|
http://www.cnsu.org-->site
! N' O1 n: h, g2 E7 p* G7 u% J# u( s& b) a) O5 F0 |, k
www.cnsu.org-->inurl 1 ^7 U+ ], D2 @+ O! g& Z
" j- t$ N( A) |& O- }' A- |% i adminàinurl . J3 r( k3 s/ O6 c
" x2 j* u/ o$ }8 K4 M( \
。asp D D》filetype 9 ], V3 T8 S& b( U* G# U
7 @- d+ B! g; G: m, Z5 n1 f: ~! l 标题 D D》intitle
& H7 h7 n' _0 I: n4 J; \& I q0 m9 R9 U$ _4 Q
页面文字 D D》intext ( u; G1 N0 p9 y1 v( f" n& Z
2 k' o6 I9 [; ]5 e! N 页面编号 D D》numeange
1 ?1 O1 F4 K9 I& q/ p0 o9 x; ^$ O& | M
- 逻辑非,“A-B”表示包含A没有B的网页 ( D C) b1 v9 w4 m* |1 P7 @
- o8 N# t3 h0 m: l7 @( E8 ^9 X+ i *代表单个字符
' j6 j2 l0 l; ?& m0 {6 Z+ t+ c# L. Y- K6 Q5 D, ?
or操作
. D) o ?* z) @
' O% S. {, \* v3 y “”用短语做关键字,必须加上引号,不然会被当作与操作 ! c8 v. R8 m1 Q( {, v* j! j7 l
& H1 B3 S) ~: n/ f0 M4 z4 Y+ \ 。空格 J& O0 V+ o/ a2 o3 S& x0 d
% j: G& N6 ^5 s
Google对一些网路上出现频率极高的英文单词,如“i”、“com”、“www”等,以及一些符号如“*”、“。”等,作忽略处理 ; d7 L2 K4 L8 o
9 N O- S( U) z+ z l7 X
可以用+强制搜索 " i( _! o# T$ G1 j7 G% y
8 A$ a* _- b$ _$ Q( [! S$ @8 ] 下面的语句是我搜集来的,大家可以试着用下 + R' ~9 W2 Y# Y H* V9 R+ f- G* W
n& r- U t. U( w. j
比如用Intitle:welcome.to.iis.4.0 IIS4会找到好多winNT的主机,呵呵
9 H2 z# i- T% b9 Q k5 K. J9 k
9 f @- L' h0 W. H& f( K Site:sohu.com
) m+ h5 E4 f; ~+ u3 ^& T3 q: R
* @; S. w+ M2 f0 D Site:sohu.com-site:www.sohu.com
- r' \$ [2 R# b4 _- t2 v: h
& G% z3 R+ a6 R; D Intitle:index.of/admin
2 S& |$ z: f) c+ t
- X& |# @, j, T( D1 [5 d Intitle:index.of apache server.at # B% ^' n2 X% _, e# Z
3 H( A! x2 @9 `$ N Intitle:test.page.for.apache “it workd”
" C0 w: @ ]1 }$ n1 [! A$ ^8 x! J% H( c3 }1 w$ ?( F# o
Allintitle:Netscape Fasr Track Server Home Page
% s3 Z. R5 d4 R, ^' X) Q; V5 w M& q7 \" }2 y6 r. f$ Y) N: z
Intitle:”welcome to windows 2000 internet services” ; Z& W: T0 |. g; ` U w- C& j
+ y2 p$ P' l# M2 I8 E2 w IIS—win2000 # X, _1 Q# G* N D
% `' K( h" r" j% _
Allintitle:welcome to windows XP server internet
* o4 Y5 p% m/ j6 o9 h( @/ `/ Z$ Z$ d0 b. d% e6 G
services iis---XP / m& U0 H5 \$ O
% }& D( [# ]% @0 e/ a, a _
Intitle:welcome.to.iis.4.0 IIS4 # T8 B. q6 [( E2 ?$ m) b
7 U7 Y0 D* t; W- E9 a* ? Allintrtle:”welcome to internet information server” & X# M/ R! r! B* q9 x
* c3 r; ?, D! w J5 F4 D6 h3 N' Q
IIS-- generic
, ?, Q5 Z: B5 h, X& E* A# O
% X- o# A9 X- X, s0 m Intitle:”apache http server” : W; u. K5 S9 H- Y* ?
1 Y# x3 h4 g) i
Intitle:”documentation”
% r/ e6 c7 p w% G4 R% R
. S7 h: `+ p' x! \: m& } B Intitle:””error using hypernews””server software”
' o: B' ~6 x8 g9 i( y
! |6 n/ d7 Z/ M% n& C “HTTP_USER_AGENT=Googlebot”
: V6 V4 v5 M9 v5 T1 B
" y( z, \. h' f( _& ] “HTTP_USER_AGENT=Googlebot”TNS_ADMIN
( _# r. S7 l3 S& A# M0 @/ e4 R( }8 h
Inurl:/admin/login.asp
" t Z: q. S( S) {( h$ g/ t/ @7 V! d( q; j, Y6 m5 _* o, t; t
Intitle:”remote desktop wen connection”
7 V- P( P: n8 u h/ I
6 O: S" Y6 ?- t “welcome to *” “Your password is *” " `+ p. X$ S: w9 ~
, s- A" X: N+ Q5 c Inurl(browse top_rated power_search hot create_admin_user)+”powered
" A2 E2 L, C5 o8 G, g! W
& A" m% H1 O- P1 {8 y3 a by inde xu” / c4 C9 D4 ?. j1 J+ C+ G2 ^. g
p* [' ~: @! M1 j0 D
“adding new user” inurl:addnewuser C“there are no " k% R( b; {, v6 W6 W9 @7 o
4 n& h* L! ~" [ L- v2 M- l8 B
domain”
$ ^; o# C" x0 w0 r; A! h- y- a& E6 }0 Y
Filetype:log inurl:”password.log” 7 f8 A/ H; _: W
5 t, K8 l z0 ^! W
Intitle:”PHP Shell *” “enable stderr” filetype:php
' K$ f% t9 D6 L0 R$ d' i6 E2 [! B0 }- {3 W! z
Intitle:confixx login password 7 m2 B) P5 _, q$ u: E
2 i' k; @+ v' G6 w, D; i8 _/ q “powered by rover”
: L4 S p% M y, D- A5 t1 y
! u, `9 f c- j: t4 r* q/ J3 M2 Q Inurl:iisadmpwd
2 N6 A" X4 M3 s+ L
1 z4 J7 E2 k* X% p: @ Inurl:5800
+ H, d( ]9 i9 _6 a6 \' a! @$ h% c [# D
“VNC desktop” inurl:5800
: @- |5 b5 Q, H# d; _. ?/ P3 R* n8 ~" F% p* ^7 l$ q
Inurl:webmin inurl:10000
( W; [6 o( T" [' u: ]- P6 g
/ T1 P0 V& [. t" D' m) M0 j Inurl:8080 Cintext:8080 0 B/ H+ N+ g% ^$ i# k7 [% V
9 K) l8 O( |! D% I3 m' \9 N: ~
“access denird for user” “using password” 2 J: `- n2 j5 { p4 S: E
# D4 G$ `0 h* c
“# Dumping data for table” ) Y+ d7 O. Z3 `
" m) M1 |2 i: O, @* E
“# Dumping data for table” username password
8 P* K e, Q; V" K6 Q P/ o) K1 s7 M9 q4 C2 ?
“# Dumping data for table % Z0 P7 o! S; V
W$ F7 _* C5 d) u; n6 p
(username user users password)” 4 G) `' U* C0 f- d
3 O" i* J( j2 D* Z Inurl:main.php welcome to phpmyadmin
1 Z! ]: P3 S7 ~; P% a. u
/ Y& S9 e0 q5 p" M0 H7 Z Intitle:”phpmyadmin running on *” welcome to phpmyadmin 2 r6 ` E& Y7 J" N* _
* E# C' P$ _* q) ^9 O: W Filetype:inc intext:mysql connect 5 S% j/ X1 _( j+ V, C
5 _- q8 @! V9 o, [) J: n Filetype:sql + “INENTIFIED BY” Ccvs
% u) t4 T3 K: O! D0 b7 l7 s6 ^6 d5 N' y' }% Q
Filetype:sql + “INENTIFIED BY” (“grant * on *” “create 4 e7 ~) n# [: Q. q$ w& r
& D: g4 _) v+ n, p" k% q* C* j
user”) ) {- f& S s2 M* u
7 Q) B& i0 r$ O “this report lists” “identified by internet scaner”
% p: l z6 n- W: b) g% H& C. a! Z' P
ACID “by roman danyliw” Filetype HP
8 U5 V. j$ @0 c
% `, o% @* F4 e2 G( e x0 V 小提示:用google hacking工具搜索这些,真的是多快好省啊:) ) g, n% Y) \+ N" o5 e+ Z
| 
IP卡
狗仔卡
发表于 2005-4-28 18:14
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
!!!!!!!!!!!!!!
