Shulou(Shulou.com)06/01 Report--

The principle of Google Hack is very simple, which is to use the powerful search ability of search engines to find some websites with loopholes. If you want to use Google to find the vulnerabilities of the website, you have to learn the syntax of the search engine Google. Let's first explain the grammar of Google.

(1) introduction

As a google enthusiast, I would like to introduce google before I talk about google hacking.

①, google introduction: Google was founded in 1997, has become the world's number one search company. Google database stores 4.28 billion Web files; the number of retrieved web pages reaches 2.4 billion; supports up to 132languages; has more than 15000 servers and more than 200T3 broadband; provides highly accurate search results by adopting PageRank technology; intelligent "good luck" provides the website that best meets the requirements; "web page snapshot" can directly retrieve cached web pages from Google server; unique image search function Strong newsgroup search function; provide binary file search function, such as .PDF .doc .swf, etc.; large capacity Gmail service; powerful desktop search; high-definition google satellite map; provide translation between various languages.

Common features of ② and google:

a. Hanyu pinyin input retrieval: enter changsha (figure 2-1) Note: there can be no spacing between pinyin.

Figure 2-1 Pinyin search in Changsha

b. Translation function: input fy music (figure 2-2) Note: translation can be written directly into fy

Figure 2-2 translating music

c. Weather query: enter changsha tq (figure 2-3) Note: weather can be written directly as tq

Figure 2-3 pinyin to view the weather in Changsha

d. Stock query: enter Sinopec gp (figure 2-4) Note: stocks can be written directly as gp

Figure 2-4 View of Sinopec stocks

e. Postal code and area code query: enter qh Changsha (figure 2-5) Note: area code can be written directly as qh

Figure 2-5 View Changsha area code

f. Mobile phone query home query: enter 13875876817 (figure 6) Note: directly enter the number

Figure 2-6 query the place where the collection belongs

g. Shopping query: enter potato (Tudou) (figure 2-7) Note: URL:froogle.google.com

Figure 2-7 choose and buy potatoes, with information such as price, store, etc.

h. Bar code query

i. Aircraft flight inquiry

j. Retrieve the toolbar

K.google News

l. Website ranking

(2), grammar

We can do a lot of things with the syntax of Google. In 2006, there were several major events on the network, such as the "World of Warcraft Bronze Beard incident". Many * are using Google Hack technology to find Bronze Beard's QQ number, MSN, email address and other personal information. At present, when * uses Google Hack technology for * or data collection, there are mainly the following points:

①, before *, you can use Google Hack technology to collect information, such as finding the background of the website and the topology of the website, and so on.

②, when a vulnerability is discovered or published, use Google Hack technology to collect a large number of hosts or websites with this vulnerability. Typically, there are loopholes in the wish version. After finding the make-a-wish version using Google Hack technology, the library is exposed, and finally Webshell is obtained.

③, search while * *, because our * process is dynamic, we have to distinguish various methods and techniques according to different situations, and Google Hack technology can accomplish this task very well.

④, search the default database file of the website directly, this we can combine the tools such as digging chicken to do * * and *, then the effect will be more obvious.

⑤, search for the backdoor left by others, or record files such as QQ numbers stolen through WEB, as above, can also be combined with digging chickens. I will explain the tool of digging chicken in detail later.

Stepping on the spot plays a decisive role and is the most important factor in determining the success or failure of the government. It takes up more than 90% of the time in the entire process. Generally speaking, there are ten main aspects of information to be collected by FootPrinting: (take the website as an example)

a. Website registration information

b. Network management data

c. Share data

d. Port information

E. FTP resources

f. Website topology

g. Website URL address structure

h. System version of the website

i. Background address

j. Weak password

Here are some other entry addresses for Google, which are good for specific searches.

Oh, it can improve a lot of efficiency.

Http://www.google.com/microsoft Microsoft style entrance

Http://www.google.com/mac MAC style entrance

Http://www.google.com/bsd BSD style entrance

Http://www.google.com/intl/xx-elmer religious style entrance

Http://www.google.com/intl/xx-hacker * dedicated entrance

Http://www.google.com/custom?domains= domain name site search address

Http://www.google.com/custom?hl=zh-CN Chinese search address for special information and materials

Http://www.google.com/custom?hl=en English * search address for special information and materials

Http://www.mytianwang.cn/ domestic FTP file search engine

Let's start with our Google syntax. To put it bluntly, google hack technology is to combine the syntax of google and some keywords to carry on the website.

Intext: keyword.

Take a keyword in the body of a web page as a search condition, and then search for pages that contain these keywords in the body of web pages around the world. Allintext: keywords. The function is the same.

Intitle: keyword.

Use a keyword in the title of a page as a search term, and then search for pages around the world that contain these keywords in the title. Allintitle: keywords. The function is the same. For example, search website backend, intitle: login in the background.

Cache: keyword.

Search for cache with keyword content. For example, search the cached content in the Peking University website server, cache:pku.edu.cn, and the results are shown in figures 2-12 and 2-13.

Define: keyword.

Definition of the search keyword. Such as finding the definition of html

Filetype: file name. Suffix name.

Search for specific files. For example, if I want to search for papers on information security, we can find them by typing "Information Security papers filetype:doc".

Info: keyword.

This syntax is used to search for some basic information about a specified site. For example, search for some information on the website of Peking University

Inurl: keyword.

Search for URL addresses that contain keywords. This syntax is very important and most frequently used, and we can also use allinurl to locate URL addresses more accurately. For example, search for the URL address containing movie and type "inurl:movie". Then most of the sites you find are movie sites.

Link: keyword.

Find the URL address that is linked to the keyword and use it to search for some sensitive information.

Site: domain name.

Return all the URL addresses in the domain name, it can detect the topology of the site, is also very important, and is used very frequently. For example, if we search the URL address of all the faculties of Peking University, we can search all of its colleges by typing "College site:pku.edu.cn".

Related:URL

Search for pages related to the specified URL. For example, if we search for pages related to Peking University, we can see it by typing the keyword "related:pku.edu.cn".

Stocks: search for stock market information about a company

Insubject: search for the title line of the Google group

Msgid: search for Google group information identifiers and strings that identify newsgroup posts

Group: search for topics in the Google group search vocabulary posts

Author: the author of searching for newsgroup posts

Bphonebook: search only the business telephone directory

Rphonebook: search only the residential phone directory

Phonebook: search the business or residential telephone directory

Daterange: search for pages indexed by Google within a certain date range

Inanchor: search for a text representation of a link in a HTML tag

However, you need to pay attention to the following points:

Google uses an interval when searching for multiple keywords. Spaces represent logic and operations.

In google-indicates that the logic is not operational. For example, Amurc means to search for web pages with A but no C.

In google, OR stands for logical or. For example, AORB means to search for pages B containing An and pages containing both An and B.

Google uses double quotes for precise search, such as our search script * and "script *". The difference between the two is a double quotation mark, as shown in figure 2-20, showing the difference in their search results.

Figure 2-20 shows the difference between quotation marks and no quotation marks

Wildcard characters in google. * represents a series of characters,? Represents a single character. Keywords with wildcards should be in quotation marks.

Google is not sensitive to the case of English keywords.

Google ignores English words with high frequency. For example. Com i www http et al. If you want to force a search for an ignored keyword, you need to precede the keyword with the plaintext "+" sign.

Most of the commonly used English symbols in google (such as question marks, periods, commas, etc.) cannot be used as search keywords, nor can they be strengthened.

Another point is that maybe you all know the snapshot of BAIDU, but in fact Google also has this function.

Yes, his URL address is http://www.googlesyndicatedsearch.com/u/berkeley

For example, if we want to take a snapshot of pku.edu.cn, just enter the URL of Peking University (Peking University).

Attached: Google Mirror Station (limit traffic, use with caution)

Http://forstudyonly.2345.ga/

Attached: a large collection of search engines all over the world

Http://www.baimin.com/world/557.htm

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.