bobjoe1267
Reverse Engineer
2
MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1
300 XP
This article is noob friendly. It will give you an understanding of
1. What dorks are
2. How they work
3. How they separate to Google Dorks
4. And how to properly write them
The KEY DIFFERENCE TO OTHER GUIDES is that this article EXPLAINS.
So you probably already know what a dork is and what it is used for. With Dorks you can search the web for websites with this specific text in the URL. They usually look like this
KEYWORD.asp?item=
So for example SQLi Dumper Scrapes the web for URLs with this specific text in the URL. And what does this mean? Websites can get "attacked", or are vulnerable for in this Case SQLi Attacks. So we try to find Websites wich
1. Have databases
2. Are vulnerable to SQLi Attacks
SQLi Dumper will make the most work for us. But we have to give him the right fuel with that he can Work (maybe a Bad Example haha).
So how are dorks built up.
There is first the Keyword. We are looking for Websites of a special genre. So if our Keyword is "fortnite", only URLs with "fortnite" in it will get scraped.
There is as second the Page Format. As the Name says it is the Format of the Page. So for example will the Page Format ".php?" only show up Pages that uses PHP.
As third There are the Page Types. They Indicate what the page is basically about. Die example will be "Product_ID=" about a certain Product. They are most of the time self explaining. Do you think you will find a "Product_ID=" on a fortnite Website? I dont think so. So dont use it with Gaming Keywords but more likely with Shopping Keywords.
Google has a more andvanced function to search for Websites through its own Operators. There is the most, i dont want to say Basic, but the most important one.
Its "inurl:".
On the operator follows a text.
inurl: fortnite
So if you Type that in to Google only Websites with "fortnite" in the URL show up.
Same thing as with dorks. But you can combine this now with other, more specific operators.
There is the
intext:
Operator that indicates that the Text is given in the Text of the Website (I Hope you get what I mean). So if you search for a basic dork, but with the Addition that the site should contain something about "username" you could Target sites that are Login Forms.
inurl:index.php?id= + intext: username
You could also search for login forms by the Keyword, for example
inurl:login.php?id=
But be aware! It will not be the same result as it can only be login.php?id= or index.php?id= in the URL.
So what can you do with that knowledge?
You can go ahead and get some keywords, if you want to crack spotify Accounts you shouldnt use Fortnite Keywords, right?
So lets say the Page should have got "spotify-accounts" as keyword and the whole Website should have a Login Page. And it should be American site. So this would be
inurl: spotify-accounts + intext: login + site: .com
This example also Shows that you dont have to use Page Formats and Page Types. You dont have to. But if you Search for something more specific you can Make use of them.
I will maybe explaining how to use them later.
Why the "Login" you may be asking? Because a Website Website with a Login Panel has most likely a Database ;^)
You should be able to write Basic dorks now. If you have any questions just ask them.
Be sure to check out my sales thread for really HQ Dorks
Operators to use:
intitle:
intext:
source:
site:
info:
link:
Page Formats:
.php?
.php3?
.php4?
phpx?
cat/?
.phtml?
events?
products/?
site/?
.cfm?
contact-us?
blog/?
aspx?
.cfm
.asp?
.cgi?
.aspx?
.flv?
.pdf?
.jsf?
.ashx?
.raw?
.File?
.tss?
.blog?
.html?
.flv?
.pdf?
Page Types:
item_id=
id=
topic=
NewsId=
langid=
article_id=
cid=
code_no=
code=
designer=
framecode=
idproduct=
intCatalogID=
intProdId=
item=
itemID=
maingroup=
misc=
order_id=
p=
pid=
ProdID=
product_id=
product=
productid=
showtopic=
Sku=
storeid=
style_id=
StyleID=
userID=
cartId=
bookid=
idCategory=
PageID
catid=
Store_Id=
card=
action=
cart_id=
iCat=
CatalogID=
UserID=
BookID=
Product_ID=
Service_ID=
itemid=
title=
eid=
model=
prodtype=
shopcd=
item_ID=
Cart=
PartID=
ViewType=
keyword=
Item=
search_id=
Cat=
Action=
command=
&game_type=
&GameID=
group_id=
group=
groupCode=
GameID=
GameKey=
GameName=
gameNo=
gamerblogid=
gamereferral=
gamesearch=
gameType=
game_
PM me at questions
Edited by Waltraud, 05 October 2018 - 07:46 PM.
1. What dorks are
2. How they work
3. How they separate to Google Dorks
4. And how to properly write them
The KEY DIFFERENCE TO OTHER GUIDES is that this article EXPLAINS.
So you probably already know what a dork is and what it is used for. With Dorks you can search the web for websites with this specific text in the URL. They usually look like this
KEYWORD.asp?item=
So for example SQLi Dumper Scrapes the web for URLs with this specific text in the URL. And what does this mean? Websites can get "attacked", or are vulnerable for in this Case SQLi Attacks. So we try to find Websites wich
1. Have databases
2. Are vulnerable to SQLi Attacks
SQLi Dumper will make the most work for us. But we have to give him the right fuel with that he can Work (maybe a Bad Example haha).
So how are dorks built up.
There is first the Keyword. We are looking for Websites of a special genre. So if our Keyword is "fortnite", only URLs with "fortnite" in it will get scraped.
There is as second the Page Format. As the Name says it is the Format of the Page. So for example will the Page Format ".php?" only show up Pages that uses PHP.
As third There are the Page Types. They Indicate what the page is basically about. Die example will be "Product_ID=" about a certain Product. They are most of the time self explaining. Do you think you will find a "Product_ID=" on a fortnite Website? I dont think so. So dont use it with Gaming Keywords but more likely with Shopping Keywords.
Google has a more andvanced function to search for Websites through its own Operators. There is the most, i dont want to say Basic, but the most important one.
Its "inurl:".
On the operator follows a text.
inurl: fortnite
So if you Type that in to Google only Websites with "fortnite" in the URL show up.
Same thing as with dorks. But you can combine this now with other, more specific operators.
There is the
intext:
Operator that indicates that the Text is given in the Text of the Website (I Hope you get what I mean). So if you search for a basic dork, but with the Addition that the site should contain something about "username" you could Target sites that are Login Forms.
inurl:index.php?id= + intext: username
You could also search for login forms by the Keyword, for example
inurl:login.php?id=
But be aware! It will not be the same result as it can only be login.php?id= or index.php?id= in the URL.
So what can you do with that knowledge?
You can go ahead and get some keywords, if you want to crack spotify Accounts you shouldnt use Fortnite Keywords, right?
So lets say the Page should have got "spotify-accounts" as keyword and the whole Website should have a Login Page. And it should be American site. So this would be
inurl: spotify-accounts + intext: login + site: .com
This example also Shows that you dont have to use Page Formats and Page Types. You dont have to. But if you Search for something more specific you can Make use of them.
I will maybe explaining how to use them later.
Why the "Login" you may be asking? Because a Website Website with a Login Panel has most likely a Database ;^)
You should be able to write Basic dorks now. If you have any questions just ask them.
Be sure to check out my sales thread for really HQ Dorks
Operators to use:
intitle:
intext:
source:
site:
info:
link:
Page Formats:
.php?
.php3?
.php4?
phpx?
cat/?
.phtml?
events?
products/?
site/?
.cfm?
contact-us?
blog/?
aspx?
.cfm
.asp?
.cgi?
.aspx?
.flv?
.pdf?
.jsf?
.ashx?
.raw?
.File?
.tss?
.blog?
.html?
.flv?
.pdf?
Page Types:
item_id=
id=
topic=
NewsId=
langid=
article_id=
cid=
code_no=
code=
designer=
framecode=
idproduct=
intCatalogID=
intProdId=
item=
itemID=
maingroup=
misc=
order_id=
p=
pid=
ProdID=
product_id=
product=
productid=
showtopic=
Sku=
storeid=
style_id=
StyleID=
userID=
cartId=
bookid=
idCategory=
PageID
catid=
Store_Id=
card=
action=
cart_id=
iCat=
CatalogID=
UserID=
BookID=
Product_ID=
Service_ID=
itemid=
title=
eid=
model=
prodtype=
shopcd=
item_ID=
Cart=
PartID=
ViewType=
keyword=
Item=
search_id=
Cat=
Action=
command=
&game_type=
&GameID=
group_id=
group=
groupCode=
GameID=
GameKey=
GameName=
gameNo=
gamerblogid=
gamereferral=
gamesearch=
gameType=
game_
PM me at questions
Edited by Waltraud, 05 October 2018 - 07:46 PM.