|
http://www.cnsu.org-->site
& @1 ^; \. N* l; z$ f8 o; h, r3 N* t' c+ F) p
www.cnsu.org-->inurl
; ?* n) I' I9 {. j, ^3 X- W4 I6 o7 m o! R
adminàinurl 9 s0 y% _7 ?$ z# t
5 `7 _( n: v# j 。asp D D》filetype
' a. [% L0 e; |2 {: f7 _, a/ W% Z) C3 M% F I. D( d
标题 D D》intitle
& _4 d; u; l' M0 T- K$ j5 G7 v7 O3 n0 Y1 Q0 n9 ^0 R9 G
页面文字 D D》intext
, l3 G6 f' @% p: `1 d3 ]
. |+ o. ~/ [6 i; j, o0 q 页面编号 D D》numeange % W# \* z$ o n9 x$ W- R ^5 n
! z- V9 n, ]5 _( c; _0 m - 逻辑非,“A-B”表示包含A没有B的网页
; w; E, Y/ w* n# I- V2 O1 e, Y/ v- a7 U6 f( ^8 t+ O4 w; q7 n9 ^2 X
*代表单个字符 . u0 A: l* J' b" X. O, h7 [
5 m5 c/ P9 [# {% Q; s+ D or操作 4 t% \! }& W, U8 X
9 B4 {: G/ p4 }7 K
“”用短语做关键字,必须加上引号,不然会被当作与操作
. c# w# ^6 q9 U4 p/ \8 A& [
8 w! `5 Y2 H! C; \( N 。空格 # V! O+ j! h: k, R0 ^
! r \1 n* v! Q* w- u: o9 A3 n
Google对一些网路上出现频率极高的英文单词,如“i”、“com”、“www”等,以及一些符号如“*”、“。”等,作忽略处理
& Z5 w/ x( E' Q" v& j
/ a& E# H/ i7 m$ @& i: c 可以用+强制搜索 5 Y. g- n( i/ v7 Y
3 x* j% ^, n( n/ P! c0 e 下面的语句是我搜集来的,大家可以试着用下 4 Q7 E7 Q; B" w0 W$ ~
4 G) Y& ?; }2 N& g' \! D 比如用Intitle:welcome.to.iis.4.0 IIS4会找到好多winNT的主机,呵呵
5 j' f0 z1 D& f! d5 E
0 X1 V- G# A" U; X' E, M. ` Site:sohu.com
8 ]! Q- ?. |( w1 D, V4 E1 e9 n
" A/ h9 B5 m8 X! e" W Site:sohu.com-site:www.sohu.com
( v+ t; u; N. ~! ?* b1 i! @6 T; C, Z) \5 y$ V$ y0 `
Intitle:index.of/admin 0 \* \0 x1 B n$ `- o8 B( e
, `( s( v0 h4 [ K% B Intitle:index.of apache server.at
9 ?2 L% V# Y0 h0 X6 s. J
* b3 O. K- J3 G" o4 U; i Intitle:test.page.for.apache “it workd”
( W b C& S! ]$ d! Q: Z
5 A# [% c0 P5 Z2 c Allintitle:Netscape Fasr Track Server Home Page / u7 Y4 g I8 H
1 I3 S) D4 {. P6 { Intitle:”welcome to windows 2000 internet services”
4 w# x9 [6 R* u8 w q
( } Q/ s' P) ~+ S1 L IIS—win2000 . T8 A! i) L2 G
) U5 v. m' \% v! S; e+ N* b: O3 [ Allintitle:welcome to windows XP server internet
; q; E* r; ^9 a: ]2 K. h8 ^; U& n* V! ]
services iis---XP # B5 u+ b* X* I+ R/ `1 K' S
) N. @! ~+ k$ [. f. h' C- F
Intitle:welcome.to.iis.4.0 IIS4
2 g7 j/ H5 }/ L% i* K
4 ^" v( _1 g) J$ B Allintrtle:”welcome to internet information server” 8 c" g% H' l" v
% v5 n; e6 T6 i; |2 |# J. L IIS-- generic & P4 n } g4 E+ i1 x7 D* }5 E
# u" q+ m3 ^ o Intitle:”apache http server” ! Q- u" i% \' D: v
" ~# D! _8 \ I- r8 p0 Z Intitle:”documentation” ! n) O1 n' e: W, d8 w' R+ V6 w
9 u6 D6 [+ l P; z
Intitle:””error using hypernews””server software”
! V: L/ ]8 X0 W. c( q F5 U7 b! U3 Y: \2 `9 J ?0 }
“HTTP_USER_AGENT=Googlebot”
; q$ }& a& h: @& ]$ a: s3 @$ Z$ L* ]2 [2 L
“HTTP_USER_AGENT=Googlebot”TNS_ADMIN
9 y/ @; t q0 t. z) i5 b/ P! |% M: ]! F- b
Inurl:/admin/login.asp + o: Y2 C# t; l
. c+ L1 K: i p0 ^' C! v Intitle:”remote desktop wen connection”
; b$ Z9 }8 h: H) j- ^8 D
& i% @. Y2 S/ N! @0 v8 k “welcome to *” “Your password is *” / W8 H3 t$ q$ `4 {, D' X
J* ]4 z7 @6 r: Z( l Inurl(browse top_rated power_search hot create_admin_user)+”powered
% E/ |/ q( ~1 |5 @3 Y, t/ E2 V6 N. T+ o1 E
by inde xu”
1 m4 R, }" p3 o
+ ]6 R3 c; J/ g9 c “adding new user” inurl:addnewuser C“there are no
+ R" H$ R. Q7 o! t9 p* M' h$ F) J! C$ o' e
domain”
% G5 L( _) R% N( b( }$ [/ N+ K7 X/ O3 S# `* p) I' W
Filetype:log inurl:”password.log” % Q, I. y: |" M$ t9 a/ j
( ?) z& v, P% ?; a5 Q! q F2 h+ T
Intitle:”PHP Shell *” “enable stderr” filetype:php / E4 B2 Q8 S3 G2 T8 ^& h+ i: V
. r+ R+ c7 }7 q$ v
Intitle:confixx login password
) Y/ @5 J" w- K) ~6 T o( v6 S+ @# E' r& {& J. i
“powered by rover”
: K# |5 a$ U7 x( R, C. ?+ D7 z7 h N/ S8 b
Inurl:iisadmpwd ! {$ H" f7 Y. b$ \7 }: s( T
$ i% H$ S- A% j3 E" \, R Inurl:5800 , Q1 q& v. A1 B
- Z# P$ A# z2 p1 D' \
“VNC desktop” inurl:5800
& P6 U, l- V1 l2 m; W; q2 d% K/ h( Y& K
Inurl:webmin inurl:10000 ) K) X3 @7 _2 s* t5 w" H
$ Y B4 D0 O* ?: X" n3 T, V Inurl:8080 Cintext:8080
' B3 n, P O# B; W2 q4 t
/ w7 p; { g* U" x8 B9 J “access denird for user” “using password” : [- t* A( S5 ~( Y3 Z8 R6 c
d1 i! B* X; B/ z, @% v2 G “# Dumping data for table”
" e) D2 A6 x0 ^- B8 M# L8 i5 i" m8 j: s; P B6 |
“# Dumping data for table” username password
" f5 y- W- C2 ~& n' y- r3 P% a* K' S& {3 N
“# Dumping data for table
2 h# G0 a; e9 u0 w6 p
/ R1 e5 \' y% I( Q- x) ? (username user users password)” }0 l" [& `1 @- E' n
O" g7 I5 o. b9 x. f Inurl:main.php welcome to phpmyadmin * H Z2 R. t" @3 h
5 I6 Q1 B5 g) b+ A5 b Intitle:”phpmyadmin running on *” welcome to phpmyadmin 3 r; j' z0 M8 e7 |4 Q
+ H1 E# {3 g6 I* |
Filetype:inc intext:mysql connect 7 I" P0 D8 Y9 N' n- v
2 q: ~: m B7 V% s* A+ B Filetype:sql + “INENTIFIED BY” Ccvs $ l/ \2 f8 ^$ C6 s( G
3 h9 @* p9 U5 D Filetype:sql + “INENTIFIED BY” (“grant * on *” “create
& |5 B F$ k$ w% {
! t% P& @3 e' F. [ user”) " K* a, N; |( j W) E' ^& p
% l6 X7 o! w# {4 Q% I8 @) j
“this report lists” “identified by internet scaner” 2 I5 Q+ H2 ^$ _2 _- [0 g/ w! C
: W5 b1 M% E1 g8 h9 {) L) @
ACID “by roman danyliw” Filetype HP
" M7 l( z8 C% s* P
/ T% T1 u7 A3 @2 x 小提示:用google hacking工具搜索这些,真的是多快好省啊:)
A6 _+ q2 o# E* h | 
IP卡
狗仔卡
发表于 2005-4-28 18:14
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
!!!!!!!!!!!!!!
