Google Hacking/Dorking
Last updated
Last updated
Google hacking / Dorking utilizes Google's advanced search engine features, which allow you to pick out custom content. You can, for instance, pick out results from a certain domain name using the site: filter, for example (site:tryhackme.com) you can then match this up with certain search terms, say, for example, the word admin (site:tryhackme.com admin) this then would only return results from the tryhackme.com website which contain the word admin in its content. You can combine multiple filters as well. Here is an example of more filters you can use:
An example below reveals only subdomains for a website:
-site:www.tryhackme.com site:*.tryhackme.com
Filter
Example
Description
site
site:tryhackme.com
returns results only from the specified website address
inurl
inurl:admin
returns results that have the specified word in the URL
filetype
filetype:pdf
returns results which are a particular file extension
intitle
intitle:admin
returns results that contain the specified word in the title