(1) Some Dork Tips
Credit: Abhijeet
Prerequisites: (This one is Easy!)
- A modern web browser and an internet connection.
- Time.
Method 1: Facebook!
We will be using a Google dork to find usernames and passwords of many accounts including Facebook.
The Dork:
intext:charset_test= email= default_persistent=
Enter that into Google, and you will be presented with several sites that have username and password lists!
Method 2: WordPress!
This will look for WordPress backup files which do contain the passwords and all data for the site.
The Dork:
filetypeconfused.pngql inurl:wp-content/backup-*
Method 3: WWWBoard!
This will look for the users and passwords of WWWBoard users.
The Dork:
inurl:/wwwboard/passwd.txt
Method 4: FrontPage!
This will find all users and passwords, similar to above.
The Dork:
extwd inurlsad.pngservice | authors | administrators | users) "# -FrontPage-"
Method 5: Symfony!
This finds database information and logins.
The Dork:
inurl:config/databases.yml -trac -trunk -"Google Code" -source -repository
Method 6: TeamSpeak! (big one!!!)
This will search for the server.dbs file (a SQLite database file with the SuperAdmin username and password!!!)
The Dork:
server-dbs "intitle:index of"
Method 7: TeamSpeak2!!! (also big!)
This will find the log file which has the Super Admin user and pass in the top 100 lines. Look for "superadmin account info:"
The Dork:
inurl:Teamspeak2_RC2/server.log
Method 8: Get Admin Pass!
Simple dork which looks for all types of admin info.
The Dork:
"admin account info" filetype:log
Method 9: Private Keys! (not any more!)
This will find any .pem files which contain private keys.
The Dork:
filetype:pem intext:"private"
Method 10: The Dir of Passwords!
Simple one!
The Dork:
intitle:"Index of..etc" passwd
I have several hundred to thousand more dorks. If you want one in particular, I may have it, so post in the thread.
!