Google Hacking is a term that refers to the act of creating complex search engine queries in order to filter through large amounts of search results for information related to computer security. In its malicious format it can be used to detect websites that are vulnerable to numerous exploits and vulnerabilities as well as locate private, sensitive information about others, such as credit card numbers, social security numbers, and passwords.
There are loads of YouTube videos out there about it, there are applications that help do it for you.... but really all one honestly needs is a good reference for creating queries and maybe a good database of other people's custom Google queries.
It amazes me how many people I run into are unaware of Google's advanced features and their implications.
here are some fun ones...
Webcams: intitle:”Live View / - AXIS” | inurl:view/view.shtml^
FrontPage Passwords: "# -FrontPage-" inurl:service.pwd
Recycle bins....: "index of" inurl:recycler
People Running a web server on their (windows) desktop.....and left indexing turned on:intitle:"index of" "parent directory" "desktop.ini" site:dyndns.org
one for the road..... ;) if this doesn't scare you.. you don't get it..
No comments:
Post a Comment