Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Footholds (32)

Examples of queries that can help a hacker gain a foothold into a web server

Sensitive Directories (88)

Google's collection of web sites sharing sensitive directories. The files contained in here will vary from sesitive to uber-secret!

Vulnerable Files (61)

HUNDREDS of vulnerable files that Google can find on websites...

Vulnerable Servers (83)

These searches reveal servers with specific vulnerabilities. These are found in a different way than the searches found in the "Vulnerable Files" section.

Error Messages (77)

Really retarded error messages that say WAY too much!

Network or vulnerability data (63)

These pages contain such things as firewall logs, honeypot logs, network information, IDS logs... all sorts of fun stuff!

Various Online Devices (252)

This category contains things like printers, video cameras, and all sorts of cool things found on the web with Google.

Web Server Detection (73)

These links demonstrate Google's awesome ability to profile web servers..

Files containing usernames (17)

These files contain usernames, but no passwords... Still, google finding usernames on a web site..

Files containing passwords (181)

PASSWORDS, for the LOVE OF GOD!!! Google found PASSWORDS!

Sensitive Online Shopping Info (10)

Examples of queries that can reveal online shopping info like customer data, suppliers, orders, creditcard numbers, credit card info, etc

Files containing juicy info (329)

No usernames or passwords, but interesting stuff none the less.

Pages containing login portals (291)

These are login pages for various services. Consider them the front door of a website's more sensitive functions.

Advisories and Vulnerabilities (1974)

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.