Google Dorking
Google and Google Dorking
We all know google is a search engine that collects and indexes various websites from all over the internet, but some don't know how powerful it really is. Google hacking, also named Google dorking, is a technique that uses Google Search and other Google applications to find security holes in the configuration and computer code that websites are using.
What is Dorking
Dorking is basically an advanced search where we use operators that function as a filter to direct the search directly to where we want. We also use symbols to search for exact words or phrases. This will help us to search almost any search engine that we find on the internet. This involves making use of search engines to their complete potential to uncover outcomes that are not noticeable with a routine search. It enables us to refine out searches and dive deeper, and with better accuracy, right into web pages as well as files that are available online. Revealing covert documents and safety and security defects by dorking does not require a good deal of technical knowledge. It actually comes down to discovering just a few search strategies and using them across a variety of online search engine.
Why we need google dorks
Everyone can use google dorks for a different purpose. Some of the most common reasons for using google dorks:
Cyber Security roles use google dorks to find critical information that can be exposed by mistake, or by someone knowingly, about anything so that they can later on hide or delete that so that no one can use that for any wrong purpose.
Researchers, content writers, journalists, etc use google dorks to gather all the information available on google about a particular topic so that they can use that information for reaching their own goals.
Students use google dorks to find answers to their questions which are from their textbook or asked by someone or for finding leaked versions of a course or a book for free.
Companies and their employees use google dorks to gather information about their competitors and for finding honest reviews of their products or services so that they can use that information further for improving their products and services and which in results helps their company grow faster.
What can we find from Google Dorks
Google dorks can be used to find a variety of information in many aspects, but it's mainly used to find the information on:
Critical information of a website, company, organization, software, etc.
Blogs, articles, research papers, etc on a particular topic
Leaked documents, courses, eBooks, etc
Reviews about a company, it's products and services
Finding solutions of answers of textbook questions
There are many other kinds of information which can be found via google dorks very easily.
Using Google Dorks
| Dork | Used for | Example |
|---|---|---|
"specified_phrase or statement" | Shows only those pages that contains exact word or statement | "Is hacking illegal" |
site: | Removes search results from all other websites except the specified one | site:github.com th4ntis |
inurl:specified_phrase | Shows search results which contains the specified word in url | inurl:ethical hacking |
inurl:word1 word2 | Shows search results that contain either of the words, or both | inurl:hacking programming |
allinurl:word1 word2 | Shows the search results that contain both of the specified words | allinurl:hacking programming |
intitle:word1 word2 | Shows those search results that mention the word in their title and mention the specified word anywhere in the document | intitle:hacking networking |
cache: | Shows a cached version of the website if the website is down | cache:netflix.com |
intext:word1 | Shows only those pages containing that specific word(s) somewhere in the context | intext:bug hunting |
allintext:word1 word2 | Only shows pages containing the specified words somewhere in the context | allintext:hacking networking |
intitle:”index of” | Shows open ftp servers | intitle:”index of spiderman movie” |
inurl:view/index.shtml | Shows live cameras that don’t have any protection | inurl:view/index.shtml |
filetype:pdf/doc/ppt specified_phrase | Shows only pages that contains the document of that type and contains specific word in file name | filetype:pdf ethical hacking |
+ | Shows pages that must contain the specified word | ethical hacking + free course |
- | Removes results that contain certain words | ethical hacking - paid course |
feed: | Shows specified RSS feed for specified work | reed:hacking |
ip: | Finds websites organized by specified IP | ip:54.239.28.85 |
We can use googles normal search as well as their Advanced Search page.
Of course we can combine these searches as well.
We can also use BOOLEAN searches in Google by using AND / OR
google dorking filetype:pdf OR filetype:doc OR filetype:docx
Learning resource: TryHackMe - Google Dorking Room
Tools: Fast-Google-Dorks-Scan
Last updated