google hacking

作者在 2006-11-16 20:47:00 发布以下内容
一本叫Google hacking for penetration testers的书,没什么技术含量,不过总结的很详细,老外写的,废话一大堆,花了2天时间把其中部分梳理了一下,在我读完认为500页的大部头完全50页搞定。还好不是买的,看来书真是非借不能读了。
敲完之后没怎么校对,一来内容比较清晰,二来也算尽快读完归还,省得是个心思。如果是买的估计也不会整理出来,对自己也是个督促,别太懒了,看来以后读书还是要搞个整理什么的不然真的会白读一场,浪费时间。
 
For site
site:csdn.net –www.csdn.net –blog.csdn.net/cnasp
inurl:nqt.php intitle: "network query tool"
inurl:"/cgi-bin/userreg.cgi"
filetype:asp "custom error message"
"asp.net_sessionid" "data source="
Intext: "warning:failed opening" include_path
"http_from=googlebot" googlebot.com "server_software"
intitle:"lantronix web-managerintitle:"lantronix web-manager"
intitle:"index of " back files
inurl:admin backup
allinurl:admin backup
filetype:doc doc
info:blog.csdn.net
related:www.sina.com
define:ironic
site:blog.csdn.net inurl:csdn
intitle:index.of "parent directory"
intitle:index.of inurl:admin
intitle:index.of ws_ftp.log
intitle:index.of "server at"
intitle:index.of inurl:"admin/*"
 
For Web Servers
"AnWeb/1.42h" intitle:index.of
"Apache Tomcat/" intitle:index.of
"Apche-AdvancedExtranetServer/" intitle:index.of
"Apach/df-ets" intitle:index.of
"Apach/" "server at" intitle:index.of
"Apache/AmEuro" intitle:index.of
"Apache/Blast" intitle:index.of
"Apache/WWW" intitle:index.of
"Apache/df-exts" intitle:index.of
"CERN httpd 3.0B (VAX VMS)" intitle:index.of
fitweb-wwws * server at intitle:index.of
HP Apache-based Web "Server/*" intitle:index.of
OpenSSL/0.9g intitle:index.of
"httpd+ssl/kttd" * server at intitle:index.of
"JRun Web Server" intitle:index.of
"MaXX/3.1" intitle:index.of
"Microsoft-ISS/*" server at intitle:index.of
"Microsoft-ISS/*" intitle:index.of
"OmniHTTPd/2.10" intitle:index.of
"OpenSA/1.0.4" intitle:index.of
"Oracle HTTP Server Powered by Apache" intitle:index.of
"Red Hat Secure/*" server at intitle:index.of
SEDWebserver * server at intitle:index.of
"Apache/*" intitle:index.of
"Apache/*" server at intitle:index.of
filetype:pst pst(contacts | address | inbox)
filetype:reg reg +intext: "internet account manager"
 
 
For E-Mail Address
"Internal server error" "server at"
Intitle:"execution of this script not permitted"
e-mail address filetype:csv csv
intitle:index.of dead.letter
inurl:fcgi-bin/echo
filetype:pst pst –from –to –data
intitle:inde.of inbox
intitle: "index of " –inurl:maillog maillog size
inurl:email filetype:mdb
filetype:xls inrul: "email.xls"
filetype:xls username password email
intitle:index.of inbox dbx
filetype:eml eml eml +intext: "subject" +intext: "from"
intitle:index.of inbox dbx
filetype:wab wab
filetype:pst inrul: "outlook.pst"
filetype:mbx mbx intext:subject
inurl:cgi-bin/printenv
inurl:forward filetype:forward –cvs
filetype:mail intext:password subject
filetype:eml intext:password subject
filetype:mbx intext:password subject
filetype:mbx intext:password subject
 
For network devices
inurl:indexfram
网络安全 | 阅读 3434 次
文章评论,共0条
游客请输入验证码