ACTIVITY 01: GOOGLE DORKING

Master advanced search operators to uncover hidden intelligence across the web

What is Google Dorking?

Google Dorking (also called Google Hacking) is a technique that uses advanced search operators in Google to find specific information that regular searches miss. Think of it as using "secret commands" to search smarter, not harder.

Instead of typing admin login, you can use inurl:admin intitle:login to find actual admin login pages. These operators help security researchers, penetration testers, and OSINT investigators find publicly exposed information that organizations may not realize is visible.

Quick Start: How to Use This Module

1

Browse the Field Manual below to learn different Google Dork techniques

2

Click the copy button on any example, then paste it into Google and press Enter

3

Complete the Active Mission challenge at the bottom to test your skills

FIELD MANUAL

// Reference Guide

For Beginners: Each card below shows a different search technique. The green text is the search query you copy into Google. Try them one by one to see what each operator does. Don't worry if you don't find results for every query - that's normal!

Exposed Directories

Find publicly accessible directory listings that expose file structures, often revealing sensitive information like backups, logs, or databases.

Operator: intitle: finds pages where the title contains specific words
intitle:"index of" "backup"
intitle:"index of" "database.sql"
intitle:"index of" "password.txt"

Config Leaks

Discover exposed configuration files containing API keys, database credentials, AWS secrets, and environment variables.

Operator: filetype: searches for specific file extensions (pdf, env, xlsx, etc.)
filetype:env "DB_PASSWORD"
filetype:log "API_KEY"
filetype:yml "aws_secret_access_key"

Admin Panels

Locate administrative login pages, dashboards, and control panels across various platforms and CMS systems.

Operator: inurl: finds pages where the URL contains specific words
inurl:admin intitle:login
inurl:"/wp-admin/" "dashboard"
intitle:"Admin Panel" inurl:admincp

Document Hunting

Search for specific document types containing reports, presentations, spreadsheets, or confidential information.

Operator: filetype: + intext: finds documents containing specific words
filetype:pdf "confidential"
filetype:xlsx "salary" OR "budget"
filetype:docx intext:"internal use only"

Login Portals

Identify authentication pages for corporate VPNs, intranets, email systems, and remote access portals.

Operator: OR lets you search for multiple terms (either one matches)
intitle:"VPN Login" OR "Citrix Gateway"
inurl:"/owa/" intitle:"Outlook Web App"
intitle:"Remote Desktop Web Connection"

SQL Errors

Find pages with exposed database errors that may reveal table structure, column names, or vulnerable parameters.

Operator: intext: searches for specific text anywhere on the page
intext:"sql syntax near" | "mysql_fetch"
intext:"Warning: mysql_connect()"
intext:"ORA-" "error" site:gov

Email Lists

Extract email addresses from specific domains or organizations for reconnaissance and social engineering research.

Operator: site: limits search to a specific website or domain
site:linkedin.com "@company.com"
intext:"@gmail.com" filetype:csv
inurl:contacts.txt OR members.xlsx

Camera Feeds

Discover unsecured webcams, IP cameras, and surveillance systems with default credentials or open access.

Operator: inurl: targets specific URL patterns common to camera interfaces
inurl:"/view/index.shtml"
intitle:"Live View / - AXIS"
inurl:":8080" intitle:"Camera Viewer"

ACTIVE MISSION

CLASSIFIED

🎓 The University Stats Challenge

YOUR MISSION: I'm researching Khalifa University and need to find their latest "Facts at a Glance" document. It should be a 6-page PDF on their website. Can you find it and tell me the total number of nationalities represented at the university?

Hint: Use site and filetype operators to search for PDFs on ku.ac.ae containing university facts.

Start Search