Search the Google Hacking Database or browse GHDB categories
|2015-05-19||ext:csv intext:"password"||Files containing passwords|
|2015-05-18||inurl:upsstats.cgi?host||Various Online Devices|
|2015-04-30||inurl:ftp inurl:Seagate inurl:Backup inurl:Plus inurl:Drive||Various Online Devices|
|2015-04-28||intext:JSESSIONID OR intext:PHPSESSID inurl:access.log ext:log||Files containing juicy info|
|2015-04-03||intitle:index.of +"Indexed by Apache::Gallery"||Sensitive Directories|
|2015-03-31||intitle:index of /weekly cpbackup||Files containing juicy info|
|2015-03-16||allintext:Copyright Smart PHP Poll. All Rights Reserved. -exploit||Vulnerable Servers|
|2015-03-10||ext:sql intext:"alter user" intext:"identified by"||Files containing passwords|
Google's collection of web sites sharing sensitive directories. The files contained in here will vary from sesitive to uber-secret!
These searches reveal servers with specific vulnerabilities. These are found in a different way than the searches found in the "Vulnerable Files" section.
These pages contain such things as firewall logs, honeypot logs, network information, IDS logs... all sorts of fun stuff!
These files contain usernames, but no passwords... Still, google finding usernames on a web site..
Examples of queries that can reveal online shopping info like customer data, suppliers, orders, creditcard numbers, credit card info, etc
These are login pages for various services. Consider them the front door of a website's more sensitive functions.
These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.