Introduction to dorking
Dorking is the art of understanding and utilizing a search engine to emit the desired
results. If I wanted to find a file on anonfile; I can go on Google and use this search
query, inurl:anonfile.com + Target File
I can find a Tweet with the exact same syntax, and I can repeat this for almost any
targetthat is at public discretion and isn’t banned from Google.
What is a Dork?
A Dork is a search query that a search engine can read and interpret to provide the most precise URLs that correlate to that query.
Why do we use Dorks?
Cracking is, at its simplest form, finding basic, unprotected sites, compromising its security measures or lack of; exporting information of which is desired and then use them for other purposes.
The Golden Rules of Google Searching
Before we discuss Google searching, we should understand some of the basic ground rules:
1st Rule :
- Google queries are not case sensitive – Google doesn’t care if you type your query in lowercase letters (hackers), uppercase (HACKERS), camel case (hAcKeR), or psycho-case (haCKeR)—the word is always regarded the same way. This is especially important when you’re searching things like source code listings, when the case of the term carries a great deal of meaning for the programmer.The one notable exception is the word or. When used as the Boolean operator, or must be written in uppercase, as OR.
2nd Rule :
- Google wildcards – Google’s concept of wildcards is not the same as a programmer’s concept of wildcards. Most consider wildcards to be either a symbolic representation of any single letter (UNIX fans may think of the question mark) or any series of letters represented by an asterisk.This type of technique is called stemming. Google’s wildcard, the asterisk (*), represents nothing more than a single word in a search phrase. Using an asterisk at the beginning or end of a word will not provide you any more hits than using the word by itself.
3rd Rule :
- Google reserves the right to ignore you – Google ignores certain common words, characters, and single digits in a search.These are sometimes called stop words. According to Google’s basic search document (www.google.com/help/basics.html), these words include where and how, However, Google does seem to include those words in a search. For example, a search for WHERE 1=1 returns less results than a search for 1=1.This is an indication that the WHERE is being included in the search. A search for where pig returns significantly less results than a simple search for pig, again an indication that Google does in fact include words like how and where. Sometimes Google will silently ignore these stop words. For example, a search for HOW 1 = WHERE 4 returns the same number of results as a query for 1 = WHERE 4.This seems to indicate that the word HOW is irrelevant to the search results, and that Google silently ignored the word.There are no obvious rules for word exclusion, but sometimes when Google ignores a search term, a notification will appear on the results page just below the query box.
- One way to force Google into using common words is to include them in quotes. Doing so submits the search as a phrase, and results will include all the words in the term, regardless of how common they may be.You can also precede the term with a + sign, as in the query +and. Submitted without the quotes, taking care not to put a space between the + and the word and, this search returns nearly five billion results.
4th Rule :
- 32-word limit Google limits searches to 32 words, which is up from the previous limit of ten words.This includes search terms as well as advanced operators, which we’ll discuss in a moment. While this is sufficient for most users, there are ways to get beyond that limit. One way is to replace some terms with the wildcard character (*). Google does not count the wildcard character as a search term, allowing you to extend your searches quite a bit. Consider a query for the wording of the beginning of the U.S. Constitution:
we the people of the united states in order to form a more perfect union establish justice
- This search term is seventeen words long. If we replace some of the words with the asterisk (the wildcard character) and submit it as
"we * people * * united states * order * form * more perfect * establish *"
including the quotes, Google sees this as a nine-word query (with eight uncounted wildcard characters). We could extend our search even farther, by two more real words and just about any number of wildcards.
Words key to finding results of a certain type. Every single time you go on Google and search your query. You are using a keyword..
The logic behind our keywords is we want to use the same words people are using to search for the same thing we want to get combos for.
Now as we all have experienced, putting one word into google emits millions of results.
For Dorking, this is not targeted enough nor efficient. So, we usually use a target keywords (Amazon, Netflix, Hulu, Steam) and an extension keyword (events, new shows, new games, price)
Our extension keywords or secondary keywords will be explained further down the track. Right now, all you need to know is, try make things detailed, or else results that are undesired will appear, corrupting the efficiency of cracking
Page Extensions can occur in URL’s after the naming of a File Page (as seen below). We have our misconceived page types, which are actually just inbuilt with the domain, which come with the Domain on purchase by the site holder, or else the site would gono where.
And so on so forth. (gov, com, org, shop, online, xyz, waytomuchtobehere)
Files Page Types and Page Extensions
File Pages are the
And for some sites, they also include page types, (php, asp, aspx, cfm, etc) Which are known as the page extensions.
These are what we call our Page Extensions, completely ignoring the domain types because it’s completely irrelevant to our Dorks.
Why is THIS IMPORTANT ?
When Dorking, I’ve experienced almost all sites with page parameters in the URL also have page type. Becoming a useful asset to restrict unlikely injectable page parameters extensions to more likely to succeed ones.
We primarily use:
This is because these are most commonly used languages to connect to the database through a page, like shown in that form article above.
Google searching is a process, the goal of which is to find information about a topic. The process begins with a basic search, which is modified in a variety of ways until only the
pages of relevant information are returned. Google’s ranking technology helps this process along by placing the highest-ranking pages on the first results page.The details of this
ranking system are complex and somewhat speculative, but suffice it to say that for our purposes Google rarely gives us exactly what we need following a single search. The simplest Google query consists of a single word or a combination of individual words typed into the search interface. Some basic word searches could include:
■ FBI hacker Mitnick
■ mad hacker dpak
Slightly more complex than a word search is a phrase search. A phrase is a group of words enclosed in double-quote marks. When Google encounters a phrase, it searches for all words
in the phrase, in the exact order you provide them. Google does not exclude common words found in a phrase. Phrase searches can include
■ “Google hacker”
■ “adult humor”
■ “Carolina gets pwnt”
Phrase and word searches can be combined and used with advanced operators, as we will see in the next chapter.