|
http://www.cnsu.org-->site
q7 m. Y3 z+ m. X5 F+ O" Z5 u! J1 A' F
www.cnsu.org-->inurl 1 Y5 ?0 [/ w* G3 E
, K- R6 _7 r* V2 J
adminàinurl 2 I+ Z/ e; T/ ^1 c/ f' S
& z! l3 a+ d: Y% s$ a4 t# @ 。asp D D》filetype 0 s) @5 O* q0 v7 D4 q) t
0 X1 L2 ?9 ~/ m0 v! O$ } 标题 D D》intitle
! P9 z+ I7 g$ m. m8 B1 \ U, I0 }) y @4 j8 H# @- m$ @* R
页面文字 D D》intext
2 t3 \. W2 ~& R0 W# d4 y f" B
/ O( n+ _7 Q% Q5 K( @ 页面编号 D D》numeange
/ T* C' F H. |7 X; \$ b. {
+ ~6 `) h0 Y. @2 E - 逻辑非,“A-B”表示包含A没有B的网页
/ z) o1 f/ m& `& C i4 Q; r! |
, O/ |! d: i0 `2 p' s1 }; X7 v *代表单个字符
5 C9 R6 e/ n9 S2 Z+ |* g: |& i# l
or操作
- M* ?, e) [$ w* q/ J
3 s, b' J5 c8 _0 e “”用短语做关键字,必须加上引号,不然会被当作与操作
% Y) A3 o+ v W: ^) A/ U# C- H2 v6 T2 g7 w; S
。空格
* t( x. p9 [8 O8 n9 u, x
3 s$ K* T, }! f; W Google对一些网路上出现频率极高的英文单词,如“i”、“com”、“www”等,以及一些符号如“*”、“。”等,作忽略处理 0 U3 V9 y& b. Q; l! {* a
6 l" D$ v. y4 i 可以用+强制搜索 ) V) K( T7 Q$ M/ k
4 X8 E7 _$ M% ~8 t$ f& f9 B& X 下面的语句是我搜集来的,大家可以试着用下
# d; h! [; _+ W' K5 P" g! g+ D" z, _: C0 z( @/ W0 K
比如用Intitle:welcome.to.iis.4.0 IIS4会找到好多winNT的主机,呵呵 * G% k! n7 `* L
: ?5 Q; m- V& h7 ?/ v8 y Site:sohu.com
* w6 ]; o# p# b$ [% c& u( Q/ o0 r+ j# D- C
Site:sohu.com-site:www.sohu.com
' V) H/ V. @! w% p) a ~
% N/ N2 _% u$ O9 W c2 M: W+ Z G Intitle:index.of/admin
$ l/ e$ k9 @- V9 P. H( P. P) l* B
- A8 L5 {9 p/ h) B Intitle:index.of apache server.at 8 m0 f0 H7 b0 H9 s0 P" `- e
% m4 d# t# u; z. w# H# @7 m Intitle:test.page.for.apache “it workd” * H% y- Q! ~- s% u9 s4 A8 r/ F0 [
+ `" r- k' P+ F+ g' z+ P( K Allintitle:Netscape Fasr Track Server Home Page
) \8 ~! q+ Z' i- K4 Z
7 _0 O& u: I0 I4 | Intitle:”welcome to windows 2000 internet services” ; j; P% @% {( H, p: O( D
0 x3 Y- J( l7 O& s" B' k9 O; i
IIS—win2000 9 [1 A8 {6 G/ a4 e
# ~" y9 l- x, ]6 \( J% u Allintitle:welcome to windows XP server internet ( [! p! j; h* R& {, d
1 u) ~; v) T* [3 I/ _1 x9 e1 S
services iis---XP 8 y. Q4 ?( o5 E7 \8 c2 {' p
+ k M' H4 k: O# g Intitle:welcome.to.iis.4.0 IIS4 - R" K$ N. s3 k+ s' ~" N
) `) M1 A' _- B% t+ j, Z }& M
Allintrtle:”welcome to internet information server”
( }3 \0 g- ]2 L' b- r9 }% h
9 P- c7 \9 ?2 g! S IIS-- generic & E6 L g, a V7 Z3 Y0 y! H
" W, O8 L% n+ R' g& h+ h% s, z
Intitle:”apache http server” : _7 K8 X r1 W2 `5 v, ^( H
, {/ }8 J, U2 }9 t* f2 a5 T
Intitle:”documentation”
a4 }: g& H6 ]
* g: v5 H4 K! r2 [6 c3 k Intitle:””error using hypernews””server software”
* ~* w# Y" \% G) E, y+ C/ c, K( c/ C, o+ L
“HTTP_USER_AGENT=Googlebot”
; F9 h* \9 F0 Y, W2 a
, C& J# X: V6 h3 y- m( | “HTTP_USER_AGENT=Googlebot”TNS_ADMIN
1 B4 g% z6 k+ B
: Q, l* W, x3 k! i! W- M7 M% o Inurl:/admin/login.asp ) W$ h0 S. B$ l4 t |
3 p3 i" ?$ e6 [) G; x Intitle:”remote desktop wen connection”
6 r3 c m% L6 B3 [( q- X, L: V$ Q1 `$ ?/ Z2 z
“welcome to *” “Your password is *”
4 w; ^0 S5 h: W5 A1 A
6 Q8 Y- l! K* z B `& b( g Inurl(browse top_rated power_search hot create_admin_user)+”powered 1 }$ n& O! e+ U
% M' ~* i7 N& X( m3 S$ H& s, R9 P3 u
by inde xu” - _) B( R; @: b# P" I
- Z6 k& v6 D! N6 b “adding new user” inurl:addnewuser C“there are no 5 |4 ~+ J4 M2 a2 W* e, X1 l
& K& [" r. ^! A; j/ j" [ domain”
/ T7 {# z7 }6 K
' B2 S4 j e; J( c6 A0 t Filetype:log inurl:”password.log” + i! \3 z! K0 ?" i
/ A9 Q) y; _8 B' Z) d H Intitle:”PHP Shell *” “enable stderr” filetype:php
: F- O5 F1 R7 U/ s+ O5 P- \2 O" s# ~) `* c1 l1 u+ Z
Intitle:confixx login password ! P" ?* ^1 v5 @" z$ ^
% U+ v8 q" ?2 V. }( t
“powered by rover”
% H; u# D1 D7 n, R7 ~- L
8 [, w& K: \* I0 L! U; x" j& X& j/ f Inurl:iisadmpwd
& j- S: `9 i0 D' E- V- ^+ B/ v% g5 M4 ~
Inurl:5800 1 w# ^% O- S' P- h# W
/ }3 P O2 Y. ~8 N* ]6 U7 K “VNC desktop” inurl:5800 8 s+ Q3 R J/ S
6 u! a3 [ m' J# x1 D3 Z Inurl:webmin inurl:10000
8 o/ z- U3 n4 a/ Y7 D& j4 G8 Z& t* e& n' z( w W, l
Inurl:8080 Cintext:8080
1 l) `' J9 X: W8 S) N* s
' z* P6 I/ a! D3 q; y! o) O “access denird for user” “using password” 8 m' g+ W: f# ?) Y( }4 _2 f& s
5 o. d" s& J/ q$ h “# Dumping data for table”
; n( m" W( e' e9 D; h) P5 v
# U( Q' `: J: i9 ^: I2 F# q “# Dumping data for table” username password
% p+ r. `1 N/ \7 h
6 d! J7 j, _' \" _8 U4 G: ^# J “# Dumping data for table
. B. ?- J0 a: w- k/ ?+ o2 |' }8 V, g6 L! n
(username user users password)”
. [: x% n1 P, C* i
) h9 ~4 B' {7 m" b4 ]/ \ Inurl:main.php welcome to phpmyadmin " @# z6 z- z$ r' C
+ U8 F8 f+ ?, Y4 @6 b% c
Intitle:”phpmyadmin running on *” welcome to phpmyadmin
0 B2 X5 A+ V$ d! K2 `
0 C3 C7 I0 L0 a! D' N Filetype:inc intext:mysql connect ( ^6 q! q8 \% q4 {' L
7 A: i6 F5 | r' H* H- } Q" ?' X
Filetype:sql + “INENTIFIED BY” Ccvs 2 g c/ K( y$ F' n3 @' o& Y; Y
+ Q" |+ D- |1 }3 S; l% b) D
Filetype:sql + “INENTIFIED BY” (“grant * on *” “create + F* R4 M& c+ C8 G y
4 R" W8 j7 g. l& d; |! V/ V user”)
- R8 g# c2 S& G$ B H2 G; R( F( {- @5 @* v" K
“this report lists” “identified by internet scaner” % w8 @' A, ~0 {
3 q+ ^4 k# ~. h" _
ACID “by roman danyliw” Filetype HP / Z) U; e" I( v' |( T/ N# U
& t9 Q, A& _& f; G! y* t" A
小提示:用google hacking工具搜索这些,真的是多快好省啊:) ( o+ m1 O, B8 I- \; U; a v- s
| 
IP卡
狗仔卡
发表于 2005-4-28 18:14
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
!!!!!!!!!!!!!!
