wenns die neusten sicherheitslücken sind, dann sind die spätesten in 1 monat dicht, also ranhalten, und immer mit nem proxy server versuchen, der tarnt eure ip addy
| UG Rap Community http://www.ugrap.de/forum/ |
|
| Google Hack http://www.ugrap.de/forum/viewtopic.php?f=14&t=3125 |
Seite 1 von 1 |
| Autor: | Schore [ 29.03.2005, 00:06 ] |
| Betreff des Beitrags: | Google Hack |
habs von woanders... Try a few of these searches: "parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums "parent directory " Name of Singer or album -xxx -html -htm -php -shtml -opendivx -md5 -md5sums Notice that I am only changing the word after the parent directory, change it to what you want and you will get a lot of stuff. METHOD 2 put this string in google search: ?intitle:index.of? mp3 You only need add the name of the song/artist/singer. Example: ?intitle:index.of? mp3 jackson METHOD 3 put this string in google search: inurl:microsoft filetype:iso You can change the string to watever you want, ex. microsoft to adobe, iso to zip etc… "# -FrontPage-" inurl:service.pwd Frontpage passwords.. very nice clean search results listing !! "AutoCreate=TRUE password=*" This searches the password for "Website Access Analyzer", a Japanese software that creates webstatistics. For those who can read Japanese, check out the author's site at: http://www.coara.or.jp/~passy/ "http://*:*@www" domainname This is a query to get inline passwords from search engines (not just Google), you must type in the query followed with the the domain name without the .com or .net "http://*:*@www" bangbus or "http://*:*@www"bangbus Another way is by just typing "http://bob:bob@www" "sets mode: +k" This search reveals channel keys (passwords) on IRC as revealed from IRC chat logs. allinurl: admin mdb Not all of these pages are administrator's access databases containing usernames, passwords and other sensitive information, but many are! allinurl:auth_user_file.txt DCForum's password file. This file gives a list of (******ble) passwords, usernames and email addresses for DCForum and for DCShop (a shopping cart program(!!!). Some lists are bigger than others, all are fun, and all belong to googledorks. =) intitle:"Index of" config.php This search brings up sites with "config.php" files. To skip the technical discussion, this configuration file contains both a username and a password for an SQL database. Most sites with forums run a PHP message base. This file gives you the keys to that forum, including FULL ADMIN access to the database. eggdrop filetype:user user These are eggdrop config files. Avoiding a full-blown descussion about eggdrops and IRC bots, suffice it to say that this file contains usernames and passwords for IRC users. intitle:index.of.etc This search gets you access to the etc directory, where many many many types of password files can be found. This link is not as reliable, but crawling etc directories can be really fun! filetype:bak inurl:"htaccess|passwd|shadow|htusers" This will search for backup files (*.bak) created by some editors or even by the administrator himself (before activating a new version). Every attacker knows that changing the extenstion of a file on a webserver can have ugly consequences. Let's pretend you need a serial number for windows xp pro. In the google search bar type in just like this - "Windows XP Professional" 94FBR the key is the 94FBR code.. it was included with many MS Office registration codes so this will help you dramatically reduce the amount of 'fake' porn sites that trick you. or if you want to find the serial for winzip 8.1 - "Winzip 8.1" 94FBR |
|
| Autor: | Arkane [ 29.03.2005, 00:18 ] |
| Betreff des Beitrags: | |
wenns die neusten sicherheitslücken sind, dann sind die spätesten in 1 monat dicht, also ranhalten, und immer mit nem proxy server versuchen, der tarnt eure ip addy
|
|
| Autor: | Schore [ 29.03.2005, 00:21 ] |
| Betreff des Beitrags: | |
ne ist vielmehr z.b. ne FTP-Suche per Google...oder halt Porno-Passwörter...oder was meinst? Naja habs mit nen paar Seiten probiert, ging soweit 
|
|
| Autor: | Arkane [ 29.03.2005, 00:28 ] |
| Betreff des Beitrags: | |
CHorleone22850 hat geschrieben: ne ist vielmehr z.b. ne FTP-Suche per Google...oder halt Porno-Passwörter...oder was meinst? Naja habs mit nen paar Seiten probiert, ging soweit
ahso, google hacken geht, aber ist wohl mehr so ne art "opfer" suche, und dann kann man gucken was man machen kann, zu finden sind solche sachen halt einfach, aber dann reinkommen ist ne andere sache, bei den passwörtern wär ich aber vorsichtig, nur mit proxy server, dann surft du sicherer, den normalerweise wird die ip bei jeden login gespeichert....aber bei amerikanischen seiten ist es unwahrscheinlich das sich da jemand die mühe macht wenn die ip aus europa kommt, trotzdem safety first  
|
|
| Autor: | Schore [ 29.03.2005, 00:31 ] |
| Betreff des Beitrags: | |
hab nur Amiseiten gecheckt, paar Pornodinger halt...da gingen auch nicht alle..ist aber auch nichts was man nicht über Torrents, IRC, Emule bekommt... |
|
| Seite 1 von 1 | Alle Zeiten sind UTC + 1 Stunde |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|