Google Hacking Database 6

Network or vulnerability data 2

These pages contain such things as firewall logs, honeypot logs, network information, IDS logs


inurl:portscan.php "from Port"|"Port Range"
inurl:/adm-cfgedit.php
inurl:webutil.pl
inurl:statrep.nsf -gov
inurl:/cgi-bin/finger? "In real life"
inurl:/cgi-bin/finger? Enter (account|host|user|username)
filetype:php inurl:nqt intext:"Network Query Tool"
inurl:"map.asp?" intitle:"WhatsUp Gold"
ext:cgi intext:"nrg-" " This web page was created on "
((inurl:ifgraph "Page generated at") OR ("This page was built using ifgraph"))
inurl:"/catalog.nsf" intitle:catalog
"Powered by phpOpenTracker" Statistics
site:netcraft.com intitle:That.Site.Running Apache
"this proxy is working fine!" "enter *" "URL***" * visit
"apricot - admin" 00h
"by Reimar Hoven. All Rights Reserved. Disclaimer" | inurl:"log/logdb.dta"
intitle:"Microsoft Site Server Analysis"
Analysis Console for Incident Databases
Looking Glass
"Version Info" "Boot Version" "Internet Settings"
intitle:"ADSL Configuration page"
filetype:vsd vsd network -samples -examples
filetype:pdf "Assessment Report" nessus
inurl:phpSysInfo/ "created by phpsysinfo"
"SnortSnarf alert page"
"Network Host Assessment Report" "Internet Scanner"
"This report lists" "identified by Internet Scanner"

intitle:"Nessus Scan Report" "This file was generated by Nessus"

Pages containing login portals

These are login pages for various services. Consider them the front door of a website's more sen- sitive functions.


inurl:src/login.php
inurl:/dana-na/auth/
"Remote Supervisor Adapter II" inurl:userlogin_logo.ssi
||Powered by [ClipBucket 2.0.91]
intitle:ARI "Phone System Administrator"
intitle:"AdventNet ManageEngine ServiceDesk Plus" intext:"Remember Me"
inurl:"/?pagename=CustomerLogin"
inurl:"/?pagename=AdministratorLogin"
inurl:+:8443/login.php3
intitle:"Login to @Mail" (ext:pl | inurl:"index") -dwaffleman
"SurgeMAIL" inurl:/cgi/user.cgi ext:cgi
intitle:Ampache intitle:"love of music" password | login | "Remember Me." -welcome
FlashChat v4.5.7
intitle:"eXist Database Administration" -demo
(intitle:"WmSC e-Cart Administration")|(intitle:"WebMyStyle e-Cart Administration")
(intitle:"Please login - Forums powered by UBB.threads")|(inurl:login.php "ubb")
intitle:"SHOUTcast Administrator" inurl:admin.cgi
intitle:IMP inurl:imp/index.php3
intitle:"TWIG Login"
"SquirrelMail version" "By the SquirrelMail Development Team"
(intitle:"rymo Login")|(intext:"Welcome to rymo") -family
inurl:"/slxweb.dll/external?name=(custportal|webticketcust)"
intitle:"Employee Intranet Login"
inurl:"php121login.php"
Please enter a valid password! inurl:polladmin
intitle:"EZPartner" -netpond
intitle:"Login to @Mail" (ext:pl | inurl:"index") -dwaffleman
"Web-Based Management" "Please input password to login" -inurl:johnny.ihackstuff.com
inurl:2000 intitle:RemotelyAnywhere -site:realvnc.comg
inurl:"/admin/configuration. php?" Mystore
inurl:ids5web
"Powered by Midmart Messageboard" "Administrator Login"
intitle:Ovislink inurl:private/login
"intitle:3300 Integrated Communications Platform" inurl:main.htm
"bp blog admin" intitle:login | intitle:admin -site:johnny.ihackstuff.com
"Emergisoft web applications are a part of our"
intitle:"Admin login" "Web Site Administration" "Copyright"
"site info for" "Enter Admin Password"
inurl:webvpn.html "login" "Please enter your"
"This is a restricted Access Server" "Javascript Not Enabled!"|"Messenger Express" -edu -ac
intitle:"Merak Mail Server Web Administration" -ihackstuff.com
"Powered by Merak Mail Server Software" -.gov -.mil -.edu -site:merakmailserver.com -johnny.i- hackstuff
"iCONECT 4.1 :: Login"
intitle:"Novell Web Services" "GroupWise" -inurl:"doc/11924" -.mil -.edu -.gov -filetype:pdf
intitle:"*- HP WBEM Login" | "You are being prompted to provide login account information for *" | "Please provide the information requested and press
intitle:"EXTRANET login" -.edu -.mil -.gov -johnny.ihackstuff
intitle:"EXTRANET * - Identification"
intitle:"OnLine Recruitment Program - Login" -johnny.ihackstuff
intitle:"Docutek ERes - Admin Login" -edu
inurl:ocw_login_username
intitle:"iDevAffiliate - admin" -demo
intitle:"Supero Doctor III" -inurl:supermicro
"Please login with admin pass" -"leak" -sourceforge
intitle:"Admin Login" "admin login" "blogware"
intitle:"Login Forum Powered By AnyBoard" intitle:"If you are a new user:" intext:"Forum Powered By AnyBoard" inurl:gochat -edu
intitle:"Login to the forums - @www.aimoo.com" inurl:login.cfm?id=
intitle:"i-secure v1.1" -edu
inurl:/modcp/ intext:Moderator+vBulletin
intitle:"PHProjekt - login" login password
"login prompt" inurl:GM.cgi
"Powered by Monster Top List" MTL numrange:200-
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE 5.5" -mambo -johnny.ihackstuff
"Please authenticate yourself to get access to the management interface"
"You have requested to access the management functions" -.edu
intitle:"web-cyradm"|"by Luc de Louw" "This is only for authorized users" -tar.gz -site:web-cyradm. org -johnny.ihackstuff
intext:"Master Account" "Domain Name" "Password" inurl:/cgi-bin/qmailadmin
intitle:"Content Management System" "user name"|"password"|"admin" "Microsoft IE 5.5" -mambo -johnny.ihackstuff
inurl:csCreatePro.cgi