taibeihacker
Moderator
Google Dorks的列表,用于Bug Bounty,Web应用程序安全性和pestesting
实时工具
Broad domain search w/ negative search
site:Example.com -www -shop -share -ir -mfaPHP extension w/ parameters
site:Example.com ext
hp inurl:Disclosed XSS and Open Redirects
site
penbugbounty.org inurl:reports intext:'example.com'Juicy Extensions
site:'example [。] com'ext:log | EXT:TXT | Ext:Conf | EXT:CNF | ext:ini | EXT:ENV | EXT:SH | Ext:bak | ext:backup | EXT:SWP | extld | extld | Ext:〜 | ext:git | EXT:SVN | EXT:HTPASSWD | EXT:HTACCESSXSS prone parameters
inurl:q=| inurl:S=| inurl: -Search=| inurl:query=| inurl:Keyword=| inurl:lang=inurl: site:Example.comOpen Redirect prone parameters
inurl:url=| inurl:Return=| inurl:Next=| inurl:redirect=| inurl:redir=| inurl:RET=| inurl:r2=| inurlage=inurl: inurl3:http site:Example.comSQLi Prone Parameters
inurl:ID=| inurlid=| inurl:category=| inurl:cat=| inurl:Action=| inurl:sid=| inurl:dir=inurl: site:Example.comSSRF Prone Parameters
inurl:http | inurl:url=| inurlath=| inurl:dest=| inurl:html=| inurl:data=| inurl:domain=| inurlage=inurl: site:Example.comLFI Prone Parameters
inurl:include | inurl:dir | inurl:detail=| inurl:file=| inurl:folder=| inurl:inc=| inurl:locate=| inurl:doc=| inurl:conf=inurl: site:example.comRCE Prone Parameters
inurl:cmd | inurl:Exec=| inurl:query=| inurl:code=| inurl:do=| inurl:run=| inurl:Read=| inurling=inurl: site:Example.comHigh % inurl keywords
inurl:config | inurl:env | inurl:Setting | inurl:backup | inurl:Admin | inurlhp site:示例[。] comSensitive Parameters
inurl:email=| inurlhone=| inurlassword=| inurl:secret=inurl: site: example [。] comAPI Docs
inurl:apidocs | inurl:api-docs | inurl:swagger | inurl:api explorer site:'example [。] com'Code Leaks
siteastebin.com'example.com'site:jsfiddle.net'example.com'
site:codebeautify.org'example.com'
site:codepen.io'example.com'
Cloud Storage
site:S3.amazonaws.com'example.com'site:blob.core.windows.net'example.com'
site:googleapis.com'example.com'
site:drive.google.com'example.com'
site:dev.azure.com'示例[。] com'
site:Onedrive.live.com'示例[。] com'
site:digitaloceanspaces.com'示例[。] com'
site:sharepoint.com'示例[。] com'
site:S3-External-1.amazonaws.com'示例[。] com'
site:S3.dualstack.us-east-1.amazonaws.com'示例[。] com'
site:dropbox.com/s'示例[。] com'
site:box.com/s'示例[。] com'
site:docs.google.com inurl:'/d/''example [。] com'
JFrog Artifactory
site:jfrog.io'示例[。] com'Firebase
site:firebaseio.com'示例[。] com'File upload endpoints
site:Example.com'选择文件'Dorks that work better w/o domain
Bug Bounty programs and Vulnerability Disclosure Programs
'提交漏洞报告'| “由Bugcrowd驱动” | “由黑客动力”site:*/security.txt'赏金'
Apache Server Status Exposed
site:*/server-status apacheWordPress
inurl:/wp-admin/admin-ajax.phpDrupal
Intext:''Intext:drupal inurl:userJoomla
site:*/joomla/login更多狗的中等文章:
載入中……
thegrayarea.tech
載入中……
infosecwriteups.com
載入中……
infosecwriteups.com
載入中……
github.com
載入中……
github.com