Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Files containing juicy info

No usernames or passwords, but interesting stuff none the less.

DATE Title Summary
2011-07-26 filetype:pem "Microsoft" Microsoft private keys, frequently used for servers with UserID on the same page. -- Sha...
2011-07-26 inurl:server-info intitle:"Server Information... Juicy information about the apache server installation in the website. -- *Regards, Fady ...
2011-07-18 inurl:/push/ .pem apns -"push notifications&q... iphone apple push notification system private keys, frequently unencrypted, frequently with De...
2011-07-18 site:stashbox.org cv Or resume OR curriculum vitae... Searches StashBox for publicly avaliable PDF's or .doc files containing information used in a...
2011-07-18 site:mediafire.com cv Or resume OR curriculum vita... Searches Mediafire for publicly avaliable PDF's containing information used in a CV/Resume/Cur...
2011-07-18 site:docs.google.com intitle:(cv Or resume OR curr... Searches GoogleDocs for publicly avaliable PDF's containing information used in a CV/Resume/Cu...
2011-07-01 site:dl.dropbox.com filetype:pdf cv OR curriculum ... Searches Dropbox for publicly avaliable PDF's containing information used in a CV/Resume/Curri...
2011-05-26 inurl:sarg inurl:siteuser.html Submitter: pipefish Squid User Access Reports that show users' browsing history t...
2011-05-03 filetype:xls + password + inurl:.com The filetype:xls never changes What is inbtween then + sings can be what ever you are looking ...
2011-05-03 allinurl:http://www.google.co.in/latitude/apps/bad... Site: google.com/latitude - This is a free application where you can track your PC, laptop and...
2011-02-24 intext:db_pass inurl:settings.ini Submitter: Bastich mysql.nimbit.com dashboard settings...
2011-02-19 inurl:app/etc/local.xml Magento local.xml sensitive information disclosure Author: Rambaud Pierre...
2010-12-13 allinurl:/xampp/security.php XAMPP Security Setting Page Information Disclosure. Author: modpr0be ...
2010-12-10 inurl:phpinfo.php Locates phpinfo files. A phpinfo file Outputs a large amount of information about the current s...
2010-12-07 inurl:"config.php.new" +vbulletin locates the default configuration file for vBulletin (/includes/config.php.new) Author: MaXe...
2010-12-07 inurl:configuration.php-dist locates the default configuration file of JOOMLA Author: ScOrPiOn ...
2010-11-25 filetype: log inurl:"access.log" +intext... Match some apache access.log files. Author: susmab...
2010-11-10 "Cisco PIX Security Appliance Software Versio... Google search for Pix Authorization Keys Author: fdisk...
2010-11-10 filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS This search locates private SSHHostkeys. Author: loganWHD...
2006-10-02 intitle:"AppServ Open Project *" "A... Often includes phpinfo and unsecured links to phpmyadmin....
2006-03-21 intitle:"LOGREP - Log file reporting system&q... Logrep is an open source log file Extraction and Reporting System by ITeF!x. This dork finds t...
2006-03-18 (intitle:"PRTG Traffic Grapher" inurl:&q... PRTG Traffic Grapher is Windows software for monitoring and classifying bandwidth usage. It pro...
2006-03-18 intitle:"Joomla - Web Installer" Joomla! is a Content Management System (CMS) created by the same team that brought the Mambo CM...
2006-02-22 "not for public release" -.edu -.gov -.m... if you search through lots of these then you find some really juicy things, there files from po...
2006-01-16 intext:ViewCVS inurl:Settings.php CVs is a software used to keep track of changes to websites. You can review all updates and pre...
2006-01-16 inurl:build.err General build error file. Can tell what modules are installed, the OS the compiler the language...
2005-12-22 inurl:/cgi-bin/pass.txt Passwords...
2005-12-19 (intitle:WebStatistica inurl:main.php) | (intitle:... WebStatistica provides detailed statistics about a web page. Normally you would have to login ...
2005-11-24 inurl:wp-mail.php + "There doesn't seem to b... This is the WordPress script handling Post-By-Email functionality, the search is focussed on th...
2005-11-16 intitle:"Welcome to F-Secure Policy Manager S... An attacker may want to know about the antivirus software running. The description says he can...
2005-10-22 intitle:Bookmarks inurl:bookmarks.html "Bookm... AFAIK are the bookmarks of Firefox, Netscape and Mozilla stored in bookmarks.html. It is often ...
2005-10-04 intitle:"urchin (5|3|admin)" ext:cgi Gain access to Urchin analysis reports....
2005-09-08 rdbqds -site:.edu -site:.mil -site:.gov Ceasar encryption is a rather simple encryption. You simply shift letters up or down across the...
2005-08-23 contacts ext:wml Forget Bluetooth Hacking! You'll be amazed, at how many people sync their Cell Phones to the sa...
2005-08-12 intitle:"curriculum vitae" filetype:doc Hello. 1. It reveals personal datas, often private addresses, phone numbers, e-mails, how many ...
2005-08-16 intitle:"admin panel" +"Powered by ... This finds all versions of RedKernel Referer Tracker(stats page) it just gives out some nice in...
2005-07-30 ext:(doc | pdf | xls | txt | ps | rtf | odt | sxw ... Although this search is a bit broken (the file extensions don't always work), it reveals intere...
2005-07-24 site:www.mailinator.com inurl:ShowMail.do Mailinator.com allows people to use temporary email boxes. Read the site, I won't explain here....
2005-07-21 allinurl:cdkey.txt cdkeys...
2005-07-08 filetype:PS ps PS is for "postscript"...which basically means you get the high quality press data fo...