Mastering Google Dorking: A Beginner’s Guide to Finding Hidden Information + Video Tutorial
Google Dorking is a technique used to find information that is publicly available but not easily accessible through a regular Google search. This technique involves the use of special search operators provided by Google. The following is the Google Dork cheat sheet and its explanation:
Basic Google Dork
- site :
– Used to search for content on a specific domain or website.
– Example: site:kekasi.co.id - intitle :
– Search for pages that have certain words in the title.
– Example: intitle:”login” - allintitle :
– Search for pages that have all the words mentioned in their title
– Example: allintitle:”admin login” - inurl :
– Search for pages that have certain words in their URL.
– Example: inurl:admin - allinurl :
– Search for pages that have all the words mentioned in their URL.
– Example: allinurl:login.php - filetype :
– Search for files of a certain type.
– Example: filetype:pdf - ext :
– Search for pages or files with certain extensions.
– Example: ext:doc - link :
– Search for pages that have a link to a specific URL.
– Example: link:kekasi.link - cache :
– View a cached version of a web page.
– Example: cache:kekasi.co.id - related :
– Search for pages similar to a specific URL/
– Example: related:kekasi.link
Combination and Application
- Login Pages
– intitle:”login” “password”
– inurl:login - Sensitive Directories
– intitle:index.of
– inurl:admin - Error Messages
– intext:”Error 404″
– intext:”Warning: * failed” - Sensitive Data
– filetype:xls inurl:”email.xls”
– filetype:sql inurl:sql - Specific Filetypes
– filetype:pdf “confidential”
– filetype:doc “report”
Specific Examples
- Search for PDF files related to financial reports on government sites:
-site:go.id filetype:pdf “financial report” - Looking for admin login page:
– intitle:”admin login”
– inurl:adminlogin - Search for contact information in spreadsheet format:
– filetype:xls inurl:”contacts” - Search for open directories on the web server:
– intitle:index.of “parent directory”
For other specific examples, kekasi friends, you can see here
Security and Ethics
Use of Google Dorking must be done responsibly. Here are some ethical guidelines:
- Do not use this technique for illegal or destructive purposes.
- Always permit or notify the owner of the site before exploring or using the information found.
- Use it for useful purposes such as security research or vulnerability testing of your own site.
Google Dorking can be a very powerful tool in the right hands and used in an ethical way. Always prioritize security and privacy when using this technique
