Wiki
  • Introduction
  • 👾Penetration Testing
    • Application Security
      • Mobile App Security
        • Android Application Testing
          • Security Checklist
          • SSL Pinning Bypasses
          • Non-Proxy Aware Applications
            • Setting up VPN Server
            • Bypasses
          • Common Proxying Issues
          • Android Local Storage Checks
          • Android Task Hijacking
          • Kiosk Mode / Breakout Testing
          • Magisk on GenyMotion
        • iOS Application Testing
          • iOS Testing Using Objection
          • IPA Analysis Using MobSF
          • iOS Jailbreak Bypass
          • Decrypting iOS Apps
          • iOS Reverse Engineering
          • Jailbreak Detection Bypasses
          • iOS Local Storage Checks
          • Installing IPA
          • ATS Auditing
          • iOS Jailbreaking
          • Frida Pinning Bypasses
          • iOS Jailbreaking
        • Code Security
        • Frida on Windows
      • Web Application Security
        • Web Shells
        • CSV Injection
        • Measure Response Time using CURL
        • OSINT
          • EyeWitness
        • GraphQL Hacking
      • API Security
        • Security Checklist
        • Postman and Burp
        • CURL via BurpSuite
        • SOAP API Pentesting
    • Infrastructure Security
      • Network Infrastructure
        • Red Team Powershell Scripts
        • Mounting NFS Shares
        • Password Cracking/Auditing
        • Remote Access Sheet
        • Password Cracking Using Hashcat
        • Calculate IP Addresses from CIDR
        • Grep IP addresses or IP Ranges from a File
        • Default Credentials Checking
        • Check SSL/TLS Certificates
        • Log a terminal session
        • Unauthenticated Mongo DB
        • Microsoft SQL Server (MSSQL)
        • NTP Mode 6 Vulnerabilities
        • BloodHound
        • AD Offensive Testing
        • CrackMapExec
        • Select all IP addresses in Sublime Text
        • Convert CIDRs to an IP address list
        • Microsoft Exchange Client Access Server Information Disclosure
        • Web Server HTTP Header Internal IP Disclosure
        • smbclient.py
        • GetUserSPNs.py
        • Get-GPPPassword.py
        • SMBMap
        • Mounting Shares
        • mitm6
        • AD Attacks
        • Weak IKE Security Configurations
        • Locked BIOS Password Bypass
      • Wireless Security
        • Cached Wireless Keys
        • Aircrack Suite
    • SSL/TLS Security
    • Secure Code Review
      • Python
      • Semgrep
        • Semgrep to HTML Report
    • Cloud Security
      • Cloud Penetration Testing
    • Social Engineering
      • Simulated Phishing
        • GoPhish
    • Tool Usage
      • Docker
      • Split
      • PhantomJS
      • Aquatone
      • Tmux
      • Ipainstaller
      • Public IP From Command Line
      • Wifite
      • IKE Scan
      • Grep
      • Pulling APKs
      • Bitsadmin
      • Drozer
      • Iptables
      • Python Web Server
      • Crackmapexec
      • Impacket
      • Nessus
      • Adding SUDO User
      • Nmap
      • Metasploit Payloads
      • SMTP Open Relay
      • SQLMap
      • Screen
      • Remove All After Colon
      • Remove Old Linux Kernels
      • CURL
      • Hashcat
      • Secure Copy Protocol (SCP)
      • SSH & PGP Tools
      • IP Calculator
      • BloodHound
      • Netcat File Transfer
      • OpenVAS
      • BurpSuite
      • Exiftool
      • Python Virtual Environments
    • Errors and Solutions
      • Kill Process On Specific Port
      • Kill SSH Port Forwarding
      • SSH Key
      • Expanding Disk on Kali VM
    • Scoping
      • Scoping Questionnaires
        • Mobile App Testing
    • OSINT
      • Dark Web OSINT
      • Certificate Chain Check
      • EyeWitness - Web Service Screenshot
      • Tor to Browse Onion Links
      • DarkDump - Scan Dark Web for Onion Links
      • Domain related File Search
      • Google Dorking
      • IP / Network Blocks owned by a Company
  • ⌨️Programming
    • Automation
      • Running a Service at Boot
      • Network Connectivity Cron
    • Python
      • Adding Columns in Pandas
      • Copy Entire Column Data To New Column Pandas
      • Loading Progress Bar
      • Reorder Columns in Pandas
      • Filename with Date/Time Stamp
      • Command Line Arguments
      • Changing Date Format
      • Removing Index Column Pandas
      • Regex - Remove HTML Tags
      • Column Header Mapping
  • 🌐Miscellaneous
    • Scripts
      • Clickjacking Checker
      • Bulk WHOIS
      • SMB Signing Check
      • FDQN to IP Address
      • Grep IP Addresses
      • Nessus Parser
      • Build Review Audit
      • Nessus Merger
      • Nmap2CSV
      • Remove Audio From Videos
    • Favourite Reads/Links
    • Hacking Posters
    • Windows Developer VMs
    • Windows Workspaces
    • GitHub Pages
    • Interview Prep
      • Senior Penetration Tester
    • CVSS Formula
    • Android Rooting
      • Lineage OS 18.1 on OnePlus X
      • TWRP Recover on OnePlus X
      • Magisk Rooting
    • Presentation Slides
      • BlackHat - USA [2022]
  • 🐞Vulnerability Wiki
    • 🌐APPLICATION LEVEL
      • 🔒AUTHENTICATION
        • Authentication Bypass
        • Lack of Password Confirmation
        • 2FA Code Brute-forceable
        • Lack of Verification
        • Lack of Throttling on Form Submissions
        • Lack of Rate Limiting on Login
        • Weak Password Complexity Rules
        • 🖥️SESSION MANAGEMENT
        • 🔑ACCESS CONTROL
      • 🔢INPUT VALIDATION
      • ➗CRYPTOGRAPHY
      • 📉LOGGING
      • 📕DATA PROTECTION
      • 📲COMMUNICATION
      • 👨‍💻MALICIOUS CODE
      • 💡LOGIC
      • 🗄️FILE UPLOAD
      • ⚙️API ISSUES
      • 🔍CONFIGURATIONS
    • 💾INFRASTRUCTURE LEVEL
      • ICMP Timestamp Request Remote Date Disclosure (CVE-1999-0524)
      • ASP.NET Debug Mode Validation
Powered by GitBook
On this page

Was this helpful?

  1. Penetration Testing
  2. OSINT

Google Dorking

PreviousDomain related File SearchNextIP / Network Blocks owned by a Company

Last updated 1 year ago

Was this helpful?

This is a super good tool!

BE CAREFUL NOT GETTING BANNED FROM GOOGLE on YOUR IP SINCE IT QUERIES ALL PAYLOADS!


filetype:doc  ## Filetype DOC (MsWord 97-2003)
filetype:dot  ## Filetype DOT (MsWord Template 97-2003)
ffiletype:docm  ## Filetype DOCM (MsWord Template 97-2003)
ffiletype:docx  ## Filetype DOCX (MsWord 2007+)
ffiletype:dotx  ## Filetype DOTX (MsWord Template 2007+)
filetype:xls  ## Filetype XLS (MsExcel 97-2003)
ffiletype:xlsm  ## Filetype XLSM (MsExcel Template 97-2003)
ffiletype:xlsx  ## Filetype XLSX (MsExcel 2007+)
filetype:ppt  ## Filetype PPT (MsPowerPoint 97-2003)
ffiletype:pptx  ## Filetype PPTX (MsPowerPoint 2007+)
filetype:mdb  ## Filetype MDB (Ms Access)
filetype:pdf  ## Filetype PDF
filetype:sql  ## Filetype SQL
filetype:txt  ## Filetype TXT
filetype:rtf  ## Filetype RTF
filetype:csv  ## Filetype CSV
filetype:xml  ## Filetype XML
ffiletype:conf  ## Filetype CONF
filetype:dat  ## Filetype DAT
filetype:ini  ## Filetype INI
filetype:log  ## Filetype LOG
filetype:html  ## Filetype HTML
filetype:sh  ## Filetype Bash 
ffiletype:odt  ## Filetype ODT
ffiletype:key  ## Filetype KEY
ffiletype:sign  ## Filetype SIGN
filetype:md  ## Filetype MD 
ffiletype:old  ## Filetype OLD 
ffiletype:bin  ## Filetype BIN 
filetype:cer  ## Filetype Certificate 
filetype:crt  ## Filetype Certificate 
filetype:pfx  ## Filetype Certificate 
filetype:crl  ## Filetype Certificate 
filetype:crs  ## Filetype Certificate 
filetype:der  ## Filetype Certificate 
ftapfiletype:pages 	## Apple Pages (Word Processor)
ftapprfiletype:keynote ## Apple Keynote (Presentation)
ftappnufiletype:numbers  	## Apple Numbers (Spreadsheet)
filetype:odt  ## Open Office Text
filetype:ods  ## Open Office Spreadsheet
filetype:odp  ## Open Office Presentation
filetype:odg  ## Open Office 

## Directory traversal

intitle:%22index%20of%22%20%22parent%20directory%22  	## Common traversa
intitle:%22index%20of%22%20%22DCIM%22   	## Pho
intitle:%22index%20of%22%20%22ftp%22   	## FTP
intitle:%22index%20of%22%20%22backup%22  ## BackU
intitle:%22index%20of%22%20%22mail%22  	## Mail
intitle:%22index%20of%22%20%22password%22  ## Passwo
intitle:%22index%20of%22%20%22pub%22  	## P
intitle:%22index%20of%22%20%22.git%22  	## P
intitle:%22index%20of%22%20%22log%22  	## Log - Log file
intitle:%22index%20of%22%20%22src%22  	## Src - Sourcecod
intitle:%22index%20of%22%20%22env%22  	## Env - Environment setting
intitle:%22index%20of%22%20%22.env%22  	## .Env - Environment setting
intitle:%22index%20of%22%20%22.sql%22  	## .Sql - Sql settings or d
intitle:%22index%20of%22%20%22api%22  	## Api - Sensitive info about an AP
intitle:%22index%20of%22%20%22venv%22  	## Virtual Environment Python
intitle:%22index%20of%22%20%admin%22  	## Admin
👾
https://github.com/smhuda/Fast-Google-Dorks-Scan