Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Files containing juicy info

No usernames or passwords, but interesting stuff none the less.

DATE Title Summary
2011-05-03 allinurl:http://www.google.co.in/latitude/apps/bad... Site: google.com/latitude - This is a free application where you can track your PC, laptop and...
2011-02-24 intext:db_pass inurl:settings.ini Submitter: Bastich mysql.nimbit.com dashboard settings...
2011-02-19 inurl:app/etc/local.xml Magento local.xml sensitive information disclosure Author: Rambaud Pierre...
2010-12-13 allinurl:/xampp/security.php XAMPP Security Setting Page Information Disclosure. Author: modpr0be ...
2010-12-10 inurl:phpinfo.php Locates phpinfo files. A phpinfo file Outputs a large amount of information about the current s...
2010-12-07 inurl:"config.php.new" +vbulletin locates the default configuration file for vBulletin (/includes/config.php.new) Author: MaXe...
2010-12-07 inurl:configuration.php-dist locates the default configuration file of JOOMLA Author: ScOrPiOn ...
2010-11-25 filetype: log inurl:"access.log" +intext... Match some apache access.log files. Author: susmab...
2010-11-10 "Cisco PIX Security Appliance Software Versio... Google search for Pix Authorization Keys Author: fdisk...
2010-11-10 filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS This search locates private SSHHostkeys. Author: loganWHD...
2006-10-02 intitle:"AppServ Open Project *" "A... Often includes phpinfo and unsecured links to phpmyadmin....
2006-03-21 intitle:"LOGREP - Log file reporting system&q... Logrep is an open source log file Extraction and Reporting System by ITeF!x. This dork finds t...
2006-03-18 (intitle:"PRTG Traffic Grapher" inurl:&q... PRTG Traffic Grapher is Windows software for monitoring and classifying bandwidth usage. It pro...
2006-03-18 intitle:"Joomla - Web Installer" Joomla! is a Content Management System (CMS) created by the same team that brought the Mambo CM...
2006-02-22 "not for public release" -.edu -.gov -.m... if you search through lots of these then you find some really juicy things, there files from po...
2006-01-16 intext:ViewCVS inurl:Settings.php CVs is a software used to keep track of changes to websites. You can review all updates and pre...
2006-01-16 inurl:build.err General build error file. Can tell what modules are installed, the OS the compiler the language...
2005-12-22 inurl:/cgi-bin/pass.txt Passwords...
2005-12-19 (intitle:WebStatistica inurl:main.php) | (intitle:... WebStatistica provides detailed statistics about a web page. Normally you would have to login ...
2005-11-24 inurl:wp-mail.php + "There doesn't seem to b... This is the WordPress script handling Post-By-Email functionality, the search is focussed on th...
2005-11-16 intitle:"Welcome to F-Secure Policy Manager S... An attacker may want to know about the antivirus software running. The description says he can...
2005-10-22 intitle:Bookmarks inurl:bookmarks.html "Bookm... AFAIK are the bookmarks of Firefox, Netscape and Mozilla stored in bookmarks.html. It is often ...
2005-10-04 intitle:"urchin (5|3|admin)" ext:cgi Gain access to Urchin analysis reports....
2005-09-08 rdbqds -site:.edu -site:.mil -site:.gov Ceasar encryption is a rather simple encryption. You simply shift letters up or down across the...
2005-08-23 contacts ext:wml Forget Bluetooth Hacking! You'll be amazed, at how many people sync their Cell Phones to the sa...
2005-08-12 intitle:"curriculum vitae" filetype:doc Hello. 1. It reveals personal datas, often private addresses, phone numbers, e-mails, how many ...
2005-08-16 intitle:"admin panel" +"Powered by ... This finds all versions of RedKernel Referer Tracker(stats page) it just gives out some nice in...
2005-07-30 ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw ... Although this search is a bit broken (the file extensions don't always work), it reveals intere...
2005-07-24 site:www.mailinator.com inurl:ShowMail.do Mailinator.com allows people to use temporary email boxes. Read the site, I won't explain here....
2005-07-21 allinurl:cdkey.txt cdkeys...
2005-07-08 filetype:PS ps PS is for "postscript"...which basically means you get the high quality press data fo...
2005-06-21 filetype:QBW qbw Quickbooks is software to manage your business's financials. Invoicing, banking, payroll, etc, ...
2005-06-07 inurl:XcCDONTS.asp This query reveals an .asp script which can often be used to send anonymous emails from fake se...
2005-04-27 ext:DCA DCA IBM DisplayWrite Document Content Architecture Text File...
2005-04-27 ext:ccm ccm -catacomb Lotus cc:Mail Mailbox file...
2005-04-27 ext:CDX CDX Visual FoxPro database index...
2005-04-27 ext:DBF DBF Dbase DAtabase file. Can contain sensitive data like any other database....
2005-04-27 ext:jbf jbf There is a full path disclosure in .jbf files (paint shop pro), which by itself is not a vulner...
2005-04-26 ext:plist filetype:plist inurl:bookmarks.plist These Safari bookmarks that might show very interesting info about a user's surfing habits...
2005-04-26 ext:ics ics ICalender Fileder that can contain a lot of useful information about a possible target....