{"id":26171809,"url":"https://github.com/zebbern/googledorking","last_synced_at":"2026-02-11T13:32:05.559Z","repository":{"id":276531293,"uuid":"880302586","full_name":"zebbern/GoogleDorking","owner":"zebbern","description":"🧾 | Google Dorking (Find Information you are looking for on the web)","archived":false,"fork":false,"pushed_at":"2024-11-02T22:13:29.000Z","size":36,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-11-30T14:08:30.160Z","etag":null,"topics":["cybersecurity","data-mining","digital-forensics","ethical-hacking","google-dorking","google-search","hacking-techniques","information-gathering","infosec","internet-security","network-security","osint","pentesting","reconnaissance","search-engine-optimization","security-awareness","security-research","threat-intelligence","vulnerability-scanning","web-application-security"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zebbern.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-10-29T13:38:35.000Z","updated_at":"2025-07-14T15:37:07.000Z","dependencies_parsed_at":"2025-02-09T23:32:18.705Z","dependency_job_id":null,"html_url":"https://github.com/zebbern/GoogleDorking","commit_stats":null,"previous_names":["zebbern/googledorking"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/zebbern/GoogleDorking","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zebbern%2FGoogleDorking","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zebbern%2FGoogleDorking/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zebbern%2FGoogleDorking/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zebbern%2FGoogleDorking/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zebbern","download_url":"https://codeload.github.com/zebbern/GoogleDorking/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zebbern%2FGoogleDorking/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29333495,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-11T12:42:24.625Z","status":"ssl_error","status_checked_at":"2026-02-11T12:41:23.344Z","response_time":97,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","data-mining","digital-forensics","ethical-hacking","google-dorking","google-search","hacking-techniques","information-gathering","infosec","internet-security","network-security","osint","pentesting","reconnaissance","search-engine-optimization","security-awareness","security-research","threat-intelligence","vulnerability-scanning","web-application-security"],"created_at":"2025-03-11T19:51:24.537Z","updated_at":"2026-02-11T13:32:05.544Z","avatar_url":"https://github.com/zebbern.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Google Dorking Guide\n\nGoogle Dorking is an effective method for using advanced search commands to locate specific files, information, or vulnerabilities on websites. It enables precise searches with specific operators. Below is a complete list of commands, organized from basic to advanced, to help you understand how to use Google Dorking.\n\nDorking Guide Commands From\n\n- Basic Commands\n- Advanced Commands\n- Then For Pentesters i added a juicy section on the bottom!\n\n## Basic Commands\n\nIn Google.com search type these commands and replace examplesite.com with your own or switch out the information to what you are looking for.\n\n| **Command** | **Explanation** |\n| --- | --- |\n| `site:examplesite.com` | Shows all pages indexed from the website. Useful to view all content on a domain. |\n| `site:examplesite.com filetype:pdf` | Displays PDF files from the website. Useful for finding documents. |\n| `filetype:pdf OR docx OR xls site:examplesite.com` | Searches multiple document types at once, such as PDF, Word, Excel files. |\n| `intext:name site:examplesite.com` | Searches for a name or word across the entire website. Useful for locating specific references. |\n| `address intext:name` | Searches for combinations of a name and the word \"address.\" Potentially finds addresses. |\n| `phone intext:name` | Searches for name and phone number. Used to find contact information. |\n| `site:examplesite.com intitle:contact` | Shows pages with \"contact\" in the title. Good for finding contact pages. |\n| `link:examplesite.com` | Displays pages linking to examplesite.com. Useful to find references from other sites. |\n| `related:examplesite.com` | Shows websites Google considers related. Useful for finding similar sites. |\n| `site:no \"deprecated\" | \"old\"` | Finds pages containing \"deprecated\" or \"old\" on a website. |\n| `site:examplesite.com filetype:xlsx OR xls` | Searches for Excel files. May contain financial or sensitive data. |\n| `site:examplesite.com inurl:admin` | Searches for pages with \"admin\" in the URL. Useful for finding admin pages. |\n| `ip:[IP address]` | Shows all websites hosted on a specific IP address. Used to find all sites on a server. |\n| `intitle:\"Index of /\" site:examplesite.com` | Shows indexed folders that may contain publicly accessible files. |\n| `site:no \"error\" | \"error message\"` | Searches for error pages or messages on a site. |\n| `site:no \"financial\" | \"invoice\"` | Finds financial documents, like invoices, on a website. |\n\n## Advanced Dorking Commands\n\n| **Command** | **Explanation** |\n| --- | --- |\n| `site:examplesite.com inurl:login` | Searches for pages with \"login\" in the URL. Useful for finding login pages. |\n| `cache:examplesite.com` | Shows Google’s cached version of the site. Can be used to see older versions of a page. |\n| `allinurl:examplesite.com confidential` | Searches for URLs containing the word \"confidential.\" Useful for finding potentially sensitive pages. |\n| `site:examplesite.com inurl:wp-admin` | Searches for WordPress admin pages. May reveal unsecured WordPress sites. |\n| `site:examplesite.com intext:\"password\"` | Searches for occurrences of \"password\" in the text on the website. May reveal sensitive data if poorly secured. |\n| `filetype:sql site:examplesite.com` | Searches for SQL files that may contain database extracts. |\n| `filetype:xml site:examplesite.com` | Searches for XML files, which are often used for data exchange and may contain sensitive information. |\n\n| **Command** | **Explanation** |\n| --- | --- |\n| `intitle:\"index of\" inurl:ftp` | Searches for open FTP servers that may have publicly accessible files or directories. |\n| `site:examplesite.com ext:log` | Searches for log files (.log). Logs may contain sensitive information, such as error descriptions, server messages, or connection data. |\n| `site:examplesite.com filetype:bak` | Searches for backup files that may reveal source code or sensitive data. |\n| `site:examplesite.com ext:sql \"DROP TABLE\"` | Searches for SQL files with database commands, including potentially destructive commands that may expose database vulnerabilities. |\n| `site:no ext` | Searches for files with various extensions on a website. |\n| `site:examplesite.com ext:env` | Searches for \".env\" files, which often contain environment variables, including API keys, database passwords, and other sensitive configurations. |\n| `site:examplesite.com \"phpinfo()\"` | Searches for PHP info pages. PHP info pages provide a detailed view of the server configuration, useful for identifying attack surfaces. |\n| `site:examplesite.com intext:\"powered by WordPress\"` | Searches for WordPress installations that may be vulnerable to plugin or theme issues. |\n| `site:examplesite.com inurl:wp-content/uploads/` | Searches for uploaded files on WordPress sites. Upload directories may contain insecure or unwanted files. |\n| `site:no filetype | filetype` | Searches for specific file types on a site. |\n| `site:examplesite.com inurl:\"/phpmyadmin/\"` | Searches for PHPMyAdmin admin pages, which may be insecure or accessible without proper protection. |\n| `site:examplesite.com intext:\"username\" intext:\"password\"` | Searches for usernames and passwords exposed in text on the website. Useful for finding hardcoded credentials or poor configurations. |\n| `site:examplesite.com intitle:\"Login Page\"` | Searches for login pages. Useful for identifying public login portals for further testing. |\n| `site:examplesite.com filetype:pcap` | Searches for PCAP files (Packet Capture). These may contain network traffic that could reveal sensitive data, such as passwords or session data. |\n| `site:examplesite.com \"default password\"` | Searches for pages containing \"default password.\" This may indicate the use of default passwords, which often pose a significant security risk. |\n| `site:no inurl | inurl` | Searches for specific URLs or URL patterns on a site. |\n| `site:examplesite.com filetype:swf` | Searches for Flash files (.swf), which can be a source of Cross-Site Scripting (XSS) vulnerabilities. |\n\n## Additional Tips for Pentesting with Google Dorking\n\n1. **Use Dorks for Technology Identification**:\n   - **Example**: `site:examplesite.com \"powered by Apache\"` or `site:examplesite.com \"powered by Nginx\"`. Helps to identify the server technology, which may reveal specific software vulnerabilities.\n   \n2. **Searching for Email Addresses**:\n   - **Command**: `site:examplesite.com intext:@examplesite.com`. This helps to locate employee email addresses, which may be used for phishing or social engineering.\n   \n3. **Searching for Sensitive URLs and Parameters**:\n   - **Example**: `site:examplesite.com inurl:id= OR inurl:login` to find potentially vulnerable parameters that may be exploited for SQL Injection or other injection attacks.\n\n\u003caside\u003e\n💡 **Additional Google Dorking Examples**:\n\n   - **PHP extension with parameters**: `site:example.com ext:php inurl:?`\n   - **API Endpoints**: `site:example.com inurl:api | site:*/rest | site:*/v1 | site:*/v2 | site:*/v3`\n   - **Juicy Extensions**: `site:example.com ext:log | ext:txt | ext:conf | ext:cnf | ext:ini | ext:env | ext:sh | ext:bak | ext:backup | ext:swp | ext:old | ext:~ | ext:git | ext:svn | ext:htpasswd | ext:htaccess | ext:json`\n   - **High % inurl keywords**: `inurl:conf | inurl:env | inurl:cgi | inurl:bin | inurl:etc | inurl:root | inurl:sql | inurl:backup | inurl:admin | inurl:php site:example.com`\n   - **Server Errors**: `inurl:\"error\" | intitle:\"exception\" | intitle:\"failure\" | intitle:\"server at\" | inurl:exception | \"database error\" | \"SQL syntax\" | \"undefined index\" | \"unhandled exception\" | \"stack trace\" site:example.com`\n   - **XSS Prone Parameters**: `inurl:q= | inurl:s= | inurl:search= | inurl:query= | inurl:keyword= | inurl:lang= inurl:\u0026 site:example.com`\n   - **Open Redirect prone parameters**: `inurl:url= | inurl:return= | inurl:next= | inurl:redirect= | inurl:redir= | inurl:ret= | inurl:r2= | inurl:page= inurl:\u0026 inurl:http site:example.com`\n   - **SQLi Prone Parameters**: `inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= inurl:\u0026 site:example.com`\n   - **SSRF Prone Parameters**: `inurl:http | inurl:url= | inurl:path= | inurl:dest= | inurl:html= | inurl:data= | inurl:domain= | inurl:page= inurl:\u0026 site:example.com`\n   - **LFI Prone Parameters**: `inurl:include | inurl:dir | inurl:detail= | inurl:file= | inurl:folder= | inurl:inc= | inurl:locate= | inurl:doc= | inurl:conf= inurl:\u0026 site:example.com`\n   - **RCE Prone Parameters**: `inurl:cmd | inurl:exec= | inurl:query= | inurl:code= | inurl:do= | inurl:run= | inurl:read= | inurl:ping= inurl:\u0026 site:example.com`\n   - **File upload endpoints**: `site:example.com \"choose file\"`\n   - **API Docs**: `inurl:apidocs | inurl:api-docs | inurl:swagger | inurl:api-explorer site:example.com`\n   - **Login Pages**: `inurl:login | inurl:signin | intitle:login | intitle:signin | inurl:secure site:example.com`\n   - **Test Environments**: `inurl:test | inurl:env | inurl:dev | inurl:staging | inurl:sandbox | inurl:debug | inurl:temp | inurl:internal | inurl:demo site:example.com`\n   - **Sensitive Documents**: `site:example.com ext:txt | ext:pdf | ext:xml | ext:xls | ext:xlsx | ext:ppt | ext:pptx | ext:doc | ext:docx intext:\"confidential\" | intext:\"Not for Public Release\" | intext:\"internal use only\" | intext:\"do not distribute\"`\n   - **Sensitive Parameters**: `inurl:email= | inurl:phone= | inurl:password= | inurl:secret= inurl:\u0026 site:example.com`\n   - **Adobe Experience Manager (AEM)**: `inurl:/content/usergenerated | inurl:/content/dam | inurl:/jcr:content | inurl:/libs/granite | inurl:/etc/clientlibs | inurl:/content/geometrixx | inurl:/bin/wcm | inurl:/crx/de site:example.com`\n\n\u003c/aside\u003e\n\n\n## Contributions\nIf you’d like to contribute, feel free to fork this repository and add any tools or resources that enhance the guide. Contributions to specific examples or additional resources will help this collection grow and stay up-to-date with the latest in cybersecurity.\n\nThank you for exploring the **GoogleDorking**. Together, we’re building a one-stop resource for digital security mastery. \n\nLastly Consider to star this if you liked it ;)\nHappy hacking! 👾 \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzebbern%2Fgoogledorking","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzebbern%2Fgoogledorking","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzebbern%2Fgoogledorking/lists"}