Sou novo no fórum se estiver fazendo algo errado porfavor me avisem..
baixei uma apostila e estava lendo sobre como hackear sites usando o google e achei interessante e decidi compartilhar com vocês (muitos devem saber disso ja)
O google encontra centena de páginas vulnerávei em poucos segundos. A lista a seguir é de frases de busca que podem ser usadas para achar páginas vulneráveis.
baixei uma apostila e estava lendo sobre como hackear sites usando o google e achei interessante e decidi compartilhar com vocês (muitos devem saber disso ja)
O google encontra centena de páginas vulnerávei em poucos segundos. A lista a seguir é de frases de busca que podem ser usadas para achar páginas vulneráveis.
"Index of/" + password.txt
"Index of/" + .htaccess
"Index of/" + passwd
Index of ftp +.mdb allinurl:/cgi-bin/ + mailto
administrators.pwd.index
authors.pwd.index
filetype:config web
inurl:iisadmin
inurl:"wwwroot/*"
inurl:"ftproot/*"
Index of/admin
filetype:htpasswd htpasswd
intitle:"Index of" ".htpasswd" -intitle:"dist" -apache _htpasswd.c
indec.of.private
intitle:index.of.master.passwd
inurlasslist.xt
intitle:"Index of..etc" passwd
intitle:admin intitle:login
intitle:"the page cannot be found" inetmgr
intitle:index.of ws_ftp.ini
_vti_pvt password intitle:index.of
inurl:backup intitle:index.of inurl:admin
"Index of /backup"
index.of.password
index.of.winnt
inurl:"auth_user_file.xt"
"Index of /admin"
"Index of /password"
"Index of /mail"
"Indexof/" +passwd
Index of/" +.htaccess
Index of ftp +.mdb allinurl:/cgi-bin/ +mailto
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
administrator.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
inurlasswd filetype:txt
inurl:admin filetype:db
inurl:iisadmin
inurl:"wwwroot/*."
allinurl: winnt/system32/
allinurl:/bash_history
intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"Index of" passwd
intitle:"Index of" people.1st
intitle:"Index of" pwd.db
intitle:"Index of"etc/shadow
intitle:"Index of" spwd
intitle:"Index of" master.passwd
intitle:"Index of" htpasswd
intitle:"Index of" members OR accounts
intitle:"Index of" user_carts OR user_cart
service.pwd
users.pwd
administrators.pwd
test-cgi
wwwboard.pl
www-sql
pwd.dat
ws_ftp.log
inurlassword.log
intitle:Terminal Server Webs Connection
intitle:Exchenge Server login
e-mail address filetype:csv csv
allinurl:admin mdb
"Index of/" + .htaccess
"Index of/" + passwd
Index of ftp +.mdb allinurl:/cgi-bin/ + mailto
administrators.pwd.index
authors.pwd.index
filetype:config web
inurl:iisadmin
inurl:"wwwroot/*"
inurl:"ftproot/*"
Index of/admin
filetype:htpasswd htpasswd
intitle:"Index of" ".htpasswd" -intitle:"dist" -apache _htpasswd.c
indec.of.private
intitle:index.of.master.passwd
inurlasslist.xt
intitle:"Index of..etc" passwd
intitle:admin intitle:login
intitle:"the page cannot be found" inetmgr
intitle:index.of ws_ftp.ini
_vti_pvt password intitle:index.of
inurl:backup intitle:index.of inurl:admin
"Index of /backup"
index.of.password
index.of.winnt
inurl:"auth_user_file.xt"
"Index of /admin"
"Index of /password"
"Index of /mail"
"Indexof/" +passwd
Index of/" +.htaccess
Index of ftp +.mdb allinurl:/cgi-bin/ +mailto
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
administrator.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
inurlasswd filetype:txt
inurl:admin filetype:db
inurl:iisadmin
inurl:"wwwroot/*."
allinurl: winnt/system32/
allinurl:/bash_history
intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"Index of" passwd
intitle:"Index of" people.1st
intitle:"Index of" pwd.db
intitle:"Index of"etc/shadow
intitle:"Index of" spwd
intitle:"Index of" master.passwd
intitle:"Index of" htpasswd
intitle:"Index of" members OR accounts
intitle:"Index of" user_carts OR user_cart
service.pwd
users.pwd
administrators.pwd
test-cgi
wwwboard.pl
www-sql
pwd.dat
ws_ftp.log
inurlassword.log
intitle:Terminal Server Webs Connection
intitle:Exchenge Server login
e-mail address filetype:csv csv
allinurl:admin mdb