Search like a pro Hacker using Google Dorking | Recon tool overview | Custom Dorks Query Explained
Описание
Hey floks,
welcome back, in this video let talk about “googleDorking,” also known as “Google hacking”, is a technique used by newsrooms, investigative organisations, security auditors as well as tech savvy criminals to query various search engines for information hidden on public websites and vulnerabilities exposed by public servers. Dorking is a way of using search engines to their full capacity to penetrate web-based services to depths that are not necessarily visible at first.
All you need to carry out a googleDork is a computer, an internet connection and knowledge of the appropriate search syntax.
––––––––––––––––––––––––––––––
Simple Explanations ? :
SIMPLE DORKING:
Vijay, Ajith in search will get you the result of Indian actor to avoid this result in my case I want to see the Vijay who's not an actor and he lives in Chennai
Search query = ["vijay" -actor -"Chennai"] //"Seachkey" -removeresults ="addthisresults"
HTTP/HTTPS DOMAIN:
If you want to search for all the http/https domain with specific extensions
Search query = [site:.in inurl:http] //site:.extention inurl:request
PASSWORD/LOG FILE DORKING:
If you want to find the log/password files or any file before or after a specific time use this dorking query
Search query = [allintext:password filetype:txt after:2020] //allintext:filename filetype:filetype after:year
TOOL WHAT I USE:
So am assuming you know the basics of google dorking try this tool called pagodo (Passive GOogle Dorking) The goal of pagodo project was to develop a passive Google dork script to collect potentially vulnerable web pages and applications on the Internet. Do check the video on my channel for the setup skip to 4:10
------------------------------------------------------------------------------------------
Steps to use the tool:
#inside terminal type [git clone https://github.com/opsdisk/pagodo.git]
#cd pagodo/
#python3 -m pip install -r requirements.txt //install the requirements to pagodo
#cd dors/
#ls //to list the dorking files
#cat filename //to get the command keyword query for google dorking
#python3 pagodo.py -d domain -g dorks/files_containing_juicy_info.dorks -1 30 -s -e 35.0 -j 1.0 //to get a big reconn data run it overnigh to see the report
#cat resultfile //to get the outfile
––––––––––––––––––––––––––––––
Links ? :
Gihub for steps:
https://github.com/QMRonline/GoogleDorking/blob/main/instruction
Github for Explanation :
https://github.com/QMRonline/GoogleDorking
––––––––––––––––––––––––––––––
Time Stamps ⌛ :
0:41 What are you going to see?
0:49 Intro video
2:00 Simple Dorking
3:50 Advance Dorking
8:21 Tool Demo
8:37 Ending
––––––––––––––––––––––––––––––
How to chat with me ? :
Discord : https://discord.gg/MtQdFygumr
Instagram : https://www.instagram.com/qmarkonline/
Website : https://qmarkonline.com //coming-soon
––––––––––––––––––––––––––––––
Future Plans ✔️ :
*Try hack me
*Hack the box
*Bug bounty training
*CTF time
*Ethical hacking
*Exploring Dark web
??looking forward for ideas, leave a comment on what else you'll be interested on ??
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
About me ?️?️ :
? Hi, I’m @QMark
? I’m interested in tech and exploring them.
? We have a growing community of Indian hackers join us.
?️ I’m looking to collaborate with people like me .
? To reach me it's very easy give DM @qmarkonline //that's my official insta page in which am active all day
? Feel free to join on TG https://t.me/qmarkonline
We teach and simulate the practical hacking scenarios, are you a beginner in hacking? Start here! Onboarding tutorial and super-easy Hacking methods with write-ups to get you up and running. Qmark consist of people, and all people are different. Different strengths, weaknesses, or even time zones, let it be testing for a web application or giving practical knowledge about fishing attacks to your employees
we got you covered !
From easy to the most difficult attacks, our virtual training hacking cover all skill levels. New content is added every week on YouTube and other social media platform, covering the latest exploits and vulnerabilities.
Hands-On Penetration Testing Instead of focusing on theoretical learning, we believe in effective, hands-on live training where you learn by doing.
––––––––––––––––––––––––––––––
Tags #️⃣ :
#recon #GoogleDorks #Dorking #GoogleHacking #Kalilinus #EthicalHacking
––––––––––––––––––––––––––––––
Music Credits ? :
Song: Birthday — LiQWYD
Music promoted by Free Creators Music
Video Link: https://youtu.be/O1nHwyigtmM
––––––––––––––––––––––––––––––
Рекомендуемые видео
