You are previewing Google Hacking for Penetration Testers, 3rd Edition.
O'Reilly logo
Google Hacking for Penetration Testers, 3rd Edition

Book Description

Google is the most popular search engine ever created, but Google’s search capabilities are so powerful, they sometimes discover content that no one ever intended to be publicly available on the Web, including social security numbers, credit card numbers, trade secrets, and federally classified documents. Google Hacking for Penetration Testers, Third Edition, shows you how security professionals and system administratord manipulate Google to find this sensitive information and "self-police" their own organizations.

You will learn how Google Maps and Google Earth provide pinpoint military accuracy, see how bad guys can manipulate Google to create super worms, and see how they can "mash up" Google with Facebook, LinkedIn, and more for passive reconnaissance.

This third edition includes completely updated content throughout and all new hacks such as Google scripting and using Google hacking with other search engines and APIs. Noted author Johnny Long, founder of Hackers for Charity, gives you all the tools you need to conduct the ultimate open source reconnaissance and penetration testing.



  • Third edition of the seminal work on Google hacking
  • Google hacking continues to be a critical phase of reconnaissance in penetration testing and Open Source Intelligence (OSINT)
  • Features cool new hacks such as finding reports generated by security scanners and back-up files, finding sensitive info in WordPress and SSH configuration, and all new chapters on scripting Google hacks for better searches as well as using Google hacking with other search engines and APIs

Table of Contents

  1. Cover
  2. Title page
  3. Table of Contents
  4. Copyright
  5. Chapter 1: Google Search Basics
    1. Abstract
    2. Introduction
    3. Exploring Google’s web-based interface
    4. Summary
    5. Fast track solutions
  6. Chapter 2: Advanced Operators
    1. Abstract
    2. Introduction
    3. Operator syntax
    4. Troubleshooting your syntax
    5. Introducing Google’s advanced operators
    6. “<span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Intitle</span>&#8221; and &#8220;” and “<span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">allintitle</span>&#8221;: search within the title of a page”: search within the title of a page
    7. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Allintext</span>: locate a string within the text of a page: locate a string within the text of a page
    8. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Inurl</span> and and <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">allinurl</span>: finding text in a URL: finding text in a URL
    9. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Site</span>: narrow search to specific sites: narrow search to specific sites
    10. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Filetype</span>: search for files of a specific type: search for files of a specific type
    11. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Link</span>: search for links to a page: search for links to a page
    12. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Inanchor</span>: locate text within link text: locate text within link text
    13. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Cache</span>: show the cached version of a page: show the cached version of a page
    14. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Numrange</span>: search for a number: search for a number
    15. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Daterange</span>: search for pages published within a certain date range: search for pages published within a certain date range
    16. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Info</span>: show Google&#8217;s summary information: show Google’s summary information
    17. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Related</span>: show related sites: show related sites
    18. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Stocks</span>: search for stock information: search for stock information
    19. <span xmlns="http://www.w3.org/1999/xhtml" xmlns:epub="http://www.idpf.org/2007/ops" class="italic">Define</span>: show the definition of a term: show the definition of a term
    20. Colliding operators and bad search-fu
    21. Summary
    22. Fast track solutions
    23. Links to sites
  7. Chapter 3: Google Hacking Basics
    1. Abstract
    2. Introduction
    3. Anonymity with caches
    4. Directory listings
    5. Locating directory listings
    6. Finding specific directories
    7. Finding specific files
    8. Server versioning
    9. Going out on a limb: traversal techniques
    10. Summary
    11. Fast track solutions
  8. Chapter 4: Document Grinding and Database Digging
    1. Abstract
    2. Introduction
    3. Configuration files
    4. Locating files
    5. Log files
    6. Office documents
    7. Database digging
    8. Login portals
    9. Support files
    10. Error messages
    11. Database dumps
    12. Actual database files
    13. Automated grinding
    14. Summary
    15. Fast track solutions
  9. Chapter 5: Google’s Part in an Information Collection Framework
    1. Abstract
    2. Introduction
    3. The principles of automating searches
    4. The original search term
    5. Expanding search terms
    6. Using “special” operators
    7. Getting the data from the source
    8. Scraping it yourself: requesting and receiving responses
    9. Scraping it yourself: the butcher shop
    10. Using other search engines
    11. Parsing the data
    12. Domains and subdomains
    13. Telephone numbers
    14. Postprocessing
    15. Collecting search terms
    16. Summary
  10. Chapter 6: Locating Exploits and Finding Targets
    1. Abstract
    2. Introduction
    3. Locating exploit code
    4. Locating exploits via common code strings
    5. Locating vulnerable targets
    6. Locating targets via source code
    7. Summary
  11. Chapter 7: Ten Simple Security Searches That Work
    1. Abstract
    2. Introduction
    3. site
    4. intitle:index.of
    5. error | warning
    6. login | logon
    7. username | userid | employee.ID \ “your username is”
    8. password | passcode | “your password is”
    9. admin | administrator
    10. –ext:html –ext:htm –ext:shtml –ext:asp –ext:php
    11. inurl:temp | inurl:tmp | inurl:backup | inurl.bak
    12. intranet | help.desk
    13. Summary
  12. Chapter 8: Tracking Down Web Servers, Login Portals, and Network Hardware
    1. Abstract
    2. Introduction
    3. Locating and profiling Web servers
    4. Locating login portals
    5. Using and locating various Web utilities
    6. Targeting Web-enabled network devices
    7. Locating network reports
    8. Locating network hardware
    9. Summary
  13. Chapter 9: Usernames, Passwords, and Secret Stuff, Oh My!
    1. Abstract
    2. Introduction
    3. Searching for usernames
    4. Searching for passwords
    5. Searching for credit card numbers, social security numbers, and more
    6. Social security numbers
    7. Personal financial data
    8. Searching for other juicy info
    9. Summary
  14. Chapter 10: Hacking Google Services
    1. Abstract
    2. Calendar
    3. Signaling alerts
    4. Google Co-op
    5. Google’s Custom Search Engine
  15. Chapter 11: Hacking Google Showcase
    1. Abstract
    2. Introduction
    3. Geek stuff
    4. Open network devices
    5. Open applications
    6. Cameras
    7. Telco gear
    8. Power
    9. Sensitive info
    10. Summary
  16. Chapter 12: Protecting Yourself from Google Hackers
    1. Abstract
    2. Introduction
    3. A Good Solid Security Policy
    4. Web server safeguards
    5. Software default settings and programs
    6. Hacking your own site
    7. Wikto
    8. Advance dork
    9. Getting help from Google
    10. Summary
    11. Fast track solutions
    12. Links to sites
  17. Subject Index