|
http://www.cnsu.org-->site / H3 ~7 N# x3 v4 K; @2 s
) x9 ~" [, Y! O, S, s www.cnsu.org-->inurl ' u" C) ^; |7 }% s
( w6 ]- R) B( ]5 v" W. U
adminàinurl R9 h0 A+ i% Y* i) x8 K3 L" S
! m8 e& |8 R% o$ a6 t& w$ @0 A) g9 [
。asp D D》filetype
9 [2 {/ ^, y4 Z
, z+ @* p: h" z0 f4 M7 y. z. D& w 标题 D D》intitle
9 h* `( ~; A; x6 v" @
2 q+ {' z3 n' _. }, f 页面文字 D D》intext
! Q' C3 J$ P" f( ]# u% t* D
1 }( [( G/ k7 J 页面编号 D D》numeange
- ]7 z8 U) s5 L: ]" r4 z" h5 i6 j
, y- z: P% o+ @: x' W: G2 P - 逻辑非,“A-B”表示包含A没有B的网页 : k$ D* U* J. [
. C5 i9 R$ g8 W5 W6 i- L! z
*代表单个字符 * Q% j$ }) n, j/ D
' x) g! ?7 C b0 x& ] or操作 3 o0 k, Y: r6 T& M2 |! N3 s
& @ v% k' E" e! `3 B# N$ Z$ \
“”用短语做关键字,必须加上引号,不然会被当作与操作
e( q. x! c' h+ K2 ]
/ X$ b% b$ `: h7 A% C( i# w 。空格
9 D: {1 X* e) Y+ w1 i
$ S) x! @ e8 C! ~ Google对一些网路上出现频率极高的英文单词,如“i”、“com”、“www”等,以及一些符号如“*”、“。”等,作忽略处理 9 c4 E1 u- U( C' u, ^
`0 t. y% E+ D- u f( U 可以用+强制搜索
+ C3 y! I# g+ h1 V g5 C- k9 a/ _# h S4 u" t
下面的语句是我搜集来的,大家可以试着用下 " |- w' f, d w4 r
5 {# r4 J/ @+ e/ b5 A. d5 T, @0 H 比如用Intitle:welcome.to.iis.4.0 IIS4会找到好多winNT的主机,呵呵 ' M& x# {, X# ` _: ]; o& x
2 H; }8 A0 c& y" t3 `
Site:sohu.com
3 F+ q5 t! L% }2 E F1 X4 @: R! ~7 e
5 U) r6 S7 p5 Z/ X Site:sohu.com-site:www.sohu.com ( j3 `2 a: \: o
. A6 d+ P) W: o4 ~$ I& x! f Intitle:index.of/admin
! c5 w; a! }- v$ ]' L1 X# t0 f
0 H5 g2 a0 V/ Z2 ~. X6 B, e; L Intitle:index.of apache server.at
- ]2 }4 y1 l0 ]6 Y1 [& Y
( I) ]9 l3 c% F( l- t' Q" b Intitle:test.page.for.apache “it workd” . h( S% Q7 p! n5 m1 l
{0 B7 X! y) \# r! S Allintitle:Netscape Fasr Track Server Home Page
! {) Y) i$ n, Z; _( v: C
" V" d8 y1 w" A+ h$ A Intitle:”welcome to windows 2000 internet services” " G ] x7 \- S2 Z+ B/ L: v
( M. V% t$ a0 K
IIS—win2000
" _, E( D0 e. b7 R; ~2 u7 i, ?
- N+ _0 x5 g+ b7 H h X5 n1 u Allintitle:welcome to windows XP server internet
" x9 \' i) D6 P5 ^$ L: s9 y8 s' {7 N' q% l! F" ~! ^
services iis---XP 4 Z9 R3 |" O* l4 o' T: U) g
9 w" M+ C" F! K8 ]
Intitle:welcome.to.iis.4.0 IIS4 % [' m; ]5 |0 M; w g* ^3 \
; D, }1 _6 ?- O
Allintrtle:”welcome to internet information server”
% F) ^/ ^+ o/ _6 d5 D: p' p9 t, h- w) ^9 I$ |, T
IIS-- generic
( g% t: s# J9 b/ r% q3 M
1 T9 H( [9 v2 X8 n+ D2 }) K Intitle:”apache http server”
1 K4 ]# k9 u. D' {7 F( B7 Z( W" P
9 S+ f/ j [# l8 t Intitle:”documentation” ' f6 S$ L8 v0 S m: ?" M+ I: _" d
0 Y% I& e# z+ d7 S
Intitle:””error using hypernews””server software” ( H$ f/ T! L+ V# N3 j
* D! r* \8 D- {1 n% T/ J2 A% G “HTTP_USER_AGENT=Googlebot”
3 z7 q9 ^& r, l5 A5 y) B0 O6 k0 C( _$ x6 T8 |4 \
“HTTP_USER_AGENT=Googlebot”TNS_ADMIN * d9 k7 O3 y& j; x4 s J2 N
1 e- D. T; j5 ^, ~# H* M5 P Inurl:/admin/login.asp + M; E. ~6 w q. c7 _
( b2 k: e6 t3 R! L/ S
Intitle:”remote desktop wen connection”
; {( x0 G& n8 n5 l) ]0 {8 L* X5 n
4 J$ H: [# L) j [' J4 b5 i “welcome to *” “Your password is *” $ A* U/ s; u! U+ t1 X3 b
6 o1 V6 L, Q& F" y: F8 e Inurl(browse top_rated power_search hot create_admin_user)+”powered * y, v- D, }" r0 N8 _+ [
1 k8 F+ O9 ~( q2 Q by inde xu”
# X* ]6 N3 A/ X0 v4 g+ F) R+ H+ ^7 y7 R7 e p( ^6 M) Z
“adding new user” inurl:addnewuser C“there are no
5 D& ? Z( O* |+ ?' f
; N" J, T5 j# h: ^ domain”
$ M/ b1 O6 S2 J7 O5 v% n$ G" v3 Y0 b3 }, W
Filetype:log inurl:”password.log”
% [, o! h0 a% x$ F
* l$ b8 n2 b3 ~1 ` Intitle:”PHP Shell *” “enable stderr” filetype:php
# C0 }# W$ q% i8 J1 L* G5 B* f$ q2 `* n- Q& e5 _% b' z; x# H
Intitle:confixx login password ; ~% i8 Y/ C& l5 n1 P: ^7 y
2 l4 Z% d9 d2 @' N “powered by rover” ( s0 K* V' L6 h7 c
% N3 y3 ?0 B0 y7 I4 D
Inurl:iisadmpwd
" o D# N0 s; O4 E0 _7 j$ b# V0 T% ?! a: |, h8 ` {' J1 i9 J: J/ E
Inurl:5800 ( s! w2 l/ g, f8 {3 h& G
3 c8 L* g+ P, V# ?9 ]6 r: s/ B “VNC desktop” inurl:5800 8 F$ G1 n5 ^# p0 @- P% F$ f8 E- v
7 [4 x6 h2 N5 E& D
Inurl:webmin inurl:10000 1 l' M9 D# |- |0 o4 A+ G
& u! \5 K' w9 l4 @ Inurl:8080 Cintext:8080 ! M1 m- k- A. T, n$ s
9 X1 t3 T* R2 G& j, u3 S “access denird for user” “using password” * d" |" d0 _; j4 o# E8 Q
4 H: Y$ \6 G8 }. r
“# Dumping data for table”
1 X( R, O3 {) @- @. Y" \! s" K6 U* P0 F) r# z% | |0 r3 U
“# Dumping data for table” username password
3 ^& n- z1 I4 g Q2 z. u
: k* v7 I H, Y- a2 V* V$ n# t8 p “# Dumping data for table 5 Y; W! q, j" @
+ V% B, P# T' Q& }* b (username user users password)”
5 B+ Q$ @1 k% r5 ~! H* Y1 M: G* U1 {
Inurl:main.php welcome to phpmyadmin , K, W8 B9 ]% T: S
9 V5 l, h1 p5 R Intitle:”phpmyadmin running on *” welcome to phpmyadmin
/ I1 I0 l; P6 c- B& P. ? u6 Y" m/ | m& q3 \% U
Filetype:inc intext:mysql connect ; K! y3 t' a# [' t" c
# P/ F. U, r0 W; Y Filetype:sql + “INENTIFIED BY” Ccvs
- A6 n* U3 r2 U0 a3 c- |
Q% G1 E. c9 G# l' s6 h; p$ B- t Filetype:sql + “INENTIFIED BY” (“grant * on *” “create % F+ ~) Q. U1 p; [1 W* K
3 J# g9 u6 j8 C, N" B/ y user”) . f6 R# W+ C8 Q9 |6 |) c1 x& B
+ H# K: d/ M, V6 g/ B, j b- d0 n “this report lists” “identified by internet scaner”
, q5 i9 l) \6 T ^- S, }3 ~, V( u- t9 I( ^( n
ACID “by roman danyliw” Filetype HP
8 o+ v) a' u ~) s% q ]
2 Z* |$ R8 x+ A; A 小提示:用google hacking工具搜索这些,真的是多快好省啊:) ; [- }) D7 r# w* M& J& g: m- b; ]
| 
IP卡
狗仔卡
发表于 2005-4-28 18:14
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
!!!!!!!!!!!!!!
