Menu Close

What is Google Hacking or Dorking?

Google Hacking

Google Dorking or Google hacking is an advanced information-gathering technique that uses Google search and other Google applications to find configuration security holes, computer codes, files containing credentials and other sensitive data that are not easily available on the website.

This technique uses Google dork queries. Google dork queries are search string that uses advanced search operators to find information. Google Dorking/Hacking is the first choice of attackers/hackers.

As a passive attack method, Google Dorking can return a specific file-type list, email lists, sensitive documents, usernames and passwords, and website vulnerabilities. Information return by Google hacking can be used for any number of illegal activities including Cyberstalking, Identity Theft, Cyberterrorism, Industrial Espionage.

Also Read: What is a SIM Swap? What are the ways to avoid it?

For example, the following query will list SQL files available that have been indexed by Google.

mysqldump filetype:sql
mysqldump filetype:sql

Similarly, the following search query will list publicly accessible phpMyAdmin installations.

“phpMyAdmin” “running on” inurl:”main.php”

Also Read: Reset Windows 10 Administrator Password without using any software

Following is the list of Logical operators and symbols in Google Search:

AND or +Used to include all keywords. All keywords need to be found.
NOT or –Used to exclude all keywords. All keywords need to be found.
OR or |Used to include keywords where either one keyword or another is matched.
Tilde(~)Used to include synonyms and similar words.
Double Quote(“)Used to include exact matches.
Period(.)Used to include single-character wildcards.
Period(*)Used to include single-character wildcards.
Parenthesis(())Used to group queries.

Here are a few examples of advanced search operators:

intitleSearch Page Title
allintitleSearch Page Title
inurlSearch URL
allinurlSearch URL
filetypeReturns list of files with pecific file type
intextSearch text of page only
linkSearch for links to pages (Turned off by 2017)
inanchorSearch link anchor text
numrangeLocate number
daterangeSearch in date range
authorGroup author search
groupGroup name search
insubjectGroup subject search
msgidGroup msgid search
siteSearch specific site

2 Comments

Leave a Reply