课程: Deep Dive into Open-Source Intelligence

Google hacking or dorking for OSINT

课程: Deep Dive into Open-Source Intelligence

开始一个月试用

Google hacking or dorking for OSINT

- The information security term Google Dorking or Google Hacking, has been around for a while and involves using advanced operators in search engines such as Google, to find specific OSINT information. One of my favorite examples of Google Hacking is using the search operator's site and filetype, followed by a colon and then the URL and file extension. Say you wanted to locate all the PDF or Microsoft Word documents indexed on the target's website. The Google search would look something like this. site:linkedin.com.filetype.PDF or, site:linkedin.com.filetype:docx. There are many websites such as the Google Hacking database, that provide an index of search queries used to find publicly available information. You'll find queries that will return things like files containing usernames, sensitive directories, and vulnerable files. And some of the queries listed on the Google Hacking Database truly are masterpieces. For those of us who don't spend all day crafting advanced search queries, we can either modify some of the queries we find elsewhere, or craft a simple query using search operators. Some of the more popular search operators for OSINT professionals are site, which restricts the search results to just the site or domain you specify. Alternatively, you could use the minus sign in front of site, to exclude the site or domain from your search results. An example of when you might want to use the site operator is when you want to find all index pages for your target website. Intitle will restrict Google's search results to just pages that have your keyword in the title of the web page. You might use the intitle operator when you're looking for news articles containing your target organization's name. You may want to use the intitle operator in combination with the minus site operator to exclude any pages of your target's organization. If you prefer to find results for your keyword in the body of the page instead of just the title, you can use the intext search operator. This is helpful when you're doing a broad search such as any references to your target organization's CEO. You might search for the CEO's name and the name of the company in the text of any page or article on the internet. Again, there are a lot of search operators our there, so I've put a few of the common ones in the course notes, along with a link to the Google Hacking Database.

内容