一本叫Google hacking for penetration testers的书，没什么技术含量，不过总结的很详细，老外写的，废话一大堆，花了2天时间把其中部分梳理了一下，在我读完认为500页的大部头完全50页搞定。还好不是买的，看来书真是非借不能读了。

敲完之后没怎么校对，一来内容比较清晰，二来也算尽快读完归还，省得是个心思。如果是买的估计也不会整理出来，对自己也是个督促，别太懒了，看来以后读书还是要搞个整理什么的不然真的会白读一场，浪费时间。

 

site:csdn.net –www.csdn.net –blog.csdn.net/cnasp

inurl:nqt.php intitle: "network query tool"

inurl:"/cgi-bin/userreg.cgi"

filetype:asp "custom error message"

"asp.net_sessionid" "data source="

Intext: "warning:failed opening" include_path

"http_from=googlebot" googlebot.com "server_software"

intitle:"lantronix web-managerintitle:"lantronix web-manager"

intitle:"index of " back files

inurl:admin backup

allinurl:admin backup

filetype:doc doc

info:blog.csdn.net

related:www.sina.com

define:ironic

site:blog.csdn.net inurl:csdn

intitle:index.of "parent directory"

intitle:index.of inurl:admin

intitle:index.of ws_ftp.log

intitle:index.of "server at"

intitle:index.of inurl:"admin/*"

 

"AnWeb/1.42h" intitle:index.of

"Apache Tomcat/" intitle:index.of

"Apche-AdvancedExtranetServer/" intitle:index.of

"Apach/df-ets" intitle:index.of

"Apach/" "server at" intitle:index.of

"Apache/AmEuro" intitle:index.of

"Apache/Blast" intitle:index.of

"Apache/WWW" intitle:index.of

"Apache/df-exts" intitle:index.of

"CERN httpd 3.0B (VAX VMS)" intitle:index.of

fitweb-wwws * server at intitle:index.of

HP Apache-based Web "Server/*" intitle:index.of

OpenSSL/0.9g intitle:index.of

"httpd+ssl/kttd" * server at intitle:index.of

"JRun Web Server" intitle:index.of

"MaXX/3.1" intitle:index.of

"Microsoft-ISS/*" server at intitle:index.of

"Microsoft-ISS/*" intitle:index.of

"OmniHTTPd/2.10" intitle:index.of

"OpenSA/1.0.4" intitle:index.of

"Oracle HTTP Server Powered by Apache" intitle:index.of

"Red Hat Secure/*" server at intitle:index.of

SEDWebserver * server at intitle:index.of

"Apache/*" intitle:index.of

"Apache/*" server at intitle:index.of

filetype:pst pst(contacts | address | inbox)

filetype:reg reg +intext: "internet account manager"

 

 

"Internal server error" "server at"

Intitle:"execution of this script not permitted"

e-mail address filetype:csv csv

intitle:index.of dead.letter

inurl:fcgi-bin/echo

filetype:pst pst –from –to –data

intitle:inde.of inbox

intitle: "index of " –inurl:maillog maillog size

inurl:email filetype:mdb

filetype:xls inrul: "email.xls"

filetype:xls username password email

intitle:index.of inbox dbx

filetype:eml eml eml +intext: "subject" +intext: "from"

intitle:index.of inbox dbx

filetype:wab wab

filetype:pst inrul: "outlook.pst"

filetype:mbx mbx intext:subject

inurl:cgi-bin/printenv

inurl:forward filetype:forward –cvs

filetype:mail intext:password subject

filetype:eml intext:password subject

filetype:mbx intext:password subject

filetype:mbx intext:password subject

 

inurl:indexfram