Table of Contents
Google dorks do not only have to be used to find vulnerabilities or misconfigurations. Dorks can be used in your everyday searching. In this blog post I will show you dorks that can be used for everyday searching and dorks that can be used by hackers. Here are some examples of Dorks that I found interesting.
Site Operator
Dorks can be used on pretty much any search engine. The dork below will show “.gov” sites with sites that include the word “police”.
site:gov intext:"@gmail.com" intext:"police"
The dork below will only show sites with “github.io” that include the words, “Bug Bounty”. This will show bug bounties write ups.
site:*.github.io intext:"Bug bounty"
This dork uses the “OR” statement to find results with infosecwriteups.com” OR medium.com that include the words “hacking”.
site:infosecwriteups.com | site:medium.com intext:"hacking"
Once again, this dork will search for any articles on “medium.com” that include the letters “HTB,” which stands for Hack The Box.
site:medium.com “HTB”
This dork will search for sites owned by New York State
site:*ny.gov
Intitle Operator
The dork will show all pages with the title, “Index of” and search results that include the file extension, “.py” which is used by Python scripts.
intitle:”Index of” *.py
This dork will show sites with an open directory that includes “.log” files.
intitle:”Index of” *.log
This dork below will find all the search results from “smithsonianmag.com” that include the term “Neanderthal”.
intitle: “scattered spider”
This dork will find search results that include the words “scattered spider” in the title.
site:smithsonianmag.com intitle:neanderthal
The dork below will only show search results with “.us” domain and results that include “dinner recipe” in the title. This dork could be used to find awesome dinner recipes that you can try!
site:us intitle:dinner recipe
The dork below will only show search results that include the EXACT words “rum and coke” in the title of the site. The Quotation marks tell the search engine to show sites with exactly those words. This dork could be used to find interesting drinks to try.
intitle:”rum and coke” recipe
Filetype Operator
The dork below will show search results with the filetype pdf from the subdomain “media.defcon.org” and includes the word presentation.
site:media.defcon.org presentations filetype:pdf
This dork is similar to the one above. It will only show results from “defcon.org” which includes the PDF. The dork will also only show results that have “def con 32” and the word “presentations” in the URL.
site:defcon.org filetype:pdf inurl:presentations inurl:def con 32
This dork will only show sites with the “.us” domain. Results will include a txt file that includes “pass” OR “password”. This dork might help you find password dumps or other interesting files related to the words, “password” and “pass”
site:us filetype:txt “pass” | “password”
This dork could be used to find “robots.txt” files. The “robots.txt” files tell scrappers and a search engines what they can and cant crawl on a site. A site administrator might not want a Google crawler to crawl a sensitive part of the site, so they can add that path to the disallow list. Not all web crawlers will honor the robots.txt file. This dork can be used to find search results from the domain “.us” that have a file type of txt and includes the words robots.txt.
site:us filetype:txt “robots.txt“
Inurl Operator
The “inurl” operator can be used to find sites with a certain string that is in the site’s URL.
The dork below will only lists site with the “.edu” domain. Which are typically used by educational organizations. The dork will only show “EDU” sites with that has “python” in the URL.
inurl:”python” site:edu
The dork will look for results with the word “sql” in the URL and has the text “injection” in the body of the site.
inurl:”sql” intext:injection
Double Quotes
This dork will search for results that match the words operation aurora” but will not show any results that include the word “Trump”.
“operation aurora” -Trump
This dork will search for any results that include the words “scattered spider” OR “octo Tempest” OR “Muddled Libra”.
“scattered spider” OR “Octo Tempest” OR “Muddled Libra”
Leave a Reply