dorking

---

dorking is a technique used to find security holes in the configuration and computer code that websites are using.
by using the google search engine and its operators, you can find various information that sites hide.

google has many operators, for example:

• allintext
  searches for occurrences of all the keywords given
  syntax: allintext:"keyword"


• intext
  searches for the occurrences of keywords all at once or one at a time
  syntax: intext:"keyword"


• allinurl
  searches for a URL matching all the keywords in the query
  syntax: allinurl:"keyword"


• inurl
  searches for a URL matching one of the keywords
  syntax: inurl:"keyword"


• allintitle
  searches for occurrences of keywords all at a time
  syntax: allintitle:"keyword"


• intitle
  searches for occurrences of keywords in title all or one
  syntax: intitle:"keyword"


• site
  specifically searches that particular site and lists all the results for that site
  syntax: site:"URL"


• filetype
  searches for a particular filetype mentioned in the query
  syntax: filetype:"pdf"


• link
  searches for external links to pages
  syntax: link:"keyword"


• numrange
  used to locate specific numbers in your searches
  syntax: numrange:321-325


• before/after
  used to search within a particular date range
  syntax: filetype:pdf & (before:2000-01-01 after:2001-01-01)


• allinanchor (and also inanchor)
  this shows sites which have the keyterms in links pointing to them, in order of the most links
  syntax: inanchor:hello


• allinpostauthor (and also inpostauthor)
  exclusive to blog search, this one picks out blog posts that are written by specific individuals
  syntax: allinpostauthor:"keyword"


• related
  list web pages that are "similar" to a specified web page
  syntax: related:URL


• cache
  shows the version of the web page that Google has in its cache
  syntax: cache:URL

google also supports logical operators:

• OR
  syntax: site:levant.neocities.org | site:neocities.org


• AND
  syntax: site:levant.neocities.org & site:neocities.org

including and excluding results.
you can use + or - to include or exclude certain words or urls.

example:

-site:*.neocities.org +site:levant.neocities.org

adding a tilde will tell google to also search for synonyms for a word.

example:

~dorking

you can also use an asterisk as a wildcard.

example:

site:*.neocities.org

you can also write any word in quotation marks and google will search the exact keyword.
example: "hello"

there is a very useful database of many user submitted dorks: ghdb

using some of the commands listed above you can try out various keywords and try to find a bunch of stuff.