Beginner’s Guide to Google Dorks

What is Google Dorking? 

Google Dorking, also referred to as Google Hacking, is a technique often utilized by ethical hackers and cybersecurity experts. It enables them to retrieve sensitive information from websites or web pages using Google’s search engine.

This method involves several operations that can be performed within Google, including filetype:, Info:, intext:, cache:, and others. Each of these operations will be detailed in the following section.

How Does Google Dorking Work 

Google Dorking enhances the precision of online searches by employing specialized commands on Google known as operators. These operators enable users to uncover information that might be challenging to find through conventional searches.

For instance, imagine you’re a cybersecurity expert tasked with identifying publicly accessible directories that could potentially contain sensitive data. By utilizing the ‘filetype:’ operator in Google Search, you can specify the type of files you’re seeking.

This search could reveal open directories on web servers inadvertently exposing sensitive files such as confidential documents, PDFs, database dumps, log files, and backup files.

As a cybersecurity professional, this knowledge empowers you to notify affected parties about the exposure and recommend measures to secure sensitive data. 

Diverse Techniques in Google Dorking  

In this section, we will examine different examples of Google Dorking. Below is a table listing various operations and their applications:

filetype: Enables you to define the file type you are seeking in the Google Search Engine.

intitle: Deliver results based on a specific word or phrase found in the title.

-site: Exclude results originating from a particular site or domain in your search.

OR & AND operator: Utilized to connect multiple search terms and adjust search parameters.

cache:Cache displays the cache version of the page as it tells when the web crawler has crawled the webpage.

Examples 

filetype: 

The “filetype” operator is a search tool that lets you specify the file type you want to find. It’s handy for locating specific documents, media files, or other content on the internet. For instance, if you want to find all PDF files on the Intellipaat website, here’s how you would do it:

Syntax: filetype: pdf example.com 

intitle:  

The intitle operator is employed to ensure that the search results include a specific word or phrase within the title.

Syntax:  intitle:index of “keyword”

-site: 

The -site: operator in Google Dorking allows you to filter out results from a particular site or domain in your search. This is commonly used by cybersecurity professionals seeking specific information while excluding irrelevant or untrusted domains, ensuring search results are focused on more reliable sources.

Syntax: keyword -site:example.com

OR & AND operator:

In search engine queries, the “OR” and “AND” operators are utilized to link multiple search terms and adjust search parameters.

OR operator: The OR operator is used to locate pages that include either one keyword or another.

Syntax: “keyword” OR “keyword”

AND operator: The AND operator is used to locate pages that include both specified keywords.

Syntax: “keyword” OR “keyword”

Cache: 

The ‘cache:’ operator in Google Dorking enables users to view a cached version of a webpage, showing how it appeared during Google’s last indexing. This feature is useful in cases where content may have been changed or removed from the current live version of a website, offering a snapshot of the page as it existed at a particular time.

Syntax: cache:example.com

Different Dorks Category:

Scope-restricting dorks: 

Targeted dorks help narrow down the range of websites and types of data you’re searching for. You can enhance their specificity by adding extra query parameters, similar to how you use ‘filetype:’. 

Note that when aiming to limit search results to an exact phrase, it’s necessary to enclose the phrase in double quotation marks.

Informational dorks:

Informational dorks define the type of information sought and are most effective without additional query items.

Text dorks: 

Text dorks are useful when you’re looking for pages containing specific text strings.

Search-refining operators: 

Here are operators that assist in refining your Google search:

By far the best resource to go to is Exploit-DB’s Google Hacking Database (GDHB).

Google Dorking Tools: 

Google Hacking Database (GHDB):

The GHDB, or Google Hacking Database, comprises Google Dorking queries and examples developed and curated by the cybersecurity community. It functions as a resource for discovering information on the web, such as vulnerabilities and exposed data. Visit https://www.exploit-db.com/google-hacking-database to explore it.

Google Dorks Tool:

There exists a variety of open-source and commercial tools designed to facilitate Google Dorking. These tools typically offer intuitive interfaces for creating and running Dorking queries. Examples include tools like “DorkMe” and “Google Hacking Database Scraper.

Shodan:

While not primarily intended for Google Dorking, Shodan is a specialized search engine focused on locating internet-connected devices and services. It can uncover open ports, exposed services, and vulnerable devices, offering unique search operators for pinpointing specific information.

Custom Scripts and Automation:

Certain security professionals and researchers create custom scripts or automation tools to perform Google Dorking searches customized to their requirements. These tools can streamline the process of identifying vulnerabilities and exposed data.

Online Vulnerability Scanners:

Some web vulnerability scanners integrate Google Dorking capabilities into their scanning processes. These scanners can automatically employ Dorking queries to detect potential security vulnerabilities in websites and web applications.

Penetration Testing Tools:

Several penetration testing frameworks, like Metasploit and Burp Suite, offer modules or extensions that enable security professionals to incorporate Google Dorking into their assessments.