What Are Google Dorks and How To Use Them ?

If you are into hacking, you must know how to use search engines smartly.

They are the best resources which give you whatever the information you want if you use it smartly and that's what hackers do.

GOOGLE DORKS

To be more clear, Hackers use dorks to find vulnerable websites and grab sensitive information from them.

---

What are dorks ?

---

Dorks are type of strings which are capable of revealing sensitive data from websites or web apps.

They can return admin pages, login pages, root directories of servers and other sensitive information contained pages which you would probably can't find just by doing simple google search.

Hackers mainley use dorking to find SQL injectable sites. It is also called as Google Dorking.

I would say it is the legal way of searching for vulnerable sites.

Hope you got an idea about dorks! Alright! cool!

Let's see the structure of google dork.

inurl: .domain/dork query

Lets break it...

-> inurl      : Input as URL

-> domain : Domain you are searching for (example:- .in)

-> dork      : Parameters (example:- .php .asp etc)

-> query    :  query can be a sql query or whatever (example:- id=1 )

You can also use different input types rather than inurl to get more information about the site you searching for.

These are few different searching types to get more information about sites.

intext:

intitle:

site:

link:
book:

inurl:

info:

weather:

phonebook:

maps:

For example if you want know all the domains, subdomains of a particular site, you can try this.
I want know about google domains so i will try this

site: google.com

It will return all the domains, subdomains, internal sites and etc.

I hope you got an idea about google dorks and their working.

---

Also read:-

--> what is sql injection and how it works?

--> Sql scanner - Tool to find sqli vulnerable sites