Over 16,540,899 people are on fubar.
What are you waiting for?
2004-09-13 PHP-Nuke - create super user right now ! PHP-Nuke is a popular web portal thingie. It has popped up in the Google dorks before. I think ... 2004-09-10 Gallery configuration setup files Gallery is a popular images package for websites. Unfortunately, with so many users, more bugs ... 2004-09-09 inurl:"nph-proxy.cgi" "Start browsi... Observing the web cracker in the wild, one feels like they are watching a bear. Like a bear sto... 2004-09-06 link:http://www.toastforums.com/ Toast Forums is an ASP message board on the Internet. Toast Forums also has all the features of... 2004-09-06 inurl:"plog/register.php" pLog is a popular form of bloggin software. Currently there are estimated about 1450 sites runn... 2004-08-30 inurl:robpoll.cgi filetype:cgi robpoll.cgi is used to administrate polls.The default password used for adding polls is 'robpol... 2004-08-20 intitle:"PHP Explorer" ext:php (inurl:ph... This searches for PHP Explorer scripts. This looks like a file manager with some nice extra opt... 2004-08-13 ext:cgi inurl:ubb6_test The UBB trial version contains files that are not safe to keep online after going live. The ins... 2004-08-01 filetype:inc inc intext:setcookie Cookies are often used for authentication and a lot of other stuff.The "inc" php head... 2004-08-01 filetype:wsdl wsdl The XML headers are called *.wsdl files.they can include data, functions or objects. An attacke... 2004-07-21 filetype:cnf my.cnf -cvs -example The MySQL database system uses my.cnf files for configuration. It can include a lot of informat... 2004-06-16 filetype:php inurl:"viewfile" -"ind... Programmers do strange things sometimes and forget about security. This search is the perfect e... 2004-06-10 intitle:"Index of /" modified php.exe PHP installed as a cgi-bin on a Windows Apache server will allow an attacker to view arbitrary ...
| 2014-02-05 | inurl:"/reports/rwservlet" intext:"... | Search Oracle Reports likely vulnerable to DB user/password disclosure (CVE-2012-3152 and CVE... |
| 2013-11-25 | inurl:"struts" filetype:action | Google search for actoin files wich could be explotable via CVE-2013-2251 "Multiple Remot... |
| 2013-08-08 | inurl:.php? intext:CHARACTER_SETS,COLLATIONS, ? int... | inurl:.php? intext:CHARACTER_SETS,COLLATIONS, ? intitle:phpmyadmin view phpMyAdmin of web sit... |
| 2012-12-31 | inurl:/wp-content/w3tc/dbcache/ | - Jay Townsend... |
| 2012-12-31 | intext:SQL syntax & inurl:index.php?=id & ... | # Exploit Title: SQLI Exploit # Google Dork: intext:SQL syntax & inurl:index.php?=id &... |
| 2012-08-21 | intext: intext: intext: intext: intext: | More than 100k sites affected It will show asp sites that are vulnerable to sql injection (... |
| 2012-05-15 | intitle:awen+intitle:asp.net | Hi, This google dork exposes any already uploaded asp.net shells which are available in Bac... |
| 2012-05-15 | intitle:"-N3t" filetype:php undetectable | intitle:"-N3t" filetype:php undetectable Search WebShell indexed on a page. -- ... |
| 2011-12-23 | inurl:.php intitle:- BOFF 1.0 intext:[ Sec. Info ] | This search attempts to find the BOFF 1.0 Shell. Author: alsa7r … |
| 2011-11-25 | filetype:php inurl:tiki-index.php +sirius +1.9.* | Finds servers vulnerable to the CVE-2007-5423 exploit. Author: Matt Jones … |
| 2011-11-24 | filetype:php inanchor:c99 inurl:c99 intitle:c99she… | This search attempts to find the c99 backdoor that may be knowingly or unknowingly installed o… |
| 2011-11-19 | inurl:php intitle:”Cpanel , FTP CraCkeR” | locates cpanel and ftp cracker. Author: alsa7r … |
| 2011-10-11 | intitle:#k4raeL – sh3LL | intitle:#k4raeL – sh3LL Finds K4rael Shell , though many of them are dead but we can get som… |
| 2011-09-26 | inurl:view.php?board1_sn= | locates a webapp vulnerable to SQL injection … |
| 2011-07-26 | intitle:m1n1 1.01 | find the b374k shell…. Submitted by : biLLbud … |
| 2011-05-03 | intitle:Locus7shell intext:”Software:” | intitle:Locus7shell intext:”Software:” Submitted by lionaneesh — Thanks Ane… |
shoutcast is software for streaming mp3 and such. This search finds the administrator page. It ... 2004-07-29 "powered by" "shoutstats" hour... shoutstats is a fast, free Shoutcast server statistic analysis program. It produces instant and... 2004-07-26 "Novell, Inc" WEBACCESS Username Passwor... This may be used to find Novell Grouwise Webaccess servers.... 2004-07-19 "httpd+ssl/kttd" * server at intitle:ind... The version of a particular web server can be detected with a simple query like this one. Altho...
| 2004-07-19 | fitweb-wwws * server at intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | sEDWebserver * server +at intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Red Hat Secure/3.0 server at" | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Red Hat Secure/2.0" | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "OpenSA/1.0.4" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "OmniHTTPd/2.10" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Microsoft-IIS/6.0" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Microsoft-IIS/5.0 server at" | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Microsoft-IIS/4.0" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "Microsoft-IIS/* server at" intitle:inde... | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "MaXX/3.1" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "JRun Web Server" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "CERN httpd 3.0B (VAX VMS)" | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-19 | "AnWeb/1.42h" intitle:index.of | The version of a particular web server can be detected with a simple query like this one. Altho... |
| 2004-07-12 | Red Hat Unix Administration | Red Hat UNIX Administration Pages. This search detects the fixed title for the admin pages on c... |
| 2004-07-02 | Environment vars | This is a generic way of grabbing those CGI-spewed environmental var lists. To narrow to things... |
| 2004-06-18 | allinurl:".nsconfig" -sample -howto -tut... | Access to a Web server's content, CGI scripts, and configuration files is controlled by entries... |
| 2004-05-17 | inurl:domcfg.nsf | This will return a listing of servers running Lotus Domino. These servers by default have very... |
| 2004-05-13 | intitle:"300 multiple choices" | This search shows sites that have the 300 error code, but also reveal a server tag at the botto... |
| 2004-04-23 | intitle:Snap.Server inurl:Func= | This page reveals the existance of a SNAP server (Netowrk attached server or NAS devices) Depen... |
| 2004-04-20 | intitle:"Test Page for Apache" | This is the default web page for Apache 1.2.6 - 1.3.9. Hackers can use this information to dete... |
| 2004-03-18 | allintitle:Netscape FastTrack Server Home Page | This finds default installations of Netscape Fasttrack Server. In many cases, default installat... |
| 2004-03-04 | intitle:"Test Page for Apache" "It ... | This is the default web page for Apache 1.2.6 - 1.3.9. Hackers can use this information to dete... |
| 2004-03-04 | intitle:"Test Page for Apache" "It ... | This is the default web page for Apache 1.2.6 - 1.3.9. Hackers can use this information to dete... |
| 2004-03-04 | "seeing this instead" intitle:"test... | This is the default web page for Apache 1.3.11 - 1.3.26. Hackers can use this information to de... |
| 2003-08-11 | aboutprinter.shtml (More Xerox printers on the web... | More Xerox printers on the web! Google found these printers. Should their management interface ... |
| 2003-08-11 | index_i.shtml Ready (Xerox printers on the web!) | These printers are not-only web-enabled, but their management interface somehow got crawled by ... |
| 2003-08-07 | inurl:tech-support inurl:show Cisco | This is a way to find Cisco products with an open web interface. These are generally supposed t... |
| 2003-06-24 | OpenBSD running Apache | I like the OpenBSD operating system. I really do. And I like the Apache web server software. Ho... |
| 2003-06-24 | IIS 4.0 | Moving from personal, lightweight web servers into more production-ready software, we find that... |
| 2003-06-24 | Windows 2000 Internet Services | At first glance, this search reveals even more examples of operating system users enabling the ... |
| 2003-06-24 | Apache online documentation | When you install the Apache web server, you get a nice set of online documentation. When you le... |
| 2013-09-24 | -site:simplemachines.org "These are the paths... | Dork: -site:simplemachines.org "These are the paths and URLs to your SMF installation&qu... |
| 2011-08-25 | allinurl:forcedownload.php? file= | Didn't see this anywhere in the GHDB, but its been known for a while and widely abused by oth... |
| 2011-05-28 | ionCube Loader Wizard information disclosure | inurl:loader-wizard ext:php This dork displays sensitive information Auth0r: MaXe... |
| 2011-05-27 | vBulletin Install Page Detection | inurl:/install/install.php intitle:vBulletin * Install System This dork displays the untreat... |
| 2006-09-13 | inurl:"simplenews/admin" | hxxp://evuln.com/vulns/94/summary.html... |
| 2006-02-28 | inurl:updown.php | intext:"Powered by PHP Upl... | this (evil ) script lets you to upload a php shell on target server, in most cases not password... |
| 2005-12-19 | inurl:guestbook/guestbooklist.asp "Post Date&... | A sql vulnerability has been reported in a Techno Dreams asp script, login.asp. http://search.s... |
| 2005-10-26 | intitle:"CJ Link Out V1" | A cross site scripting vunerability has been discovered in CJ linkout version 1.x. CJ linkout i... |
| 2005-09-26 | "powered by mailgust" | MailGust 1.9/2.0 (possibly prior versions) SQL injection / board takevorsoftware:site: http://w... |
| 2005-09-26 | "powered by my little forum" | My Little Forum 1.5 / 1.6beta SQL Injectionsoftware:site: http://www.mylittlehomepage.net/my_li... |
| 2005-09-25 | intitle:"Control panel" "Control Pa... | Build, manage and customize your own search engine friendly news / article site from scratch --... |
| 2005-09-25 | inurl:cartwiz/store/index.asp | The CartWIZ eCommerce Shopping Cart System will help you build your online store through an int... |
| 2005-09-13 | "e107.org 2002/2003" inurl:forum_post.ph... | e107 is prone to an input validation vulnerability. This issue is due to a failure in the appli... |
| 2005-09-13 | "maxwebportal" inurl:"default"... | several vulnerabilities relating to this.MaxWebPortal is a web portal and online community syst... |
| 2005-09-11 | "Mail-it Now!" intitle:"Contact for... | Mail-it Now! 1.5 (possibly prior versions) contact.php remote code executionsite: http://www.sk... |
| 2005-09-11 | "Warning:" "Cannot execute a blank ... | "Warning: passthru(): Cannot execute a blank command in" "Warning: system(): Can... |
| 2005-09-08 | "Powered by Xcomic" | "Powered by xcomic"this is a recent exploit, you can retrieve any file on target syst... |
| 2005-08-08 | "Powered by FunkBoard" | FunkBoard V0.66CF (possibly prior versions) cross site scripting, possible database username/pa... |
| 2005-08-07 | "Powered by FlexPHPNews" inurl:news | in... | 24/07/2005 2.38.13Flex PHPNews 0.0.4 login bypass/ sql injection, cross site scripting & re... |
| 2005-08-07 | "Powered By: Simplicity oF Upload" inurl... | 26/07/2005 16.09.18Simplicity OF Upload 1.3 (possibly prior versons) remote code execution &... |
| 2005-08-07 | inurl:nquser.php filetype:php | Netquery 3.1 remote commands execution, cross site scripting, information disclosure poc exploi... |
| 2005-08-07 | PHPFreeNews inurl:Admin.php | 29/07/2005 8.36.03PHPFreeNews Version 1.32 (& previous) sql injection/login bypass, cross s... |
| 2005-08-07 | "Powered by SilverNews" | silvernews 2.0.3 (possibly previous versions ) SQL Injection / Login Bypass / Remote commands e... |
| 2005-08-07 | "Powered by Gravity Board" | 4.22 07/08/2005 Gravity Board X v1.1 (possibly prior versions) Remote code execution, SQL Injec... |
| 2005-07-26 | filetype:mdb "standard jet" | These Microsoft Access Database files may contain usernames, passwords or simply prompts for su... |
| 2005-06-03 | intitle:"PHPstat" intext:"Browser&q... | Phpstat shows nice statistical informatino about a website's visitors. Certain versions are als... |
| 2005-05-20 | intitle:"SSHVnc Applet"OR intitle:"... | sSHTerm Applet en SSHVnc Applet pages.... |
| 2005-04-27 | inurl:cgi-bin inurl:bigate.cgi | Anonymous surfing with bigate.cgi. Remove http:// when you copy paste or it won't work.... |
| 2004-12-01 | filetype:pl -intext:"/usr/bin/perl" inur... | WebCal allows you to create and maintain an interactive events calendar or scheduling system on... |
| 2004-11-30 | filetype:mdb inurl:"news/news" | Web Wiz Site News unprotected database holds config and admin information in a microsoft access... |
| 2004-11-28 | inurl:php.exe filetype:exe -example.com | It is possible to read any file remotely on the server with PHP.EXE (assuming a script alias fo... |
| 2004-11-18 | "Powered by Land Down Under 601" | sQL injection vulnerability in Land Down Under 601 could give an attacker administrative access... |
| 2004-11-16 | ext:asp "powered by DUForum" inurl:(mess... | DUForum is one of those free forum software packages. The database location is determined by th... |
| 2004-11-16 | ext:asp inurl:DUgallery intitle:"3.0" -s... | The MS access database can be downloaded from inside the docroot. The user table holds the admi... |
| 2004-11-04 | filetype:cgi inurl:cachemgr.cgi | cachemgr.cgi is a management interface for the Squid proxy service. It was installed by default... |
| 2004-10-31 | "powered by YellDL" | Finds websites using YellDL (or also known as YellDownLoad), a download tracker written in PHP.... |
| 2004-10-27 | inurl:click.php intext:PHPClickLog | A script written in PHP 4 which logs a user's statistics when they click on a link. The log is... |
| 2004-10-27 | "File Upload Manager v1.3" "rename ... | thepeak file upload manager let you manage your webtree with up and downloading files.... |
| 2004-10-26 | intitle:"phpremoteview" filetype:php &qu... | phpRemoteView is webbased filemanger with a basic shell. With this an attacker can browse the s... |
| 2004-10-19 | intitle:"ASP FileMan" Resend -site:iiswo... | FileMan is a corporate web based storage and file management solution for intra- and internet. ... |
| 2004-10-16 | ezBOO "Administrator Panel" -cvs | ezBOO WebStats is a high level statistical tool for web sites monitoring. It allows real time ... |
| 2004-10-14 | intitle:mywebftp "Please enter your password&... | MyWebFTP Free is a free lite version of MyWebFTP Personal - a PHP script providing FTP client c... |
| 2004-10-14 | intitle:"Directory Listing" "tree v... | Dirlist is an ASP script that list folders in an explorer style: * Tree * Detailed * Tiled ... |
| 2004-10-09 | inurl:changepassword.cgi -cvs | Allows a user to change his/her password for authentication to the system. Script allows for r... |
| 2004-10-06 | inurl:" WWWADMIN.PL" intitle:"wwwad... | wwwadmin.pl is a script that allows a user with a valid username and password, to delete files ... |
| 2004-10-05 | inurl:cgi.asx?StoreID | BeyondTV is a web based software product which let you manage your TV station. All you need is ... |
| 2004-09-18 | filetype:lit lit (books|ebooks) | Tired of websearching ? Want something to read ? You can find Ebooks (thousands of them) with t... |
2005-02-17 filetype:ini Desktop.ini intext:mydocs.dll This dork finds any webshared windows folder inside my docs. You can change the end bit "i... 2005-01-16 filetype:torrent torrent Torrent files .. don't expect to find spectacular stuff with this kind of string, this just to ... 2005-01-09 "Index of" rar r01 nfo Modified 2004 New Warez Directory Lists... 2005-01-07 "Web File Browser" "Use regular exp... This will ask google to search for a php script used to manage files on a server. The script &q... 2005-01-05 intitle:"HFS /" +"HttpFileServer&qu... "The HttpFileServer is a Java based mechanism for providing web access to a set of files o... 2005-01-01 intitle:upload inurl:upload intext:upload -forum -... The search reveals server upload portals.An attacker can use server space for his own benefit.... 2004-12-30 intitle:"index of" inurl:ftp (pub | inco... Adding "inurl:ftp (pub | incoming)" to the "index.of" searches helps locati... 2004-12-29 allinurl:"/*/_vti_pvt/" | allinurl:"... Frontpage extensions for Unix ? So be it..... 2004-12-19 intitle:index.of abyss.conf These directories reveal the configuration file of the abyss webserver. These files can contain... 2004-12-19 intitle:"Index of /CFIDE/" administrator With ColdFusion, you can build and deploy powerful web applications and web services with far l... 2004-12-19 "Powered by Invision Power File Manager"... Invision Power File Manager is a popular file management script, written in the popular PHP Scr... 2004-12-05 intitle:"index of" "parent director... This search uses desktop.ini to track users with a webserver running on their desktop computers... 2004-11-28 intext:"Powered By: TotalIndex" intitle:... TotalIndex v2.0 is an open source script that is designed to replace the simple, and boring def... 2004-11-07 "intitle:Index.Of /" stats merchant cgi-... This search looks for indexes with the following subdirectories: stats, merchant, online-store ... 2004-10-31 intitle:"index of" intext:"content.... This dork indicates the "Local settings" dir in most cases, and browseble server dire...
| 2004-10-20 | intitle:"index of" -inurl:htm -inurl:htm... | Yes! I probably have should have told you guys earlier, but this is how ive been getting 100% ... |
| 2004-10-25 | index.of.dcim | The DCIM directory is the default name for a few brands of digital camers. This is not a big ne... |
| 2004-10-19 | intitle:"Directory Listing For" intext:T... | The Google Hackers Guide explains how to find Apache directory indexes, which are the most comm... |
| 2004-09-24 | intitle:"webadmin - /*" filetype:php dir... | Webadmin.php is a free simple Web-based file manager. This search finds sites that use this sof... |
| 2004-09-21 | intitle:index.of (inurl:fileadmin | intitle:filead... | TYPO3 is a free Open Source content management system for enterprise purposes on the web and in... |
| 2004-09-10 | intitle:"Index of *" inurl:"my shar... | These are index pages of "My Shared Folder". Sometimes they contain juicy stuff like ... |
| 2004-08-26 | intitle:index.of /AlbumArt_ | Directories containing commercial music.AlbumArt_{.*}.jpg are download/create by MS-Windows Med... |
| 2004-08-05 | intext:"d.aspx?id" || inurl:"d.aspx... | "The YouSendIt team was formed to tackle a common problem: secure transmission of large do... |
| 2004-07-20 | "index of" / picasa.ini | Picasa is an 'Automated Digital Photo Organizer' recently aquired by Google. This search allows... |
| 2004-07-16 | index.of.password | These directories are named "password." I wonder what you might find in here. Warning... |
| 2004-10-31 | inurl:explorer.cfm inurl:(dirpath|This_Directory) | Filemanager without authentication.... |
| 2004-07-12 | Index of phpMyAdmin | phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web... |
| 2004-06-14 | filetype:cfg ks intext:rootpw -sample -test -howto | Anaconda is a linux configuration tool like yast on suse linux. The root password is often encr... |
| 2004-06-02 | intitle:"album permissions" "Users ... | Gallery (http://gallery.menalto.com) is software that allows users to create webalbums and uplo... |
| 2004-06-01 | "Index Of /network" "last modified&... | Many of these directories contain information about the network, though an attacker would need ... |
| 2004-05-13 | intitle:intranet inurl:intranet +intext:"huma... | According to whatis.com: "An intranet is a private network that is contained within an ent... |
| 2004-05-11 | inurl:/tmp | Many times, this search will reveal temporary files and directories on the web server. The info... |
| 2004-05-04 | "index of" inurl:recycler | This is the default name of the Windows recycle bin. The files in this directory may contain se... |
| 2004-04-28 | inurl:/pls/sample/admin_/help/ | This is the default installation location of Oracle manuals. This helps in footprinting a serve... |
| 2004-04-28 | inurl:ojspdemos | This directory contains sample Oracle JSP scripts which are installed on the server. These prog... |
| 2004-04-28 | inurl:j2ee/examples/jsp | This directory contains sample JSP scripts which are installed on the server. These programs ma... |
| 2004-04-23 | "index of cgi-bin" | CGI directories contain scripts which can often be exploited by attackers. Regardless of the vu... |
| 2004-04-19 | intitle:"Index of" cfide | This is the top level directory of ColdFusion, a powerful web development environment. This dir... |
| 2004-03-29 | intitle:"index.of.personal" | This directory has various personal documents and pictures.... |
| 2004-02-10 | intitle:"Index of c: Windows" | These pages indicate that they are sharing the C:WINDOWS directory, which is the system folder... |
| 2003-08-12 | "Welcome to phpMyAdmin" " Create ne... | phpMyAdmin is a widly spread webfrontend used to mantain sql databases. The default security me... |
| 2004-03-16 | inurl:backup intitle:index.of inurl:admin | This query reveals backup directories. These directories can contain various information rangin... |
| 2003-06-27 | index.of.password | These directories are named "password." I wonder what you might find in here. Warning... |
| 2003-06-27 | protected | What could be in a directory marked as "protected?" Let's find out...... |
| 2003-06-27 | secure | What could be hiding in directories marked as "secure? " let's find out...... |
| 2003-06-27 | winnt | The WINNT directory is the directory that Windows NT is installed into by default. Now just be... |
| 2003-06-27 | private | What kinds of things might you find in directories marked "private?" let's find out..... |
| 2003-06-27 | secret | What kinds of goodies lurk in directories marked as "secret?" Find out...... |
| 2003-06-24 | Look in my backup directories! Please? | Backup directories are often very interesting places to explore. More than one server has been ... |
| 2006-05-23 | intitle:"BadBlue: the file-sharing web server... | Badblue file sharing web server detection... |
| 2006-05-03 | intext:"Target Multicast Group" "be... | "... Multicast Beacon is a multicast diagnostic tool written in Perl which uses the RTP pr... |
| 2006-05-03 | intitle:"Apache Status" "Apache Ser... | New Apache Server Status Dork... |
| 2006-02-08 | inurl:wl.exe inurl:?SS1= intext:"Operating sy... | List server apparently keeps track of many clients, not just Domains and hardware, but Operatin... |
| 2005-11-16 | inurl:nnls_brand.html OR inurl:nnls_nav.html | Novell Nterprise Linux Services detection dork. Some of the features are:* iFolder* Samba* NetS... |
| 2005-05-30 | (intitle:"502 Proxy Error")|(intitle:&qu... | A reverse proxy is a gateway for servers, and enables one web server to provide content from an... |
| 2005-05-20 | intitle:"Welcome to 602LAN SUITE *" | The 602LAN SUITE runs on a webserver called WEB602/1.04 and includes webmail.... |
| 2005-05-02 | intitle:"Document title goes here" intit... | IBM Http Server (AS/400)... |
| 2005-05-02 | intitle:"Welcome To Your WebSTAR Home Page&qu... | This is the default page for the WebSTAR (Macintosh) web server (Headers say --> Server: Web... |
| 2005-04-27 | intitle:"Welcome to the Advanced Extranet Ser... | Webserver detection: The Advanced Extranet Server project aims to create an extensible open sou... |
| 2005-04-16 | intitle:"Welcome to Windows Small Business Se... | Another way to find Small Business Server 2003, for more results check the dork by JimmyNeutron... |
| 2005-03-29 | thttpd webserver | thttpd is is a webserver written in C and should compile and run on most unix-like systems. As ... |
| 2005-03-29 | intitle:"IPC@CHIP Infopage" | web server detection for IPC@chip embedded webserverThe dork uses the webserver's infopage whic... |
| 2005-03-31 | yaws.*.server.at | YAWS (http://yaws.hyber.org), Yet Another Web Server, is a HTTP high perfomance 1.1 webserver. ... |
| 2005-03-20 | intitle:"Test Page for the Apache HTTP Server... | Apache 2.0 on Fedore Core Test page... |
| 2005-03-18 | Powered.by.RaidenHTTPD intitle:index.of | RaidenHTTPD ( http://www.raidenhttpd.com/en ) is a full featured web server software for Window... |
| 2005-03-05 | (inurl:81-cobalt | inurl:cgi-bin/.cobalt) | Cobal RaQ internal pages... |
| 2005-02-15 | intitle:"welcome to mono xsp" | XSD is the demo webserver for the Mono project and allows the execution of ASP.NET on Unix... |
| 2005-01-27 | inurl:oraweb -site:oraweb.org | Oracle administrators tend to naming their servers ora* - maybe because they forget the name of... |
| 2005-01-26 | "Netware * Home" inurl:nav.html | Rather than submitting various searches for all kinds of NetWare related pages, Novell NetWare'... |
| 2005-01-21 | XAMPP "inurl:xampp/index" | XAMPP is an easy to install Apache distribution containing MySQL, PHP and Perl. XAMPP is really... |
| 2004-12-13 | inurl:2506/jana-admin | The JanaServer 2 is amongst other things a proxy server, that makes it possible for LAN members... |
| 2004-12-13 | allintext:"Powered by LionMax Software" ... | WWW File Share Pro is a small HTTP server that can help you share files with your friends. They... |
| 2004-11-30 | intitle:"Resin Default Home Page" | Resin provides a fast standalone web server. This search locates those servers based on the tit... |
| 2004-11-28 | intitle:"Welcome To Xitami" -site:xitami... | Default Xitami installationAdditionally every default installation of Xitami webserver has a te... |
| 2004-11-13 | intitle:"Welcome to Your New Home Page!"... | This finds the default Apache page on Debian installs.... |
| 2004-11-07 | "About Mac OS Personal Web Sharing" | Mac OS Personal Web Sharing allows Mac OS users to share Folders over the Web.If you open this ... |
| 2004-11-07 | "Switch to table format" inurl:table|pla... | This is an index page of OReilly WebSite Professional.WebsitePro was developed by O'reily and d... |
| 2004-10-12 | intitle:"Object not found!" intext:"... | This one detects apache werbservers (2.0.X/SuSE) with its error page.... |
| 2004-10-12 | intitle:"Open WebMail" "Open WebMai... | "Open WebMail is a webmail system based on the Neomail version 1.14 from Ernie Miller. Ope... |
| 2004-10-12 | intitle:"error 404" "From RFC 2068 ... | WebLogic Server Process Edition extends the functionality of the Application Server by convergi... |
| 2004-10-12 | intitle:"Directory Listing, Index of /*/"... | Vendor page:"Einfache HTTP-Server-Software fÃà ‚¼r privates Homepage-Hosting ... |
| 2004-10-12 | intitle:"Lotus Domino Go Webserver:" &qu... | Domino Go Webserver is a scalable high-performance Web server that runs on a broad range of pla... |
| 2004-10-09 | intitle:"Object not found" netware "... | This search will show netware apache webservers as the result.... |
| 2004-09-26 | intitle:AnswerBook2 inurl:ab2/ (inurl:8888 | inurl... | First of all this search indicates solaris machines and second the webservice is vulnerable to ... |
| 2004-08-16 | intext:"404 Object Not Found" Microsoft-... | This search finds IIS 5.0 error pages = IIS 5.0 Server... |
| 2004-07-29 | intitle:"Shoutcast Administrator" |
2005-10-06 inurl:polly/CP You can get into admin panel without logging…. 2005-09-25 intitle:”net2ftp” “powered by net2f… net2ftp is a web-based FTP client written in PHP. Lets explain this in detail. Web-based means … 2005-08-15 intitle:MyShell 1.1.0 build 20010923 Basicly MyShell is a php program that allows you to execute commands remotely on whichever serv… 2005-05-02 intitle:”YALA: Yet Another LDAP Administrator… YALA is a web-based LDAP administration GUI. The idea is to simplify the directory administrati… 2005-04-27 intitle:”ERROR: The requested URL could not b… squid error messages, most likely from reverse proxy servers….
| 2004-12-19 | inurl:”phpOracleAdmin/php” -download -cv… | phpOracleAdmin is intended to be a webbased Oracle Object Manager.In many points alike phpMyAdm… |
| 2004-11-28 | PHPKonsole PHPShell filetype:php -echo | PHPKonsole is just a little telnet like shell wich allows you to run commands on the webserver…. |
| 2004-11-28 | filetype:php HAXPLORER “Server Files Browser&… | Haxplorer is a webbased filemanager which enables the user to browse files on the webserver. Yo… |
| 2004-11-06 | inurl:ConnectComputer/precheck.htm | inurl:Remote/… | Windows Small Business Server 2003: The network configuration page is called “ConnectCompu… |
| 2004-10-22 | (inurl:81/cgi-bin/.cobalt/) | (intext:”Welco… | The famous Sun linux appliance. The default page displays this text:”Congratulations on Ch… |
| 2004-10-09 | intitle:”Web Data Administrator – Login” | The Web Data Administrator is a utility program implemented in ASP.NET that enables you to easi… |
| 2004-07-20 | “adding new user” inurl:addnewuser -&quo… | Allows an attacker to create an account on a server running Argosoft mail server pro for window… |
| 2004-07-12 | PHP Shell (unprotected) | PHP Shell is a shell wrapped in a PHP script. It’s a tool you can use to execute arbiritary she… |
| 2004-07-12 | Public PHP FileManagers | PHPFM is an open source file manager written in PHP. It is easy to set up for a beginner, but s… |
| 2004-05-20 | +htpasswd +WS_FTP.LOG filetype:log | WS_FTP.LOG can be used in many ways to find more information about a server. This query is very… |
| 2003-09-09 | intitle:admin intitle:login | Admin Login pages. Now, the existance of this page does not necessarily mean a server is vulner… |
| 2013-04-22 | intext:”root:x:0:0:root:/root:/bin/bash”… | Author: ./tic0 | Izzudin al-Qassam Cyber Fighter … |
| 2013-04-22 | inurl:”/root/etc/passwd” intext:”ho… | inurl:”/root/etc/passwd” intext:”home/*:” … |
| 2006-07-31 | site:extremetracking.com inurl:”login=” | The search reveals usernames (right in the URL in green) and links to the sites that are signed… |
| 2005-06-05 | intext:”SteamUserPassphrase=” intext:&qu… | This will search for usernames and passwords for steam (www.steampowered.com) taken from the St… |
| 2004-06-19 | OWA Public folders & Address book | This search jumps right to the main page of Outlook Web Access Public Folders and the Exchange … |
| 2004-05-20 | filetype:conf inurl:proftpd.conf -sample | A standard FTP configuration file that provides far too many details about how the server is se… |
| 2004-05-13 | filetype:log username putty | These log files record info about the SSH client PUTTY. These files contain usernames, site nam… |
| 2004-05-12 | filetype:reg reg +intext:”internet account ma… | This google search reveals users names, pop3 passwords, email addresses, servers connected to a… |
| 2004-05-11 | filetype:reg reg HKEY_CURRENT_USER username | This search finds registry files from the Windows Operating system. Considered the “soul&q… |
| 2004-05-03 | +intext:”webalizer” +intext:”Total … | The webalizer program displays various information but this query displays usernames that have … |
| 2004-04-28 | inurl:php inurl:hlstats intext:”Server Userna… | This page shows the halflife stat script and reveals the username to the system. Table structur… |
| 2004-04-13 | index.of perform.ini | This file contains information about the mIRC client and may include channel and user names…. |
| 2004-04-13 | “index of” / lck | These lock files often contain usernames of the user that has locked the file. Username harvest… |
| 2004-03-16 | inurl:admin filetype:asp inurl:userlist | This search reveals userlists of administrative importance. Userlists found using this method c… |
| 2004-03-16 | inurl:admin inurl:userlist | This search reveals userlists of administrative importance. Userlists found using this method c… |
| 2003-06-24 | sh_history files | Ok, this file contains what a user typed at a shell command prompt. You shouldn’t advertise thi… |
| 2003-06-24 | bash_history files | Ok, this file contains what a user typed at a shell command prompt. You shouldn’t advertise thi… |
| 2014-02-05 | allinurl:/hide_my_wp= | i just found a google dork that is file/path disclosure of Hide My WP plugin Google dork -… |
| 2013-11-25 | intitle:”index of” intext:”.ds_stor… | Mac OSX directories — -[Voluntas Vincit Omnia]- website http://www.erisresearch.org/ Go… |
| 2013-09-24 | intitle:”index of” myshare | Google search for shared HDD directories or shared directories on servers. Gives access to oft… |
| 2013-08-08 | inurl:8080 intitle:”Dashboard [Jenkins]“ | #Summary: Acces to Jenkins Dashboard #Author: g00gl3 5c0u7 … |
| 2013-08-08 | intitle:index.of intext:.bash_history | the GHDB on subject (intitle:index.of intext:.bash_history) finds all home users directory pat… |
| 2013-08-08 | intext:xampp-dav-unsecure:$apr1$6O9scpDQ$JGw2Tjz0j… | # Exploit Title: google dork for apache directory listing by url edit # Google Dork: intext:xa… |
| 2013-04-09 | “index of” inurl:sym | Google Dork: “index of” inurl:sym You can Steal the symlinks of other Servers A… |
| 2013-04-09 | “index of” inurl:root intitle:symlink | Google Dork: index of” inurl:root intitle:symlink Steal Others Symlink Author: Un0wn… |
| 2012-11-02 | inurl:ckfinder intext:”ckfinder.html” in… | Dork: inurl:ckfinder intext:”ckfinder.html” intitle:”Index of /ckfinder” … |
| 2011-11-19 | inurl:/xampp | this dork looks for servers with xampp installed… |
| 2010-11-10 | allintext:”WebServerX Server at” | Quick and dirty WebserverX HTTP server google dork … |
| 2010-11-10 | intitle:index.of ios -site:cisco.com | Google search for Cisco IOS images Author: fdisk… |
| 2010-11-10 | intitle:index.of cisco asa -site:cisco.com | Google search for Pix/Asa images Author: fdisk… |
| 2006-07-14 | intitle:index.of.config | These directories can give information about a web servers configuration. This should never be … |
| 2006-02-28 | allintitle:”FirstClass Login” | allintitle:”FirstClass Login” this is for firstclass directory listingsgo to http://[... |
| 2006-01-16 | inurl:install.pl intext:"Reading path paramat... | Excelent information for foot holds. Everything from OS, to forum software, etc. Other exploits... |
| 2005-12-01 | "Warning: Installation directory exists at&qu... | by this dork you can find fresh installations of Zen-Cartsee Full Disclosure forums fore detail... |
| 2005-11-28 | "Welcome to the directory listing of" &q... | this is for NetworkActiv-Web-Server directory listing... |
| 2005-11-11 | log inurl:linklint filetype:txt -"checking&qu... | Linklint is an Open Source Perl program that checks links on web sites. This search finds the L... |
| 2005-09-26 | "Directory Listing for" "Hosted by ... | directory listing for Xerver web server... |
| 2005-09-26 | intitle:"Folder Listing" "Folder Li... | directory listing for Fastream NETFile Web Server... |
| 2005-09-13 | intitle:"Backup-Management (phpMyBackup v.0.4... | phpMyBackup is an mySQL backup tool, with features like copying backups to a different server u... |
| 2005-07-21 | intitle:"pictures thumbnails" site:pictu... | This search reveals the photo albums taken by Sprint PCS customers. Pictures taken with Sprint'... |
| 2005-05-02 | intitle:index.of WEB-INF | Finds java powered web servers which have indexing enabled on their config directory... |
| 2005-03-26 | intitle:index.of /maildir/new/ | search gives you a mailbox dir. Contains a lot of mails.... |
| WAKAWAKAWAKA! |
dynabyt3 ownz you
|
| 2014-01-03 | intitle:”WSO 2.4″ [ Sec. Info ], [ Files... | dork to find uploaded WSO 2.4 shell by hackers. found by Anon?M ID ... |
| 2014-01-03 | intitle:"=[ 1n73ct10n privat shell ]=” | the dork is used to find uploaded 1n73ct10n Shell on website. found by Anon?M ID … |
| 2013-11-25 | filetype:php intext:”!C99Shell v. 1.0 beta&qu… | php backdoor: c99 shell — -[Voluntas Vincit Omnia]- website http://www.erisresearch.org/… |
| 2013-11-25 | intitle:”uploader by ghost-dz” ext:php | intitle:”uploader by ghost-dz” ext:php… |
| 2013-08-08 | inurl:1337w0rm.php intitle:1337w0rm | Finds websites that have 1337w0rm’s CPanel cracker uploaded. Since the Cracker is relatively n… |
| 2012-11-02 | inurl:”r00t.php” | This dork finds websites that were hacked, backdoored and contains their system information e… |
| 2012-11-02 | intitle:C0ded By web.sniper | User & Domain || Symlink Using this dork you can find the User and the Domains of the Serv… |
| 2012-11-02 | intitle:Priv8 SCR | I am Un0wn_X Symlink User configs intitle:Priv8 SCR … |
| 2011-09-26 | inurl:”amfphp/browser/servicebrowser.swf”… | AMFPHP service browser, debug interface. Author: syddd … |
| 2011-01-09 | allintext:”fs-admin.php” | A foothold using allintext:”fs-admin.php” shows the world readable directories of a… |
| 2006-05-03 | (intitle:”SHOUTcast Administrator”)|(int… | sHOUTcast is a free-of-charge audio homesteading solution. It permits anyone on the internet to… |
| 2006-03-15 | (intitle:”WordPress â€Å | Alter setup configuration files.add ?step=1… |
| 2006-03-06 | “index of /” ( upload.cfm | upload.asp |… | searches for scripts that let you upload files which you can then execute on the server…. |
| 2006-02-08 | “Please re-enter your password It must match … | Invision Powerboard registration pages. Plain and simple…. |
| 2006-01-04 | inurl:”tmtrack.dll?” | This query shows installations of Serena Teamtrack. (www.serena.com).You may be able to adjust … |
Welcome all and thanks for reading my first Fu-Blog!
let's jump right on in and begin why dont we?
Do you find yourself needing to send a text or make a phone call but dont wanna leave your pc?
or mabey you just ran out of minutes and need a temporary till you get yours reloaded?
well these sites below then should come in handy to
or 10. Twilio
Ironically, Twilio gives you a private phone number for free in the trial account if you provide them with your phone number to receive a verification code. Fortunately you can use any of the temporary phone numbers from the sites above to receive the verification code to activate
Twilio trial account.
Twilio phone number
You can view your private phone number given by Twilio by clicking NUMBERS on the menubar on top of the page. To view the received SMS text message, click on LOGS followed by MESSAGES. Do note that the trial account of Twilio cannot send messages to unverified numbers but can receive SMS online from any phone numbers without problems.
Visit Twilio
9. Sellaite SMS RECEIVER
The country of the public phone number offered by Sellaite SMS RECEIVER to receive SMS online is Estonia, which is quite different from its competitors. We found that they are quite reliable because they are very quick to take down the phone number from the webpage if it doesn’t work. If you see a phone number available, it is very likely to work unless the SMS gateway can’t send a text message to Estonia.
Sellaite SMS Receiver
Simply click on the available online phone number on the webpage and the messages that the number has received will be shown.
Visit Sellaite SMS RECEIVER
8. Pinger Textfree Web
If you are having trouble signing up with TextNow because you can’t find a working US proxy or VPN, Pinger Textfree Web is a great alternative because anyone can sign up and use it for free. During sign up you will need to provide a valid US zip code (example 01001) which can be found by searching in Google. Then you are presented with a list of US phone numbers that you prefer to use.
Pinger Textfree Web
If you can’t remember the phone number that you’ve chosen, simple click on Options and your phone number is displayed at the first line when your account information pops up.
Visit Pinger Textfree Web
7. TextNow
TextNow is a good option if you’re looking for a reliable and free private phone number that only you have access to the received SMS text messages. You will need to sign up for a free account and you’ll be automatically given a unique phone number. The only common problem that most people get is receiving a generic error message “Something went wrong with your signup. Please try again!” when trying to sign up. To solve this problem, all you need to do is use a US based VPN or proxy to perform a one time sign up and you can login normally using your own IP address.
TextNow
Your personal unique US phone number to receive SMS online is shown at Account Details after logging in.
Visit TextNow
6. Receive-SMS-Online.com
2 weeks ago they had 7 phone numbers with only 1 from the US failing to receive our text message. Now they are showing 8 numbers but unfortunately none of them are working because their secondary domain name sms-verification.com seems to be down which makes it impossible for us to check for received messages. We’ll test and update the results once they are back up.
Receive SMS Online
Visit Receive-SMS-Online.com
5. GRE.im
This site occasionally spurts out warning error messages on top of the webpage. You can safely ignore it and simply scroll down to click on any of the publicly listed phone numbers to view the received text messages.
GRE.im
There used to be 7 phone numbers on this site but it’s been reduced to 4 after 2 weeks. Only the US number failed to work while the Hungary phone number is the most reliable.
Visit GRE.im
4. FreeOnlinePhone.org
If you’ve visited the third site (ReceiveSMSOnline.net) on this list, you’ll find that the design looks very similar except for the difference in color and that is because they are both created by the same company “Cicklow”.
FreeOnlinePhone
2 weeks ago three US phones numbers are listed and none of them worked at that time. They have been replaced with 2 new phone numbers and are currently working.
Visit FreeOnlinePhone.org
3. ReceiveSMSOnline.net
Offers a total of 8 phone numbers with 3 from the UK and 5 from the US. Two weeks ago there were 7 numbers and an additional US number has been added to the list. After testing, 2 US phone numbers (+19282388889 and +19282388892) failed to receive the SMS test message that wesent.
ReceiveSMSOnline.net
Weirdly, the 2 numbers that failed to display the test SMS message sent by us showed that the last messages received were 12 and 21 minutes ago. So if you see a phone number that has recently received a message, it does not necessarily mean that it is fully working at the moment.
Visit ReceiveSMSOnline.net
2. ReceiveFreeSMS.com
ReceiveFreeSMS.com offers 10 public phone numbers from 8 different countries (US, Norway, Sweden, Australia, UK, Hungary, Spain and Lithuania). Although this site seems to be a winner, we did find that they are quite unreliable because 2 weeks ago only 3 out of 10 phone numbers received the test SMS that we sent and today it seems that they’ve fixed some of their numbers with 7 out of 10 working (1 Spain and 2 US did not work).
ReceiveFreeSMS
Only 1 US number was changed compared to the numbers listed on the website two weeks ago. ReceiveFreeSMS.com is the only site that displays the sender’s full phone number while the others hide the last 4 numbers.
Visit ReceiveFreeSMS.com
1. Receive-SMS.com
Receive-SMS.com lists a total of 6 phone numbers, currently 3 from Great Britain and the other 3 from Sweden (previously was 4 Great Britain and 2 Sweden). Any messages sent to the public phone numbers will be instantly displayed on their website after a browser refresh unless you subscribe to their private phone numbers where you get a private inbox to view the messages.
Receive-SMS.com
Receive-SMS.com gets the top spot because all 6 public phone numbers are able to receive and display the test text messages that we sent.
Visit Receive-SMS.com
Final Note: We used our personal OnVerify.com paid account to send out SMS messages to the public phone numbers to test if they are able to receive the text. Even if some of them appear to be working, the phone numbers that are used to receive SMS online can still be easily blocked using TeleSign’s PhoneID that can identify the type of the provided telephone number such as VoiP, fixed land line, mobile and etc.
