EZ 密***** inurl:blog
大学入口突破基础:不同入口的PW研究
http://www.google.com/search?q=i ... p;start=10&sa=N
http://www.google.com/search?q=i ... lr=&newwindow=1
http://www.google.com/search?hl= ... %3D&btnG=Search
http://www.google.com/search?hl= ... 3D+&btnG=Search
http://www.google.com/search?hl= ... 3D+&btnG=Search
http://www.google.com/search?q=i ... p;start=10&sa=N
http://www.google.com/search?hl= ... uk+&btnG=Search
http://www.google.com/search?q=i ... =zh-CN&ie=UTF-8
http://www.google.com/search?q=s ... ;start=100&sa=N
ebscohost
检索式
http://www.google.com/search?q=a ... mp;start=0&sa=N
http://www.google.com/search?hl= ... com&btnG=Search
http://www.google.com/search?hl= ... TF-8&q=intitle:
firstsearch
http://www.google.com/search?hl= ... org&btnG=Search
http://www.google.com/search?q=A ... mp;start=0&sa=N
proquest
http://www.google.com/search?hl= ... rd+proquest+welcome
http://www.google.com/search?q=a ... p;start=30&sa=N
http://www.google.com/search?q=a ... =utf-8&oe=utf-8
有些问题,修改后
http://www.google.com/search?hl= ... 9C%E7%B4%A2&lr=
inurl:epnet inurl:password=password
inurl:password= inurl:lib│inurl:library -net -com -org -nl -co.uk
allinurl:itweb id site:infotrac.galegroup.com
allinurl:passwd -IPAUTO inurl:welcome site:umi.com
allinurl:password site:hwwilsonweb.com
Article.asp?ContributionID
inurl:access.web-sci.com
science│medicine│biology inurl:forum inurl:asp?id=│inurl:aspx?id=│inurl:cfm?id=
intitle:publisher inurl:asp?id=│inurl:aspx?id=│inurl:cfm?id=
inurl:press inurl:asp?id=│inurl:aspx?id=│inurl:cfm?id=
inurl:fulltext inurl:asp?id=│inurl:aspx?id=│inurl:cfm?id=
inurl:sci inurl:asp?id=│inurl:aspx?id=│inurl:cfm?id=
netid filetype:pdf site:msstate.edu;netid filetype:xls site:msstate.edu
Personal ID number site:emory.edu
ID number filetype:xls site:emory.edu
"ID number" grade site:emory.edu
ID number filetype:pdf site:emory.edu
inurl:
inurl: 是駭客重要的搜尋方法,可搜到網址包括的關鍵字,
例如填上 allinurl:login password 作搜尋,便會很易找到有 login 和 password 的網頁。
-------------------------------------------------------------------------------------------
filetype:
filetype: 是駭客專用語法,例如想找 mdb 的數據庫檔案,可用 password filetype:mdb 作搜尋,
便會找到密碼文件,進階用法可配合 inurl: 使用,例如 girl filetype:jpg site:com 便可搜到所有標題 .com 網站,而檔案為 girl.jp 或網頁內容有 girl 字串的。
-------------------------------------------------------------------------------------------
Index of /admin
搜到的結果大多數是容野峇嵺@ index browsing 的網站,隨便按下一個連結便看到網站的資料夾和檔案分佈。
-------------------------------------------------------------------------------------------
"Index of /" +password.txt
有些站長會將密碼儲存成 password.txt 檔案,如配合 index browsing 的弁遄A將 google 的關鍵字串成 "Index of /" +password.txt 作搜尋,便找到很多 password.txt
"Index of /admin"
"Index of /password"
"Index of /mail"
"Index of /" +passwd
"Index of /" +password.txt
"Index of /" +.htaccess
index of ftp +.mdb allinurl:/cgi-bin/ +mailto
administrators.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
inurl:passwd filetype:txt
inurl:admin filetype:db
inurl:iisadmin
inurl:"auth_user_file.txt"
inurl:"wwwroot/*."
top secret site:mil
confidential site:mil
allinurl: winnt/system32/ (get cmd.exe)
allinurl:/bash_history
intitle:"Index of" .sh_history
intitle:"Index of" .bash_history
intitle:"index of" passwd
intitle:"index of" people.lst
intitle:"index of" pwd.db
intitle:"index of" etc/shadow
intitle:"index of" spwd
intitle:"index of" master.passwd
intitle:"index of" htpasswd
intitle:"index of" members OR accounts
intitle:"index of" user_carts OR user_cart
password:library
google:"*** password=***"
ext:pwd inurl:(service │ authors │ administrators │ users) "# -FrontPage-"
http://www.google.com/search?q=e ... 2%23+-FrontPage-%22
这是Frontpage制作者管理权限的信息,本来想透露一下,但怕被倒出去,这里只能点到为止:
搜索frontpage密*****文件:ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-"
"allinurl:ovid.com password"
administrators.pwd.index
authors.pwd.index
service.pwd.index
filetype:config web
gobal.asax index
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: sensitive filetype:doc
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
inurl:passwd filetype:txt
inurl:admin filetype:db
inurl:iisadmin
inurl:"auth_user_file.txt"
inurl:"wwwroot/*."
ezproxy inurl:bbs
ssn│"Social Security Number " site:***.edu
barcode site:***.edu
id site:***.edu
000000000..999999999 site:***.edu
numrange:000000000-999999999 site:***.edu
ssn name site:***.edu
id name site:***.edu
grade│score site:***.edu filetype:xls (pdf/doc,etc)
quiz│exam│test site:***.edu filetype:xls (pdf/doc,etc)
inurl:roster site:***.edu
inurl:summer site:***.edu filettype:
不少学校的NETID是EMAIL:
"@***>edu" site:***.edu
id name birth│dob│birthday│born site:
另外,善于利用GOOGLE的图像功能
card│id│barcode site:***.edu
card│id│barcode (nameof school)
希望大家能给出自己常用的GOOGLE检索式来交
密*****检索词
medicine journal ID pw
chemWEB.COM PASSWORD
Virtuelle Bibliothek PASSWORD
“Online Full Text Resources password”
“health sciences library password ”
“OvidLWW password”
“medizin bibliothek password”
“medizin Volltext password”
“medizin literatur password”
“health ejournals password ”
“medizin elektronik password”
Medizin Bibliothek Datenbank Benutzername Kennwort
medicina BIBLIOTECA password
médecine PéRIODIQUES éLECTRONIQUES password
health ejournals password
American Journal of Medicine OnLine FULL TEXT Journals username password
medicine journal fulltext username
inurl:2048 inurl:login
allinurl:password user site:epnet.com
intitle:"EBSCO Publishing Service Selection Page"
allinurl:cert= site:umi.com
+library +username +password proquest welcome
XX(数据库名) 帐号 密***** inurl:edu.cn
inurl:8080 inurl:login
最早以前,我曾经用 " password+journal" 方法搜过一些,
效果也很明显。后来有人提出一个号称通吃天下文献数据库的密*****万
能的公式,
password=welcome+(X)
x 可以为任何一个文献数据库的名称,可以写成
password=welcome+ProQuest
password=welcome+Ingenta
password=welcome+EBSCO。。。。。。。。。
等等,放到google里后,检索为 “password welcome ProQuest”
这样会有好多的密*****出现,你慢慢尝试吧!
据说这个方法是一个叫 Hmongbook 的人概括出来的,真感谢他!
我个人使用后感觉不错!
另外,并不是所有的数据库登陆都是username password,比如我前
几天查找的英国economist周刊,他的检索关键词就应该
为: "password e-mail ",这需要各位的细心了!
(接GOOGLE)
上述一种常用方法,现在也提供一下个人以及网友提供的检索常
用搜索词的一些例子,模式上基本大同小异
medicine journal ID pw
chemWEB.COM PASSWORD
Virtuelle Bibliothek PASSWORD
“Online Full Text Resources password”
“health sciences library password ”
“OvidLWW password”
“medizin bibliothek password”
“medizin Volltext password”
“medizin literatur password”
“health ejournals password ”
“medizin elektronik password”
medicina BIBLIOTECA password
médecine PéRIODIQUES éLECTRONIQUES password
health ejournals password
American Journal of Medicine OnLine FULL TEXT Journals username password
medicine journal fulltext username
同时,如果你足够细心,你会在这样的检索中有很多以外的收获。
国外有很多密*****页,上面公布很多期刊数据库的密*****和登陆方式
如果GOOGLE在检索的页面上出现 " PSAAWORD" 字样很多,那就说明
这是一个密*****页。你可以保存起来,说不定今后你会用到他们。
请各位试试看!
1.EZ搜索:
allinurl:ezproxy edu login
allinurl:login +edu ezproxy OR proxy
allinurl: login ezproxy OR proxy OR lib OR library OR 2048
2.数字型EZ密*****
site:×××.edu numrange:100000000..100999999
3.Ebsco搜索式,很多Ebsco密*****为password
password=password site:epnet.com
inurl:access.web-sci.com
如nature:
http://80-www.nature.com.access.web-sci.com:808/index.htmlpassword intitle:"Ejournal Information Page"
"# -FrontPage-" inurl:service.pwd
"AutoCreate=TRUE password=*"
"http://*:*@www" domainname
"index of/" "ws_ftp.ini" "parent directory"
allinurl: admin mdb
auth_u
[
本帖最后由 wjfllj 于 2006-12-13 12:38 编辑 ]
