T
T
TODO•SEC
Search…
Open Source Intelligence
  • Google
  • Exploit-DB/Google Hacking DB
  • WHOIS
  • Netcraft
  • theharverster
  • Shodan
Google Fu On the google search bar type
To restrict websites to a specific Domain
1
<site:xyz.com>. i.e oscp.com
Copied!
To filter out a specific subdomain, in this case WEB do -site:www.oscp.com Why? To try to find an ftp for example
1
site:oscp.com -site:www.oscp.com
Copied!
To look for a specific filetype use . i.e pdf
1
site:oscp.com -site:www.oscp.com filetype:pdf
Copied!
On search settings, access Advanced search for extended filters (if unsure about syntax)
1
PENDING***Search for Google Syntax (must)
Copied!
Google Hacking Database Exploit Database
1
example search to do on google under Files containing passwords: enable secret ext:cfg -git -cisco.com
Copied!
Shodan Webcams, default passwords, web servers,
Netcraft
1
add *.domain.com for subdomain wildcard
Copied!
WHOIS
1
whois oscp.com
Copied!
Theharvester - Searches for emails
1
theharvester -d #domain examplestore.com -b #searchengines google/all/bing
Copied!
Last modified 8d ago
Copy link