in= base.php?name= index.php?adresa= down*.php?u= nota.php?goFile= main.php?mod= file.php?start=

Liste-Google-Hacking V.2.1

Seite 102

view.php?redirect= index2.php?u= head.php?base_dir= mod*.php?recipe= press.php?pr= padrao.php?*[*]*= info.php?ev= layout.php?opcion= index1.php?nivel= include.php?seccion= print.php?rub= view.php?lang= index.php?pr= mod*.php?include= general.php?seite= pagina.php?numero= mod*.php?seccion= principal.php?pollname= include.php?read=
*inc*.php?pg= press.php?rub= index2.php?incl= pagina.php?chapter= view.php?middle= print.php?sekce= nota.php?rub= padrao.php?pname= view.php?seite= head.php?ref= pagina.php?recipe= principal.php?link= index.php?pref= page.php?action= page.php?ev= show.php?ir= gallery.php?menue= template.php?op= info.php?doshow= head.php?index= mod*.php?pname= view.php?ir= default.php?sivu=
*inc*.php?start= principal.php?rub= principal.php?corpo= padrao.php?middle= nota.php?pagina= sitio.php?content= base.php?pname= press.php?thispage= template.php?header= press.php?pa= index1.php?redirect= padrao.php?menue= index2.php?sekce= mod*.php?d= view.php?sp= include.php?filepath= main.php?name= nota.php?m= blank.php?open= head.php?dir= principal.php?l= page.php?pname= layout.php?oldal=
*inc*.php?k= index.php?pollname= include.php?b=

Liste-Google-Hacking V.2.1


Seite 103


head.php?oldal= index1.php?str= layout.php?pollname= start.php?play= template.php?choix= down*.php?pollname= page.php?recipe= template.php?corpo= nota.php?sec= print.php?r= info.php?*[*]*= sub*.php?*[*]*= page.php?q= mod*.php?addr= index1.php?type= base.php?category= gallery.php?y= standard.php?lang= gallery.php?page= index2.php?d= index.php?action= press.php?pname= down*.php?v=
mod*.php?phpbb_root_path= index3.php?second= default.php?include= show.php?recipe= press.php?module= main.php?pre= file.php?numero= default.php?module= info.php?pname= print.php?str= path.php?id= general.php?get= press.php?path= padrao.php?sekce= standard.php?link= base.php?ki= nota.php?OpenPage= view.php?pollname= print.php?l=
file.php?cmd= index.php?go= standard.php?numero= view.php?pr= down*.php?read= layout.php?section= press.php?include= down*.php?action= mod*.php?destino= index1.php?OpenPage= principal.php?left= mod*.php?start= file.php?body= base.php?doshow= gallery.php?pg= blank.php?qry= principal.php?load= base.php?eval= default.php?left= gallery.php?param= print.php?type= blank.php?pa= nota.php?b= path.php?loader= start.php?o= index1.php?adresa=

Liste-Google-Hacking V.2.1


Seite 104


include.php?include= nota.php?corpo= index3.php?pre= enter.php?second= sub*.php?pname= mod*.php?pageweb= standard.php?cont= gallery.php?open= blank.php?read= principal.php?addr= standard.php?action= sitio.php?redirect= index1.php?cmd= info.php?redirect= template.php?lang= include.php?basepath= file.php?load= index3.php?itemnav= sub*.php?ir= gallery.php?mod= down*.php?nivel= enter.php?ref= path.php?opcion= down*.php?t= view.php?goFile= print.php?category= file.php?var= sitio.php?ir= print.php?menu= layout.php?secao= template.php?param= show.php?b= standard.php?ref= base.php?include= blank.php?body= sitio.php?param= sub*.php?rub= print.php?opcion= press.php?middle= path.php?pref= info.php?ir= print.php?g= home.php?basepath= padrao.php?subject= nota.php?modo= index3.php?loader= template.php?seite= blank.php?section= include.php?to= general.php?pageweb= index2.php?param= start.php?sp= index3.php?name= path.php?nivel= page.php?pref= template.php?showpage= view.php?ki= index1.php?sekce= press.php?option= nota.php?home= gallery.php?my= press.php?pref= show.php?mid= enter.php?ev= blank.php?o= sitio.php?pr= index3.php?destino= standard.php?middle=

Liste-Google-Hacking V.2.1


Seite 105


main.php?body= index2.php?recipe= blank.php?dir= home.php?pageweb= blank.php?lang= path.php?thispage= view.php?panel= down*.php?home= padrao.php?OpenPage= head.php?ir= info.php?pageweb= blank.php?h= mod*.php?ir= show.php?pagina= head.php?incl= default.php?base_dir= principal.php?ref= index.php?body= start.php?go= show.php?loader= file.php?action= template.php?t= path.php?mid= base.php?mid= start.php?b= start.php?lang= blank.php?abre= down*.php?choix= default.php?rub= info.php?opcion= page.php?loader= head.php?read= principal.php?oldal= show.php?cmd= index1.php?load= home.php?content= pagina.php?sekce= file.php?n= include.php?redirect= press.php?get= print.php?itemnav= enter.php?index= index.php?content= print.php?middle= principal.php?secc= sitio.php?goFile= head.php?include= gallery.php?menu= gallery.php?corpo= enter.php?e= index.php?play= include.php?module= enter.php?id= view.php?mod= show.php?nivel= file.php?channel= layout.php?choix= page.php?redirect= gallery.php?filepath= info.php?body= general.php?ir= include.php?go= file.php?ref= index1.php?seite= include.php?pageweb= index3.php?nivel= show.php?seccion= sub*.php?include=

Liste-Google-Hacking V.2.1

Seite 106


path.php?numero= mod*.php?pagina= sub*.php?name= padrao.php?c= principal.php?header= main.php?opcion= enter.php?s= padrao.php?eval= file.php?ev= default.php?body= enter.php?itemnav= blank.php?var= index.php?addr= blank.php?oldal= nota.php?url= index2.php?action= sub*.php?pre= blank.php?phpbb_root_path= include.php?index= mod*.php?var= gallery.php?pageweb= padrao.php?path= mod*.php?strona= info.php?url=
press.php?ev= index1.php?pg= print.php?in= general.php?modo= nota.php?nivel= template.php?content= mod*.php?content= default.php?f= view.php?goto= head.php?ki= press.php?my= index1.php?pollname= principal.php?to= principal.php?abre= default.php?play= pagina.php?filepath= nota.php?link= template.php?tipo= index3.php?q= page.php?g= nota.php?pg= blank.php?destino= page.php?adresa= sitio.php?category= index2.php?link= sub*.php?k= blank.php?z= layout.php?numero=

Liste-Google-Hacking V.2.1

components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
tools/send_reminders.php?includedir= module_db.php?pivot_path= classes/adodbt/sql.php?classes_dir= inc/cmses/aedatingCMS.php?dir[inc]= modules/vwar/admin/admin.php?vwar_root= bb_usage_stats/include/bb_usage_stats.php?phpbb_root_path=
components/com_extended_registration/registration_detailed.inc.php?mosConfig_abs olute_path=
index.php?RP_PATH= index.php?pagename= administrator/components/com_remository/admin.remository.php?mosConfig_absolute_ path=
smarty_config.php?root_dir= components/com_forum/download.php?phpbb_root_path= include/editfunc.inc.php?NWCONF_SYSTEM[server_path]=
Seite 107

Liste-Google-Hacking V.2.1 include/editfunc.inc.php?NWCONF_SYSTEM[server_path]= classes/adodbt/sql.php?classes_dir= send_reminders.php?includedir=
components/com_rsgallery/rsgallery.html.php?mosConfig_absolute_path= inc/functions.inc.php?config[ppa_root_path]= components/com_cpg/cpg.php?mosConfig_absolute_path= admin/index.php?o=
admin/index.php?o= index.php?menu=deti&page= modules/coppermine/themes/coppercop/theme.php?THEME_DIR= components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path= tools/send_reminders.php?includedir=
SQuery/lib/gore.php?libpath= components/com_simpleboard/image_upload.php?sbp= m2f/m2f_phpbb204.php?m2f_root_path= components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]= components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]= components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]= admin/doeditconfig.php?thispath=../includes&config[path]= components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path= tools/send_reminders.php?includedir=
SQuery/lib/gore.php?libpath= components/com_simpleboard/image_upload.php?sbp= m2f/m2f_phpbb204.php?m2f_root_path= wamp_dir/setup/yesno.phtml?no_url= components/com_simpleboard/image_upload.php?sbp= modules/coppermine/themes/coppercop/theme.php?THEME_DIR= mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]= zentrack/index.php?configFile= pivot/modules/module_db.php?pivot_path= inc/header.php/step_one.php?server_inc= install/index.php?lng=../../include/main.inc&G_PATH= inc/pipe.php?HCL_path=
include/write.php?dir=
include/new-visitor.inc.php?lvc_include_dir= includes/header.php?systempath= support/mailling/maillist/inc/initdb.php?absolute_path= coppercop/theme.php?THEME_DIR= zentrack/index.php?configFile= pivot/modules/module_db.php?pivot_path= inc/header.php/step_one.php?server_inc= install/index.php?lng=../../include/main.inc&G_PATH= inc/pipe.php?HCL_path=
include/write.php?dir=
"A syntax error has occurred" filetype:ihtml
"About Mac OS Personal Web Sharing" "access denied for user" "using password" "allow_call_time_pass_reference" "PATH_INFO"
"An illegal character has been found in the statement" -"previous message" "ASP.NET_SessionId" "data source="
"AutoCreate=TRUE password=*"
"Can't connect to local" intitle:warning "Certificate Practice Statement" inurl:(PDF | DOC) "Chatologica MetaSearch" "stack tracking" "Copyright © Tektronix, Inc." "printer status"
"detected an internal error [IBM][CLI Driver][DB2/6000]" "Dumping data for table"
"Error Diagnostic Information" intitle:"Error Occurred While" "error found handling the request" cocoon filetype:xml
"Fatal error: Call to undefined function" -reply -the -next

"Generated by phpSystem" "generated by wwwstat"
"Host Vulnerability Summary Report" "HTTP_FROM=googlebot" googlebot.com "Server_Software=" "IMail Server Web Messaging" intitle:login
"Incorrect syntax near" "Index of /" +.htaccess

Seite 108


"Index of /" +passwd
"Index of /" +password.txt
"Index of /admin" "Index of /mail"

Liste-Google-Hacking V.2.1

"Index Of /network" "last modified" "Index of /password"
"index of /private" site:mil
"index of /private" -site:net -site:com -site:org
"Index of" / "chat/logs"
"index of/" "ws_ftp.ini" "parent directory" "Installed Objects Scanner" inurl:default.asp "Internal Server Error" "server at"
"liveice configuration file" ext:cfg
"Login - Sun Cobalt RaQ"
"Mecury Version" "Infastructure Group"
"Microsoft ® Windows * ™ Version * DrWtsn32 Copyright ©" ext:log
"More Info about MetaCart Free"
"Most Submitted Forms and Scripts" "this section" "mysql dump" filetype:sql
"mySQL error with query"
"Network Vulnerability Assessment Report" ???? pc007.com
"not for distribution" confidential
"ORA-00921: unexpected end of SQL command" "ORA-00933: SQL command not properly ended" "ORA-00936: missing expression"
"pcANYWHERE EXPRESS Java Client"
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae" "phpMyAdmin MySQL-Dump" "INSERT INTO" -"the"
"phpMyAdmin MySQL-Dump" filetype:txt
"phpMyAdmin" "running on" inurl:"main.php"
"PostgreSQL query failed: ERROR: parser: parse error" "Powered by mnoGoSearch - free web search engine software" "powered by openbsd" +"powered by apache"
"Powered by UebiMiau" -site:sourceforge.net
"produced by getstats"
"Request Details" "Control Tree" "Server Variables" "robots.txt" "Disallow:" filetype:txt
"Running in Child mode" "sets mode: +k"
"sets mode: +p" "sets mode: +s"
"Supplied argument is not a valid MySQL result resource" "Supplied argument is not a valid PostgreSQL result" "Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"

"This summary was generated by wwwstat" "VNC Desktop" inurl:5800
"Warning: Cannot modify header information - headers already sent" "Web File Browser" "Use regular expression"
"xampp/phpinfo
"You have an error in your SQL syntax near"
"Your password is * Remember this for later use" aboutprinter.shtml
allintitle: "index of/admin" allintitle: "index of/root" allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov allintitle: sensitive filetype:doc allintitle:\"Test page for Apache Installation\" allintitle:admin.php
allinurl:"/*/_vti_pvt/" | allinurl:"/*/_vti_cnf/" allinurl:admin mdb
allinurl:auth_user_file.txt allinurl:servlet/SnoopServlet
An unexpected token "END-OF-STATEMENT" was found camera linksys inurl:main.cgi

Seite 109


Canon Webview netcams Comersus.mdb database confidential site:mil

Liste-Google-Hacking V.2.1

ConnectionTest.java filetype:html
data filetype:mdb -site:gov -site:mil eggdrop filetype:user user
ext:conf NoCatAuth -cvs
ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-" ext:txt inurl:unattend.txt
filetype:ASP ASP filetype:ASPX ASPX filetype:BML BML
filetype:cfg ks intext:rootpw -sample -test -howto filetype:cfm "cfapplication name" password filetype:CFM CFM
filetype:CGI CGI
filetype:conf inurl:psybnc.conf "USER.PASS=" filetype:dat "password.dat
filetype:DIFF DIFF filetype:DLL DLL filetype:DOC DOC filetype:FCGI FCGI filetype:HTM HTM filetype:HTML HTML filetype:inf sysprep filetype:JHTML JHTML filetype:JSP JSP
filetype:log inurl:password.log filetype:MV MV
filetype:pdf "Assessment Report" nessus filetype:PDF PDF
filetype:PHP PHP filetype:PHP3 PHP3 filetype:PHP4 PHP4 filetype:PHTML PHTML filetype:PL PL filetype:PPT PPT filetype:PS PS filetype:SHTML SHTML filetype:STM STM filetype:SWF SWF filetype:TXT TXT filetype:XLS XLS htpasswd / htpasswd.bak Index of phpMyAdmin
index of: intext:Gallery in Configuration mode index.of passlist
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board" intext:"d.aspx?id" || inurl:"d.aspx?id" intext:"enable secret 5 $"
intext:"powered by Web Wiz Journal"
intext:"SteamUserPassphrase=" intext:"SteamAppUser=" -"username" -"user" intitle:"--- VIDEO WEB SERVER ---" intext:"Video Web Server" "Any time & Any where" username password
intitle:"500 Internal Server Error" "server at"
intitle:"actiontec" main setup status "Copyright 2001 Actiontec Electronics Inc" intitle:"Browser Launch Page"
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu intitle:"EverFocus.EDSR.app<-b>let"
intitle:"Index of" ".htpasswd" "htgroup" -intitle:"dist" -apache -htpasswd.c intitle:"Index of" .bash_history
intitle:"Index of" .mysql_history intitle:"Index of" .mysql_history intitle:"Index of" .sh_history intitle:"Index of" cfide intitle:"index of" etc/shadow intitle:"index of" htpasswd intitle:"index of"
intext:globals.inc

Seite 110

Liste-Google-Hacking V.2.1 intitle:"index of" master.passwd 007???? intitle:"index of" members OR accounts
intitle:"index of" passwd intitle:"Index of" passwords modified intitle:"index of" people.lst intitle:"index of" pwd.db intitle:"Index of" pwd.db intitle:"index of" spwd
intitle:"Index of" spwd.db passwd -pam.conf intitle:"index of" user_carts OR user_cart intitle:"Index of..etc" passwd intitle:"iVISTA.Main.Page"
intitle:"network administration" inurl:"nic"
intitle:"OfficeConnect Cable/DSL Gateway" intext:"Checking your browser" intitle:"remote assessment" OpenAanval Console
intitle:"Remote Desktop Web Connection" inurl:tsweb intitle:"switch login" "IBM Fast Ethernet Desktop" intitle:"SWW link" "Please wait....." intitle:"teamspeak server-administration intitle:"TUTOS Login"
intitle:"VMware Management Interface:" inurl:"vmware/en/" intitle:"Welcome to the Advanced Extranet Server, ADVX!" intitle:"Welcome to Windows 2000 Internet Services" intitle:"Connection Status" intext:"Current login"
intitle:"inc. vpn 3000 concentrator" intitle:asterisk.management.portal web-access
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp)
-site:duware.com
intitle:index.of administrators.pwd intitle:index.of cgiirc.config intitle:Index.of etc shadow site:passwd
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:index.of master.passwd
intitle:index.of passwd passwd.bak intitle:index.of people.lst intitle:index.of trillian.ini
intitle:Novell intitle:WebAccess "Copyright &# Novell, Inc" intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
intitle:open-xchange inurl:login.pl inurl:":10000" intext:webmin inurl:"8003/Display?what=" inurl:"auth_user_file.txt" inurl:"GRC.DAT" intext:"password"
inurl:"printer/main.html" intext:"settings"
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"ViewerFrame?Mode="
inurl:"wvdial.conf" intext:"password" ????007????
inurl:"wwwroot/ inurl:/Citrix/Nfuse17/ inurl:/db/main.mdb inurl:/wwwboard inurl:access
inurl:admin filetype:db inurl:asp
inurl:buy
inurl:ccbill filetype:log inurl:cgi inurl:cgiirc.config inurl:chap-secrets -cvs
inurl:config.php dbuname dbpass inurl:data
inurl:default.asp intitle:"WebCommander" inurl:download
inurl:file inurl:filezilla.xml -cvs inurl:forum

Seite 111


inurl:home

Liste-Google-Hacking V.2.1

inurl:hp/device/this.LCDispatcher inurl:html
inurl:iisadmin inurl:inc inurl:info
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:list
inurl:login filetype:swf swf inurl:mail
inurl:midicart.mdb inurl:names.nsf?opendatabase inurl:new
inurl:nuke filetype:sql inurl:order
inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pages
inurl:pap-secrets -cvs inurl:passlist.txt inurl:passwd filetype:txt inurl:Proxy.txt inurl:public
inurl:search
inurl:secring ext:skr | ext:pgp | ext:bak inurl:shop
inurl:shopdbtest.asp inurl:software inurl:support inurl:user
inurl:vtund.conf intext:pass -cvs s inurl:web
inurl:zebra.conf intext:password -sample -test -tutorial -download
LeapFTP intitle:"index.of./" sites.ini modified
POWERED BY HIT JAMMER 1.0!
signin filetype:url
site:ups.com intitle:"Ups Package tracking" intext:"1Z ### ### ## #### ### #" top secret site:mil
Ultima Online loginservers
VP-ASP Shop Administrators only
XAMPP "inurl:xampp/indexstall/index.php?lng=../../include/main.inc&G_PATH=\n", "inc/pipe.php?HCL_path=\n", "include/write.php?dir=\n",
"include/new-visitor.inc.php?lvc_include_dir=\n", "includes/header.php?systempath=\n", "support/mailling/maillist/inc/initdb.php?absolute_path=\n", "coppercop/theme.php?THEME_DIR=\n", "\"Copyright \xC2\xA9 Tektronix, Inc.\"
\"printer status\"\n", "\"Microsoft \xC2\xAE Windows * \xE2\x84\xA2 Version * DrWtsn32 Copyright \xC2\xA9\" ext:log\n",
"intitle:\"EverFocus.EDSR.app<-b>let\"\n"]


Seite 112

Keine Kommentare:

Kommentar veröffentlichen