Google Hacking

Basic information grinding:

Using site operator
Example – site:example.com-www.example.com (Show all pages from example.com, but not www.example.com)


Link exploring:

Using link operator. Show all sites that link to the target site.
Example – link:www.hacker.com


Group tracing:

Using google groups


Finding directory listings:

Example - intitle:index.of “parent directory”


System/application versioning:

Searching “Powered by Application x” to identify web applications or systems.


Directory traversal:

Example - intitle:index.of inurl:/admin/ to search for folders with interesting names like admin


Incremental substitution:

finding a file called users01.doc and changing the url to users02.doc to see if files or folders aren't indexed.


Extension walking:

Using filetype operator, or the ext operator.
Example – filetype:pdf

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License