SlideShare une entreprise Scribd logo

Google Hacking by Ali Jahangiri

Devetol
Devetol

Learn how to hack Google and Also learn Some Search Tricks by Ali Jahangiri

InternetTechnologieActualités & Politique
1  sur  8
Télécharger pour lire hors ligne
© Ali Jahangiri www.alijahangiri.org Page 1 of 8 Google Hacking Ali Jahangiri Sc.D, LPT, CEH, CHFI, CEI, ECSA, ISMS Lead Auditor, Security+, CIW Security Analyst, MCSE: Security, MBCS CITP, MCSA, MCDBA, CCNA, A+ Abstract: Google hacking is the term used when a hacker tries to find vulnerable targets or sensitive data by using the Google search engine. In Google hacking hackers use search engine commands or complex search queries to locate sensitive data and vulnerable devices on the Internet. Keywords: hacking, hack, Google, Google hack, hacking techniques, attack, ethical hacking, search engines, search engine hacking What is Google Hacking? Google hacking is the term used when a hacker tries to find vulnerable targets or sensitive data by using the Google search engine. In Google hacking hackers use search engine commands or complex search queries to locate sensitive data and vulnerable devices on the Internet. Although Google hacking techniques are against Google terms of service1 and Google blocks well- known Google hacking queries, nothing can stop hackers from crawling websites and launching Google queries. Google hacking can be used to locate vulnerable web servers and websites which are listed in the Google search engine database. In other words, hackers can locate many thousands of vulnerable websites, web servers and online devices all around the world and select their targets randomly. This kind of attack is most commonly launched by applying Google hacking techniques to satisfy junior hackers. It is obvious that the Google hacking procedure is based on certain keywords, which could be used effectively if they are used by some internal commands of the Google search engine. These commands can be used to help hackers narrow down their search to locate sensitive data or vulnerable devices. Nevertheless, the success of Google hacking techniques depends on the existence of vulnerable sites, servers and devices. However, we should not ignore the power of the search engines in providing information about the targets to the hackers in the reconnaissance phase. Beyond Vulnerability Malicious hackers can use Google hacking techniques to identify vulnerable sites and web servers for known vulnerabilities. In addition, they can look for error pages with the help of technical
© Ali Jahangiri www.alijahangiri.org Page 2 of 8 information or retrieve files and directories with sensitive contents such as databases, passwords, log files, login pages or online devices such as IP cameras and network storage. Google Proxy Hackers can use the Google Translate service (http://translate.google.com/translate_t) as a proxy server to visit a website or translate the contents of the website or URLs without leaving any footprints. Figure 1: Google Translate Service. Google Cash Google copies the content of a website in its database. This function helps users to access the content of the website if the site is not available. However, a hacker can use this function to access and visit a targeted website without leaving any footprint and in complete anonymity. Figure 2: The red cycle indicates the link to access the Cached page.
© Ali Jahangiri www.alijahangiri.org Page 3 of 8 Directory Listings Web server applications such as Apache and IIS provide facilities that a user can browse and navigate website directories by clicking on the directory name and links such as Parent Directories. The directories and their content can be listed if directory listing or directory browsing are enabled by the administrator. This vulnerability gives an unauthorized access to the files and it may help hackers to gain access to the information which can help them to hack a website or a web server or download its contents. Directory listings make the parent directory links available to browse directories and files. Hackers can locate the sensitive information and files just by simple browsing. In Google it is easy to find websites or web servers with enabled directory listings because the title of the pages start with the “index of” phrase so we can use index of in the search box to find the directory listings-enabled website. If we want to get better result from our search we can use this combination in the search box intitle:index.of or we can use intitle:index.of “Parent Directory”. Figure 3: The result of using intitle:index.of “Parent Directory”. It is obvious that with the first command we used the Google search engine to search in its database for the websites which have been listed with the title of “Index of”. In the second command we used Google to search for sites with the directory listings and with the keyword which is often found in the directory listings. Specific Directory Hackers can locate specific directories by using the directory name in their search queries. For instance to locate an “admin” directory in addition to directory listings, the hacker can use these commands: intitle:index.of.admin or intitle:index.of inurl:admin.
© Ali Jahangiri www.alijahangiri.org Page 4 of 8 Figure 4: The result of using intitle:index.of.admin. Specific File It is possible to search for a certain file by directory listings. For instance, to search for the password.mdb file, this search query can be used: intitle:index.of password.mdb . Figure 5: The result of using intitle:index.of.password.mdb. Specific File Extension Google lets users search its database for a specific file extension by using the filetype: command. For instance, if you want to search for pdf files, then you can use the query filetype:pdf in the search box. Server Information It is possible to use Google hacking techniques to determine the version of the web server application along with directory listings. This kind of information is vital to an attacker because it will
© Ali Jahangiri www.alijahangiri.org Page 5 of 8 help him or her to use the best way to attack the web server. For instance, hackers can use the search query intitle:index.of "server at" to find the web sites with vulnerable directory listings which are operated by an Apache server. Figure 6: The result of intitle:index.of "server at". Different versions of Microsoft IIS servers have wide usage all around the world. It would be easy to find the servers which are operated by Microsoft IIS 6.0 servers, which are listed in the Google database by using the query "Microsoft IIS/6.0 server at" on the Google search engine. Error Pages The error pages and warning pages are informative for hackers because these pages could be used to determine the vulnerability of the target. Most of the time hackers use the error messages as keywords or search phrase to find their targets. For instance, if you use "Syntax error in query expression " –the in the Google search box, you can find the websites which have this error message as an Access error message; this message can display path names, function names and filenames which are helpful for the hackers.
© Ali Jahangiri www.alijahangiri.org Page 6 of 8 Figure 7: The result of "Syntax error in query expression " –the. Hackers may use Google to locate vulnerable servers by searching for the error pages of web servers such as IIS. The queries intitle:"the page cannot be found"and "internet information services" can be used to search for IIS servers that present error 404. Default Pages Default pages are major sources of information about targets for hackers. They use Google to find live servers which are on the default page; most of the time, these servers have default configurations with many vulnerabilities. Login Pages The login pages can be use for brute force attacks and gain unauthorized access to the target. In addition, the login pages can be useful to provide information about the target server. For instance, if we use the search query allinurl:"exchange/logon.asp" in the Google search box, we can find the login page of the Microsoft Outlook Web Access. For the typical login page in the web applications or portals which have been programmed by ASP, you can use inurl:login.asp or inurl:/admin/login.asp. Figure 8: The result of allinurl:"exchange/logon.asp". Locating CGI-BIN Common Gateway Interface (CGI) is a standard protocol for interfacing external application software with web servers. Hackers can use Google to locate the CGI-BIN applications or pages to target. For instance, the search query inurl:/cgi-bin/login.cgi locates the login pages base on CGI-BIN. Online Devices It is possible to create special search phrases to locate online devices such as IP cameras, network storage and printers with Google. In this technique hackers use the default pages or the application names which vendors used for hardware and that have been supplied by vendors.
© Ali Jahangiri www.alijahangiri.org Page 7 of 8 For instance, if you want to locate AXIS Network cameras then you can apply the search phrase inurl:indexFrame.shtml Axis to find online AXIS cameras. Here is another example: to locate online Linksys network storage with the GigaDrive Utility, you can use the search phrase intitle:"GigaDrive Utility" in the Google Search box. Figure 9: The result of inurl:indexFrame.shtml Axis. Google Hacking Database There is an unofficial website (http://johnny.ihackstuff.com/ghdb.php) which acts as a database for hacking of Google. This database has been used since its creation in 2004 by the Google hacking community. You would be able to develop your own Google hacking database by studying the behaviour of the equipment and identifying the pages, page titles and files which can be called and accessed by user and which will be listed in Google. Disclaimer:  This document is to educate, introduce and demonstrate Google hacking. You should not use the information which has been presented in this document for illegal or malicious attacks and you should not use the described techniques in an attempt to compromise any computer system.  Ali Jahangiri operates a policy of continuous development. The information which this document contains reflects his understanding at the time when presented. Ali Jahangiri reserves the right to revise this document or withdraw it at any time without prior notice and states no obligation to update the data included in this document.  The contents of this document are provided "as is". No warranties of any kind, either express or implied, including, but not limited to, the implied warranties of solutions and instructions for a particular purpose, are made in relation to the accuracy, reliability or contents of this document.  Under no circumstances shall Ali Jahangiri be responsible for any loss of data or income or any special, incidental, consequential or indirect damages howsoever caused.
© Ali Jahangiri www.alijahangiri.org Page 8 of 8 1 http://www.google.com/accounts/TOS

Recommandé

Information Gathering With Google
Information Gathering With GoogleInformation Gathering With Google
Information Gathering With GoogleZero Science Lab
 
Google Dorks: Analysis, Creation, and new Defenses
Google Dorks: Analysis, Creation, and new DefensesGoogle Dorks: Analysis, Creation, and new Defenses
Google Dorks: Analysis, Creation, and new DefensesFlavio Toffalini
 
Google Dorks and SQL Injection
Google Dorks and SQL InjectionGoogle Dorks and SQL Injection
Google Dorks and SQL InjectionMudassir Hassan Khan
 
Kiran karnad rtc2014 ghdb-final
Kiran karnad rtc2014 ghdb-finalKiran karnad rtc2014 ghdb-final
Kiran karnad rtc2014 ghdb-finalRomania Testing
 
Google Dorks
Google DorksGoogle Dorks
Google DorksAdhoura Academy
 
Search engine ppt
Search engine pptSearch engine ppt
Search engine pptSarvesh Meena
 
Search Engines
Search EnginesSearch Engines
Search EnginesRam Dutt Shukla
 
Training Project Report on Search Engines
Training Project Report on Search EnginesTraining Project Report on Search Engines
Training Project Report on Search EnginesShivam Saxena
 

Recommandé

Information Gathering With Google
Information Gathering With GoogleInformation Gathering With Google
Information Gathering With GoogleZero Science Lab
 
Google Dorks: Analysis, Creation, and new Defenses
Google Dorks: Analysis, Creation, and new DefensesGoogle Dorks: Analysis, Creation, and new Defenses
Google Dorks: Analysis, Creation, and new DefensesFlavio Toffalini
 
Google Dorks and SQL Injection
Google Dorks and SQL InjectionGoogle Dorks and SQL Injection
Google Dorks and SQL InjectionMudassir Hassan Khan
 
Kiran karnad rtc2014 ghdb-final
Kiran karnad rtc2014 ghdb-finalKiran karnad rtc2014 ghdb-final
Kiran karnad rtc2014 ghdb-finalRomania Testing
 
Google Dorks
Google DorksGoogle Dorks
Google DorksAdhoura Academy
 
Search engine ppt
Search engine pptSearch engine ppt
Search engine pptSarvesh Meena
 
Search Engines
Search EnginesSearch Engines
Search EnginesRam Dutt Shukla
 
Training Project Report on Search Engines
Training Project Report on Search EnginesTraining Project Report on Search Engines
Training Project Report on Search EnginesShivam Saxena
 
WT - Web & Working of Search Engine
WT - Web & Working of Search EngineWT - Web & Working of Search Engine
WT - Web & Working of Search Enginevinay arora
 
Search engine
Search engineSearch engine
Search enginesilambu111
 
How a search engine works slide
How a search engine works slideHow a search engine works slide
How a search engine works slideSovan Misra
 
How Google Search Algorithm Works ??
How Google Search Algorithm Works ??How Google Search Algorithm Works ??
How Google Search Algorithm Works ??viralshahb
 
Google search techniques
Google search techniquesGoogle search techniques
Google search techniquesNirav Ranpara
 
Search Engines and its working
Search Engines and its workingSearch Engines and its working
Search Engines and its workingMukesh Kumar
 
Web Search Engine
Web Search EngineWeb Search Engine
Web Search EngineChidanand Byahatti
 
Search Engine
Search EngineSearch Engine
Search EngineAnkush Srivastava
 
Working of search engine
Working of search engineWorking of search engine
Working of search engineNikhil Deswal
 
Google search architecture services in Hyderabad
Google search architecture services in HyderabadGoogle search architecture services in Hyderabad
Google search architecture services in HyderabadMartin James
 
Smart Searching
Smart SearchingSmart Searching
Smart SearchingBALTIC centre for contemporary art, BALTIC, Gateshead
 
Search Engine ppt
Search Engine pptSearch Engine ppt
Search Engine pptOECLIB Odisha Electronics Control Library
 
Google Dorks
Google DorksGoogle Dorks
Google DorksAndrea D'Ubaldo
 
Search engine
Search engineSearch engine
Search engineAdarsh Kumar Yadav
 
40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia 40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia Balazs Paroczay
 
working of search engine & SEO
working of search engine & SEOworking of search engine & SEO
working of search engine & SEODeepak Singh
 
Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )Ali Saif Mirza
 
Search Engine
Search EngineSearch Engine
Search EngineRam Dutt Shukla
 
Working Of Search Engine
Working Of Search EngineWorking Of Search Engine
Working Of Search EngineNIKHIL NAIR
 
Comparing Search Engines
Comparing Search EnginesComparing Search Engines
Comparing Search EnginesMelissa Brisbin
 
Web 2.0 (1)
Web 2.0 (1)Web 2.0 (1)
Web 2.0 (1)Mili_Husto
 
Tarea 1 web 2.0
Tarea 1 web 2.0Tarea 1 web 2.0
Tarea 1 web 2.0Moni0574
 

Contenu connexe

Tendances

WT - Web & Working of Search Engine
WT - Web & Working of Search EngineWT - Web & Working of Search Engine
WT - Web & Working of Search Enginevinay arora
 
How a search engine works slide
How a search engine works slideHow a search engine works slide
How a search engine works slideSovan Misra
 
How Google Search Algorithm Works ??
How Google Search Algorithm Works ??How Google Search Algorithm Works ??
How Google Search Algorithm Works ??viralshahb
 
Google search techniques
Google search techniquesGoogle search techniques
Google search techniquesNirav Ranpara
 
Search Engines and its working
Search Engines and its workingSearch Engines and its working
Search Engines and its workingMukesh Kumar
 
Working of search engine
Working of search engineWorking of search engine
Working of search engineNikhil Deswal
 
Google search architecture services in Hyderabad
Google search architecture services in HyderabadGoogle search architecture services in Hyderabad
Google search architecture services in HyderabadMartin James
 
40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia 40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia Balazs Paroczay
 
working of search engine & SEO
working of search engine & SEOworking of search engine & SEO
working of search engine & SEODeepak Singh
 
Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )Ali Saif Mirza
 
Working Of Search Engine
Working Of Search EngineWorking Of Search Engine
Working Of Search EngineNIKHIL NAIR
 
Comparing Search Engines
Comparing Search EnginesComparing Search Engines
Comparing Search EnginesMelissa Brisbin
 

Tendances (20)

WT - Web & Working of Search Engine
WT - Web & Working of Search EngineWT - Web & Working of Search Engine
WT - Web & Working of Search Engine
 
Search engine
Search engineSearch engine
Search engine
 
How a search engine works slide
How a search engine works slideHow a search engine works slide
How a search engine works slide
 
How Google Search Algorithm Works ??
How Google Search Algorithm Works ??How Google Search Algorithm Works ??
How Google Search Algorithm Works ??
 
Google search techniques
Google search techniquesGoogle search techniques
Google search techniques
 
Search Engines and its working
Search Engines and its workingSearch Engines and its working
Search Engines and its working
 
Web Search Engine
Web Search EngineWeb Search Engine
Web Search Engine
 
Search Engine
Search EngineSearch Engine
Search Engine
 
Working of search engine
Working of search engineWorking of search engine
Working of search engine
 
Google search architecture services in Hyderabad
Google search architecture services in HyderabadGoogle search architecture services in Hyderabad
Google search architecture services in Hyderabad
 
Smart Searching
Smart SearchingSmart Searching
Smart Searching
 
Search Engine ppt
Search Engine pptSearch Engine ppt
Search Engine ppt
 
Google Dorks
Google DorksGoogle Dorks
Google Dorks
 
Search engine
Search engineSearch engine
Search engine
 
40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia 40 tools for sourcing productivity #sosuasia
40 tools for sourcing productivity #sosuasia
 
working of search engine & SEO
working of search engine & SEOworking of search engine & SEO
working of search engine & SEO
 
Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )Web search engines ( Mr.Mirza )
Web search engines ( Mr.Mirza )
 
Search Engine
Search EngineSearch Engine
Search Engine
 
Working Of Search Engine
Working Of Search EngineWorking Of Search Engine
Working Of Search Engine
 
Comparing Search Engines
Comparing Search EnginesComparing Search Engines
Comparing Search Engines
 

En vedette

Tarea 1 web 2.0
Tarea 1 web 2.0Tarea 1 web 2.0
Tarea 1 web 2.0Moni0574
 
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0ChristhianLeon2790
 
Tema 1: La web 2.0 en el ámbito educativo
Tema 1: La web 2.0 en el ámbito educativoTema 1: La web 2.0 en el ámbito educativo
Tema 1: La web 2.0 en el ámbito educativoedgarmf
 
Slidesshare
SlidesshareSlidesshare
SlidesshareUAEH
 
How to Become a Thought Leader in Your Niche
How to Become a Thought Leader in Your NicheHow to Become a Thought Leader in Your Niche
How to Become a Thought Leader in Your NicheLeslie Samuel
 

En vedette (7)

Web 2.0 (1)
Web 2.0 (1)Web 2.0 (1)
Web 2.0 (1)
 
Tarea 1 web 2.0
Tarea 1 web 2.0Tarea 1 web 2.0
Tarea 1 web 2.0
 
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0
DIFERENCIA ENTRE LA WEB 1 Y LA WEB 2.0
 
Tema 1: La web 2.0 en el ámbito educativo
Tema 1: La web 2.0 en el ámbito educativoTema 1: La web 2.0 en el ámbito educativo
Tema 1: La web 2.0 en el ámbito educativo
 
Slidesshare
SlidesshareSlidesshare
Slidesshare
 
herramientas tecnologicas de la Web 2.0
herramientas tecnologicas de la Web 2.0herramientas tecnologicas de la Web 2.0
herramientas tecnologicas de la Web 2.0
 
How to Become a Thought Leader in Your Niche
How to Become a Thought Leader in Your NicheHow to Become a Thought Leader in Your Niche
How to Become a Thought Leader in Your Niche
 

Similaire à Google Hacking by Ali Jahangiri

Demystifying google hacks
Demystifying google hacksDemystifying google hacks
Demystifying google hacksdarwinah retno
 
Advanced Information Gathering AKA Google Hacking
Advanced Information Gathering AKA Google HackingAdvanced Information Gathering AKA Google Hacking
Advanced Information Gathering AKA Google HackingGareth Davies
 
Top 20 Search Engine Optimization (SEO) Tools
Top 20 Search Engine Optimization (SEO) ToolsTop 20 Search Engine Optimization (SEO) Tools
Top 20 Search Engine Optimization (SEO) ToolsDigital Vidya
 
Ethical Hacking and Network Security
Ethical Hacking and Network SecurityEthical Hacking and Network Security
Ethical Hacking and Network Securitysumit dimri
 
C:\Fakepath\Ethical Hacking
C:\Fakepath\Ethical HackingC:\Fakepath\Ethical Hacking
C:\Fakepath\Ethical Hackingsumit dimri
 
Information Gathering with Google (c0c0n - India)
Information Gathering with Google (c0c0n - India)Information Gathering with Google (c0c0n - India)
Information Gathering with Google (c0c0n - India)Maximiliano Soler
 
Lab-4 Reconnaissance and Information Gathering  A hacker.docx
Lab-4 Reconnaissance and Information Gathering  A hacker.docxLab-4 Reconnaissance and Information Gathering  A hacker.docx
Lab-4 Reconnaissance and Information Gathering  A hacker.docxLaticiaGrissomzz
 
Advanced Search Engine Techniques
Advanced Search Engine TechniquesAdvanced Search Engine Techniques
Advanced Search Engine Techniquesshekhar619
 
The ultimate guide to the invisible web
The ultimate guide to the invisible webThe ultimate guide to the invisible web
The ultimate guide to the invisible webYKNIB O
 
Google Hacking: Convergence of Google and Bots
Google Hacking: Convergence of Google and BotsGoogle Hacking: Convergence of Google and Bots
Google Hacking: Convergence of Google and BotsImperva
 
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...Mousselmal Tarik
 
Dangerous google searching for secrets
Dangerous google searching for secretsDangerous google searching for secrets
Dangerous google searching for secretsMathivanan M
 
Week 9 10 ppt-how_searchworks
Week 9 10 ppt-how_searchworksWeek 9 10 ppt-how_searchworks
Week 9 10 ppt-how_searchworkscarolyn oldham
 
Introduction to google hacking database
Introduction to google hacking databaseIntroduction to google hacking database
Introduction to google hacking databaseimthebeginner
 
Google Search Engine
Google Search Engine Google Search Engine
Google Search Engine Aniket_1415
 
What is the difference between web scraping and api
What is the difference between web scraping and apiWhat is the difference between web scraping and api
What is the difference between web scraping and apiAparna Sharma
 
Search engine and web crawler
Search engine and web crawlerSearch engine and web crawler
Search engine and web crawlerishmecse13
 

Similaire à Google Hacking by Ali Jahangiri (20)

Demystifying google hacks
Demystifying google hacksDemystifying google hacks
Demystifying google hacks
 
Hacking
HackingHacking
Hacking
 
Advanced Information Gathering AKA Google Hacking
Advanced Information Gathering AKA Google HackingAdvanced Information Gathering AKA Google Hacking
Advanced Information Gathering AKA Google Hacking
 
Top 20 Search Engine Optimization (SEO) Tools
Top 20 Search Engine Optimization (SEO) ToolsTop 20 Search Engine Optimization (SEO) Tools
Top 20 Search Engine Optimization (SEO) Tools
 
Ethical Hacking and Network Security
Ethical Hacking and Network SecurityEthical Hacking and Network Security
Ethical Hacking and Network Security
 
C:\Fakepath\Ethical Hacking
C:\Fakepath\Ethical HackingC:\Fakepath\Ethical Hacking
C:\Fakepath\Ethical Hacking
 
Information Gathering with Google (c0c0n - India)
Information Gathering with Google (c0c0n - India)Information Gathering with Google (c0c0n - India)
Information Gathering with Google (c0c0n - India)
 
Lab-4 Reconnaissance and Information Gathering  A hacker.docx
Lab-4 Reconnaissance and Information Gathering  A hacker.docxLab-4 Reconnaissance and Information Gathering  A hacker.docx
Lab-4 Reconnaissance and Information Gathering  A hacker.docx
 
Advanced Search Engine Techniques
Advanced Search Engine TechniquesAdvanced Search Engine Techniques
Advanced Search Engine Techniques
 
Search engine
Search engineSearch engine
Search engine
 
The ultimate guide to the invisible web
The ultimate guide to the invisible webThe ultimate guide to the invisible web
The ultimate guide to the invisible web
 
Google Hacking: Convergence of Google and Bots
Google Hacking: Convergence of Google and BotsGoogle Hacking: Convergence of Google and Bots
Google Hacking: Convergence of Google and Bots
 
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...
Hii the convergence_of_google_and_bots_-_searching_for_security_vulnerabiliti...
 
Dangerous google searching for secrets
Dangerous google searching for secretsDangerous google searching for secrets
Dangerous google searching for secrets
 
Cloud computing lecture 7
Cloud computing lecture 7Cloud computing lecture 7
Cloud computing lecture 7
 
Week 9 10 ppt-how_searchworks
Week 9 10 ppt-how_searchworksWeek 9 10 ppt-how_searchworks
Week 9 10 ppt-how_searchworks
 
Introduction to google hacking database
Introduction to google hacking databaseIntroduction to google hacking database
Introduction to google hacking database
 
Google Search Engine
Google Search Engine Google Search Engine
Google Search Engine
 
What is the difference between web scraping and api
What is the difference between web scraping and apiWhat is the difference between web scraping and api
What is the difference between web scraping and api
 
Search engine and web crawler
Search engine and web crawlerSearch engine and web crawler
Search engine and web crawler
 

Plus de Devetol

Srila Prabhupada
Srila PrabhupadaSrila Prabhupada
Srila PrabhupadaDevetol
 
Top 10 common mistakes of SEO
Top 10 common mistakes of SEOTop 10 common mistakes of SEO
Top 10 common mistakes of SEODevetol
 
SEO Interview Questions and Answers -Adesh Saxena
SEO Interview Questions and Answers -Adesh SaxenaSEO Interview Questions and Answers -Adesh Saxena
SEO Interview Questions and Answers -Adesh SaxenaDevetol
 
Ten ways to increase website traffic for free
Ten ways to increase website traffic for freeTen ways to increase website traffic for free
Ten ways to increase website traffic for freeDevetol
 
Digital Marketing Training in Delhi by Internet Vidya
Digital Marketing Training in Delhi by Internet VidyaDigital Marketing Training in Delhi by Internet Vidya
Digital Marketing Training in Delhi by Internet VidyaDevetol
 
Googles 200 ranking factors - How to Rank a Website in Google
Googles 200 ranking factors - How to Rank a Website in GoogleGoogles 200 ranking factors - How to Rank a Website in Google
Googles 200 ranking factors - How to Rank a Website in GoogleDevetol
 
What is Social Bookmarking - 5 minute guide Social Bookmarking
What is Social Bookmarking - 5 minute guide Social BookmarkingWhat is Social Bookmarking - 5 minute guide Social Bookmarking
What is Social Bookmarking - 5 minute guide Social BookmarkingDevetol
 
Top 10 common mistakes of seo
Top 10 common mistakes of seoTop 10 common mistakes of seo
Top 10 common mistakes of seoDevetol
 
Introduction to Search Engine Optimization On Page
Introduction to Search Engine Optimization On PageIntroduction to Search Engine Optimization On Page
Introduction to Search Engine Optimization On PageDevetol
 

Plus de Devetol (9)

Srila Prabhupada
Srila PrabhupadaSrila Prabhupada
Srila Prabhupada
 
Top 10 common mistakes of SEO
Top 10 common mistakes of SEOTop 10 common mistakes of SEO
Top 10 common mistakes of SEO
 
SEO Interview Questions and Answers -Adesh Saxena
SEO Interview Questions and Answers -Adesh SaxenaSEO Interview Questions and Answers -Adesh Saxena
SEO Interview Questions and Answers -Adesh Saxena
 
Ten ways to increase website traffic for free
Ten ways to increase website traffic for freeTen ways to increase website traffic for free
Ten ways to increase website traffic for free
 
Digital Marketing Training in Delhi by Internet Vidya
Digital Marketing Training in Delhi by Internet VidyaDigital Marketing Training in Delhi by Internet Vidya
Digital Marketing Training in Delhi by Internet Vidya
 
Googles 200 ranking factors - How to Rank a Website in Google
Googles 200 ranking factors - How to Rank a Website in GoogleGoogles 200 ranking factors - How to Rank a Website in Google
Googles 200 ranking factors - How to Rank a Website in Google
 
What is Social Bookmarking - 5 minute guide Social Bookmarking
What is Social Bookmarking - 5 minute guide Social BookmarkingWhat is Social Bookmarking - 5 minute guide Social Bookmarking
What is Social Bookmarking - 5 minute guide Social Bookmarking
 
Top 10 common mistakes of seo
Top 10 common mistakes of seoTop 10 common mistakes of seo
Top 10 common mistakes of seo
 
Introduction to Search Engine Optimization On Page
Introduction to Search Engine Optimization On PageIntroduction to Search Engine Optimization On Page
Introduction to Search Engine Optimization On Page
 

Dernier

TRENDS Enabling and inhibiting dimensions.pptx
TRENDS Enabling and inhibiting dimensions.pptxTRENDS Enabling and inhibiting dimensions.pptx
TRENDS Enabling and inhibiting dimensions.pptxAndrieCagasanAkio
 
SCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is prediSCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is predieusebiomeyer
 
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书rnrncn29
 
Company Snapshot Theme for Business by Slidesgo.pptx
Company Snapshot Theme for Business by Slidesgo.pptxCompany Snapshot Theme for Business by Slidesgo.pptx
Company Snapshot Theme for Business by Slidesgo.pptxMario
 
Unidad 4 – Redes de ordenadores (en inglés).pptx
Unidad 4 – Redes de ordenadores (en inglés).pptxUnidad 4 – Redes de ordenadores (en inglés).pptx
Unidad 4 – Redes de ordenadores (en inglés).pptxmibuzondetrabajo
 
IP addressing and IPv6, presented by Paul Wilson at IETF 119
IP addressing and IPv6, presented by Paul Wilson at IETF 119IP addressing and IPv6, presented by Paul Wilson at IETF 119
IP addressing and IPv6, presented by Paul Wilson at IETF 119APNIC
 
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书rnrncn29
 
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书zdzoqco
 
ETHICAL HACKING dddddddddddddddfnandni.pptx
ETHICAL HACKING dddddddddddddddfnandni.pptxETHICAL HACKING dddddddddddddddfnandni.pptx
ETHICAL HACKING dddddddddddddddfnandni.pptxNIMMANAGANTI RAMAKRISHNA
 
Film cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasaFilm cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasa494f574xmv
 
Top 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxTop 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxDyna Gilbert
 

Dernier (11)

TRENDS Enabling and inhibiting dimensions.pptx
TRENDS Enabling and inhibiting dimensions.pptxTRENDS Enabling and inhibiting dimensions.pptx
TRENDS Enabling and inhibiting dimensions.pptx
 
SCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is prediSCM Symposium PPT Format Customer loyalty is predi
SCM Symposium PPT Format Customer loyalty is predi
 
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
『澳洲文凭』买詹姆士库克大学毕业证书成绩单办理澳洲JCU文凭学位证书
 
Company Snapshot Theme for Business by Slidesgo.pptx
Company Snapshot Theme for Business by Slidesgo.pptxCompany Snapshot Theme for Business by Slidesgo.pptx
Company Snapshot Theme for Business by Slidesgo.pptx
 
Unidad 4 – Redes de ordenadores (en inglés).pptx
Unidad 4 – Redes de ordenadores (en inglés).pptxUnidad 4 – Redes de ordenadores (en inglés).pptx
Unidad 4 – Redes de ordenadores (en inglés).pptx
 
IP addressing and IPv6, presented by Paul Wilson at IETF 119
IP addressing and IPv6, presented by Paul Wilson at IETF 119IP addressing and IPv6, presented by Paul Wilson at IETF 119
IP addressing and IPv6, presented by Paul Wilson at IETF 119
 
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
『澳洲文凭』买拉筹伯大学毕业证书成绩单办理澳洲LTU文凭学位证书
 
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书
办理多伦多大学毕业证成绩单|购买加拿大UTSG文凭证书
 
ETHICAL HACKING dddddddddddddddfnandni.pptx
ETHICAL HACKING dddddddddddddddfnandni.pptxETHICAL HACKING dddddddddddddddfnandni.pptx
ETHICAL HACKING dddddddddddddddfnandni.pptx
 
Film cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasaFilm cover research (1).pptxsdasdasdasdasdasa
Film cover research (1).pptxsdasdasdasdasdasa
 
Top 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptxTop 10 Interactive Website Design Trends in 2024.pptx
Top 10 Interactive Website Design Trends in 2024.pptx
 

Google Hacking by Ali Jahangiri

  • 1. © Ali Jahangiri www.alijahangiri.org Page 1 of 8 Google Hacking Ali Jahangiri Sc.D, LPT, CEH, CHFI, CEI, ECSA, ISMS Lead Auditor, Security+, CIW Security Analyst, MCSE: Security, MBCS CITP, MCSA, MCDBA, CCNA, A+ Abstract: Google hacking is the term used when a hacker tries to find vulnerable targets or sensitive data by using the Google search engine. In Google hacking hackers use search engine commands or complex search queries to locate sensitive data and vulnerable devices on the Internet. Keywords: hacking, hack, Google, Google hack, hacking techniques, attack, ethical hacking, search engines, search engine hacking What is Google Hacking? Google hacking is the term used when a hacker tries to find vulnerable targets or sensitive data by using the Google search engine. In Google hacking hackers use search engine commands or complex search queries to locate sensitive data and vulnerable devices on the Internet. Although Google hacking techniques are against Google terms of service1 and Google blocks well- known Google hacking queries, nothing can stop hackers from crawling websites and launching Google queries. Google hacking can be used to locate vulnerable web servers and websites which are listed in the Google search engine database. In other words, hackers can locate many thousands of vulnerable websites, web servers and online devices all around the world and select their targets randomly. This kind of attack is most commonly launched by applying Google hacking techniques to satisfy junior hackers. It is obvious that the Google hacking procedure is based on certain keywords, which could be used effectively if they are used by some internal commands of the Google search engine. These commands can be used to help hackers narrow down their search to locate sensitive data or vulnerable devices. Nevertheless, the success of Google hacking techniques depends on the existence of vulnerable sites, servers and devices. However, we should not ignore the power of the search engines in providing information about the targets to the hackers in the reconnaissance phase. Beyond Vulnerability Malicious hackers can use Google hacking techniques to identify vulnerable sites and web servers for known vulnerabilities. In addition, they can look for error pages with the help of technical
  • 2. © Ali Jahangiri www.alijahangiri.org Page 2 of 8 information or retrieve files and directories with sensitive contents such as databases, passwords, log files, login pages or online devices such as IP cameras and network storage. Google Proxy Hackers can use the Google Translate service (http://translate.google.com/translate_t) as a proxy server to visit a website or translate the contents of the website or URLs without leaving any footprints. Figure 1: Google Translate Service. Google Cash Google copies the content of a website in its database. This function helps users to access the content of the website if the site is not available. However, a hacker can use this function to access and visit a targeted website without leaving any footprint and in complete anonymity. Figure 2: The red cycle indicates the link to access the Cached page.
  • 3. © Ali Jahangiri www.alijahangiri.org Page 3 of 8 Directory Listings Web server applications such as Apache and IIS provide facilities that a user can browse and navigate website directories by clicking on the directory name and links such as Parent Directories. The directories and their content can be listed if directory listing or directory browsing are enabled by the administrator. This vulnerability gives an unauthorized access to the files and it may help hackers to gain access to the information which can help them to hack a website or a web server or download its contents. Directory listings make the parent directory links available to browse directories and files. Hackers can locate the sensitive information and files just by simple browsing. In Google it is easy to find websites or web servers with enabled directory listings because the title of the pages start with the “index of” phrase so we can use index of in the search box to find the directory listings-enabled website. If we want to get better result from our search we can use this combination in the search box intitle:index.of or we can use intitle:index.of “Parent Directory”. Figure 3: The result of using intitle:index.of “Parent Directory”. It is obvious that with the first command we used the Google search engine to search in its database for the websites which have been listed with the title of “Index of”. In the second command we used Google to search for sites with the directory listings and with the keyword which is often found in the directory listings. Specific Directory Hackers can locate specific directories by using the directory name in their search queries. For instance to locate an “admin” directory in addition to directory listings, the hacker can use these commands: intitle:index.of.admin or intitle:index.of inurl:admin.
  • 4. © Ali Jahangiri www.alijahangiri.org Page 4 of 8 Figure 4: The result of using intitle:index.of.admin. Specific File It is possible to search for a certain file by directory listings. For instance, to search for the password.mdb file, this search query can be used: intitle:index.of password.mdb . Figure 5: The result of using intitle:index.of.password.mdb. Specific File Extension Google lets users search its database for a specific file extension by using the filetype: command. For instance, if you want to search for pdf files, then you can use the query filetype:pdf in the search box. Server Information It is possible to use Google hacking techniques to determine the version of the web server application along with directory listings. This kind of information is vital to an attacker because it will
  • 5. © Ali Jahangiri www.alijahangiri.org Page 5 of 8 help him or her to use the best way to attack the web server. For instance, hackers can use the search query intitle:index.of "server at" to find the web sites with vulnerable directory listings which are operated by an Apache server. Figure 6: The result of intitle:index.of "server at". Different versions of Microsoft IIS servers have wide usage all around the world. It would be easy to find the servers which are operated by Microsoft IIS 6.0 servers, which are listed in the Google database by using the query "Microsoft IIS/6.0 server at" on the Google search engine. Error Pages The error pages and warning pages are informative for hackers because these pages could be used to determine the vulnerability of the target. Most of the time hackers use the error messages as keywords or search phrase to find their targets. For instance, if you use "Syntax error in query expression " –the in the Google search box, you can find the websites which have this error message as an Access error message; this message can display path names, function names and filenames which are helpful for the hackers.
  • 6. © Ali Jahangiri www.alijahangiri.org Page 6 of 8 Figure 7: The result of "Syntax error in query expression " –the. Hackers may use Google to locate vulnerable servers by searching for the error pages of web servers such as IIS. The queries intitle:"the page cannot be found"and "internet information services" can be used to search for IIS servers that present error 404. Default Pages Default pages are major sources of information about targets for hackers. They use Google to find live servers which are on the default page; most of the time, these servers have default configurations with many vulnerabilities. Login Pages The login pages can be use for brute force attacks and gain unauthorized access to the target. In addition, the login pages can be useful to provide information about the target server. For instance, if we use the search query allinurl:"exchange/logon.asp" in the Google search box, we can find the login page of the Microsoft Outlook Web Access. For the typical login page in the web applications or portals which have been programmed by ASP, you can use inurl:login.asp or inurl:/admin/login.asp. Figure 8: The result of allinurl:"exchange/logon.asp". Locating CGI-BIN Common Gateway Interface (CGI) is a standard protocol for interfacing external application software with web servers. Hackers can use Google to locate the CGI-BIN applications or pages to target. For instance, the search query inurl:/cgi-bin/login.cgi locates the login pages base on CGI-BIN. Online Devices It is possible to create special search phrases to locate online devices such as IP cameras, network storage and printers with Google. In this technique hackers use the default pages or the application names which vendors used for hardware and that have been supplied by vendors.
  • 7. © Ali Jahangiri www.alijahangiri.org Page 7 of 8 For instance, if you want to locate AXIS Network cameras then you can apply the search phrase inurl:indexFrame.shtml Axis to find online AXIS cameras. Here is another example: to locate online Linksys network storage with the GigaDrive Utility, you can use the search phrase intitle:"GigaDrive Utility" in the Google Search box. Figure 9: The result of inurl:indexFrame.shtml Axis. Google Hacking Database There is an unofficial website (http://johnny.ihackstuff.com/ghdb.php) which acts as a database for hacking of Google. This database has been used since its creation in 2004 by the Google hacking community. You would be able to develop your own Google hacking database by studying the behaviour of the equipment and identifying the pages, page titles and files which can be called and accessed by user and which will be listed in Google. Disclaimer:  This document is to educate, introduce and demonstrate Google hacking. You should not use the information which has been presented in this document for illegal or malicious attacks and you should not use the described techniques in an attempt to compromise any computer system.  Ali Jahangiri operates a policy of continuous development. The information which this document contains reflects his understanding at the time when presented. Ali Jahangiri reserves the right to revise this document or withdraw it at any time without prior notice and states no obligation to update the data included in this document.  The contents of this document are provided "as is". No warranties of any kind, either express or implied, including, but not limited to, the implied warranties of solutions and instructions for a particular purpose, are made in relation to the accuracy, reliability or contents of this document.  Under no circumstances shall Ali Jahangiri be responsible for any loss of data or income or any special, incidental, consequential or indirect damages howsoever caused.
  • 8. © Ali Jahangiri www.alijahangiri.org Page 8 of 8 1 http://www.google.com/accounts/TOS