InfoSec Write-ups06 phút
Hacking With Google
Google dorking uses advanced search operators to find specific security-relevant information during penetration tests, bug bounties, and OSINT investigations. Key operators covered include site:, filetype:, inurl:, intitle:, intext:, wildcard (*), minus (-), and exact phrase quotes. Practical use cases include researching CVEs for discovered service versions, enumerating subdomains, finding exposed S3 buckets, and locating admin panels. The Google Hacking Database (GHDB) on Exploit-DB provides a community-maintained repository of ready-to-use dork queries. All techniques are passive and rely on publicly indexed data, but should only be used against authorized targets.