├── Google-Hacking.py
├── README.md
├── exploit
└── searcher.py
├── file
├── admin.txt
└── sub.txt
├── rand
├── dork-random.py
├── lfi.txt
├── sqli.txt
└── xss.txt
└── scree
├── Screenshot_20230811-164406_Pydroid 3.jpg
├── Screenshot_20230811-164417_Pydroid 3.jpg
├── Screenshot_20230811-165357_Pydroid 3.jpg
└── Screenshot_20230811-170141_Pydroid 3.jpg
/Google-Hacking.py:
--------------------------------------------------------------------------------
1 | import requests,platform,os
2 | from bs4 import BeautifulSoup
3 | try:from googlesearch import search
4 | except:os.system("pip install google-search")
5 | from urllib.parse import urljoin
6 | rd, gn, lgn, yw, lrd, be, pe = '\033[00;31m', '\033[00;32m', '\033[01;32m', '\033[01;33m', '\033[01;31m', '\033[94m', '\033[01;35m'
7 | cn, k,g = '\033[00;36m', '\033[90m','\033[38;5;130m'
8 | def clear():
9 | if 'Windows' in platform.uname():
10 | from colorama import init
11 | init()
12 | os.system("cls")
13 | elif 'Windows' not in platform.uname():
14 | os.system("clear")
15 | clear()
16 | o = input(f"""{k}
17 | .d8888b. 888
18 | d88P Y88b 888
19 | 888 888 888
20 | 888 .d88b. .d88b. .d88b. 888 .d88b.
21 | 888 88888 d88""88b d88""88b d88P"88b 888 d8P Y8b
22 | 888 888 888 888 888 888 888 888 888 88888888 {lrd}Hacking{k}
23 | Y88b d88P Y88..88P Y88..88P Y88b 888 888 Y8b.
24 | "Y8888P88 "Y88P" "Y88P" "Y88888 888 "Y8888
25 | 888
26 | Y8b d88P
27 | "Y88P"
28 |
29 | {gn}Channel : {rd}@esfelurm
30 |
31 | {lrd}[{lgn}1{lrd}] {gn}Getting a list of sites with Dork {rd}[Singel]\n\n{lrd}[{lgn}2{lrd}] {gn}Getting a list of sites with Dork {rd}[file.txt]\n\n{lrd}[{lgn}3{lrd}] {gn}Find site directories\n\n{lrd}[{lgn}4{lrd}] {gn}Find subdomains \n\n{lrd}[{lgn}5{lrd}] {gn}Find the admin panel\n\n{lrd}[{lgn}6{lrd}] {gn}Random Dork\n\n{lrd}[{lgn}7{lrd}] {gn}Exploit Finder/Searcher\n\n{lrd}[{lgn}+{lrd}] {g}Enter Number : {cn}""")
32 | def dork_Singel():
33 | clear()
34 | print (f"""{k}
35 | _,.---._ ,--.-.,-.
36 | _,..---._ ,-.' , - `. .-.,.---. /==/- |\ \
37 | /==/, - \ /==/_, , - \ /==/ ` \ |==|_ `/_ /
38 | |==| _ _\ |==| .=. | |==|-, .=., | |==| , /
39 | |==| .=. | |==|_ : ;=: - | |==| '=' / |==|- .| {rd}Single{k}
40 | |==|,| | -| |==| , '=' | |==|- , .' |==| _ , \
41 | |==| '=' / \==\ - ,_ / |==|_ . ,'. /==/ '\ |
42 | |==|-, _`/ '.='. - .' /==/ /\ , ) \==\ /\=\.'
43 | `-.`.____.' `--`--'' `--`-`--`--' `--`
44 | \n""")
45 | try:
46 | dork,page,time,save = input(f"{lrd}[{lgn}+{lrd}] {lgn}Dork {k}: {cn}"),int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Number Page{k} : {cn}")),int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Timeout {k}: {cn}")),input(f"{lrd}[{lgn}+{lrd}] {lgn}save location : {k}")
47 | nyx = 0
48 | for i in search(dork, tld="com", lang="en", num=int(page), start=0, stop=None, pause=int(time)):
49 | with open(save, 'a') as f:
50 | f.write(f'{i}\n')
51 | nyx += 1
52 | print(f'\n{lrd}[{lgn}{nyx}{lrd}] {yw}=>> {lrd}[{k}{i}{lrd}]')
53 | if nyx >= int(time):
54 | break;
55 | print(f'\n{yw}------------------------\n{lrd}[{lgn}+{lrd}] {gn}Saved : {lgn}{save}\n{lrd}[{lgn}+{lrd}] {gn}Number of sites found: {k}{nyx}')
56 | except ValueError:
57 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error Input')
58 | except KeyboardInterrupt:
59 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error')
60 |
61 | def dork_List():
62 | clear()
63 | print (f"""{k}
64 | ;
65 | ED. :
66 | E#Wi t#, G:
67 | E###G. ;##W. j. E#, :
68 | E#fD#W; :#L:WE EW, E#t .GE
69 | E#t t##L .KG ,#D E##j E#t j#K;
70 | E#t .E#K, EE ;#f E###D. E#GK#f
71 | E#t j##f f#. t#i E#jG#W; E##D. {rd}file{k}
72 | E#t :E#K: :#G GK E#t t##f E##Wi {rd}mod{k}
73 | E#t t##L ;#L LW. E#t :K#E: E#jL#D:
74 | E#t .D#W; t#f f#: E#KDDDD###i E#t ,K#j
75 | E#tiW#G. f#D#; E#f,t#Wi,,, E#t jD
76 | E#K##i G#t E#t ;#W: j#t
77 | E##D. t DWi ,KK: ,;
78 | E#t
79 | L:
80 | \n""")
81 | try:
82 | dork,page,time,save = input(f"{lrd}[{lgn}+{lrd}] {lgn}Dork File List{k}: {cn}"),int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Number Page{k} : {cn}")),int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Timeout {k}: {cn}")),input(f"{lrd}[{lgn}+{lrd}] {lgn}save location : {k}")
83 | f = open(dork,'r')
84 | nyx = 0
85 | for file in f:
86 | for i in search(file, tld="com", lang="en", num=page, start=0, stop=None, pause=int(time)):
87 | with open(save, 'a') as f:
88 | f.write(f'{i}\n')
89 | nyx += 1
90 | print(f'\n{lrd}[{lgn}{nyx}{lrd}] {yw}=>> {lrd}[{k}{i}{lrd}]')
91 | if nyx >= int(page):
92 | break
93 | print(f'\n{yw}------------------------\n{lrd}[{lgn}+{lrd}] {gn}Saved : {lgn}{save}\n{lrd}[{lgn}+{lrd}] {gn}Number of sites found: {k}{nyx}')
94 | except ValueError:
95 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error Input')
96 | except KeyboardInterrupt:
97 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error')
98 |
99 | def dir(url, visited_urls=None, depth=0):
100 | if visited_urls is None:
101 | visited_urls = set()
102 | if depth > 3:
103 | return
104 | try:
105 | response = requests.get(url)
106 | if response.status_code == 200:
107 | soup = BeautifulSoup(response.content, 'html.parser')
108 | for link in soup.find_all('a', href=True):
109 | href = link['href']
110 | absolute_url = urljoin(url, href)
111 | if absolute_url not in visited_urls:
112 | print(f"\n{lrd}[{lgn}+{lrd}] {cn}directory was found :{lgn} {absolute_url}")
113 | visited_urls.add(absolute_url)
114 | dir(absolute_url, visited_urls, depth + 1)
115 | except requests.exceptions.RequestException as e:
116 | print(f'{lrd}Request error: {rd}{e}')
117 | def sub():
118 | target = input(f"""
119 |
120 | {lrd}+-++-++-++-++-++-++-++-++-++-+
121 | {rd}|{lgn}s{k}||{lgn}u{k}||{lgn}b{k}||{lgn}d{k}||{lgn}o{k}||{lgn}m{k}||{lgn}a{k}||{lgn}i{k}||{lgn}n{k}||{lgn}s{rd}|
122 | {lrd}+-++-++-++-++-++-++-++-++-++-+
123 |
124 | {lrd}[{lgn}+{lrd}] {gn}Enter URL Target {cn}[Ex : https://google.com] {gn}: {k}""")
125 | link_list = open('file/sub.txt', 'r').read().split()
126 | for List in link_list:
127 | f = target+'/'+List
128 | req = requests.get(f)
129 | if '404' in req.text: print (f'\n{lrd}[{yw}NO{lrd}] {lrd}Page not found : {lrd}[ {lrd}{target}/{cn}\033[41m{List}\033[0m{lrd} ]')
130 | else: print (f'\n{lrd}[{lgn}OK{lrd}]{lgn} Page found : {lrd}[ \033[42m{target}/{List}\033[0m{lrd} ]')
131 |
132 | def admin():
133 | target = input(f"""{k}
134 | _______ ______ _______ _________ _
135 | ( ___ )( __ \ ( )\__ __/( ( /|
136 | | ( ) || ( \ )| () () | ) ( | \ ( |
137 | | (___) || | ) || || || | | | | \ | |
138 | | ___ || | | || |(_)| | | | | (\ \) |
139 | | ( ) || | ) || | | | | | | | \ |
140 | | ) ( || (__/ )| ) ( |___) (___| ) \ |
141 | |/ \|(______/ |/ \|\_______/|/ )_)
142 |
143 | {lrd}[{lgn}+{lrd}] {gn}Enter URL Target {cn}[Ex : https://google.com] {gn}: {k}""")
144 | link_list = open('file/admin.txt', 'r').read().split()
145 | for List in link_list:
146 | s = target+'/'+List
147 | req = requests.get(s)
148 | if '404' in req.text: print (f'\n{lrd}[{yw}NO{lrd}] {lrd}Page not found : {lrd}[ {lrd}{target}/{cn}\033[41m{List}\033[0m{lrd} ]')
149 | else: print (f'\n{lrd}[{lgn}OK{lrd}]{lgn} Page found : {lrd}[ \033[42m{target}/{List}\033[0m{lrd} ]')
150 |
151 | if o == '1':
152 | dork_Singel()
153 | elif o == '2':
154 | dork_List()
155 | elif o == '3':
156 | clear()
157 | print (f"""{k}
158 | .----------------. .----------------. .----------------.
159 | | .--------------. || .--------------. || .--------------. |
160 | | | ________ | || | _____ | || | _______ | |
161 | | | |_ ___ `. | || | |_ _| | || | |_ __ \ | |
162 | | | | | `. \ | || | | | | || | | |__) | | |
163 | | | | | | | | || | | | | || | | __ / | |
164 | | | _| |___.' / | || | _| |_ | || | _| | \ \_ | |
165 | | | |________.' | || | |_____| | || | |____| |___| | |
166 | | | | || | | || | | |
167 | | '--------------' || '--------------' || '--------------' |
168 | '----------------' '----------------' '----------------'
169 |
170 | """)
171 | site_url = input(f"{lrd}[{lgn}+{lrd}] {gn}Enter the site address : {k}")
172 | dir(site_url)
173 | elif o == '4':
174 | clear()
175 | sub()
176 | elif o == '5':
177 | clear()
178 | admin()
179 | elif o == '6':
180 | os.system("python rand/dork-random.py")
181 | elif o == '7':
182 | os.system("python exploit/searcher.py")
183 |
184 | else:
185 | print (f"{lrd}Enter the appropriate option ")
186 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # Google Hacking
2 |
3 | ## screen menu
4 |
5 | 
6 |
7 | ### Capabilities :
8 | - Target finder according to the directions you give
9 | - Finding targets according to the list of dorks you give
10 | - Find directories of a site
11 | - Find subdomains of the site
12 | - Find the admin panel of the site
13 | ------------------------------
14 | - Using privat durks (XSS/RCE/SQLI)
15 | - Exploit Finder/Searcher
16 | ## screen Dork private
17 |
18 | 
19 |
20 | ## Fast and powerful
21 |
22 | Working with the tool is simple and suitable for people who work in web hacking (beginner-advanced).
23 |
24 | ### screen Exploit Finder
25 |
26 | 
27 |
28 | ## install
29 | ```
30 | git clone https://github.com/esfelurm/google-hacking
31 | cd google-hacking
32 | python Google-Hacking.py
33 | ```
34 |
35 | ## List Dorks
36 |
37 | 
38 |
39 | ## Channel
40 |
41 | My Channel
42 |
--------------------------------------------------------------------------------
/exploit/searcher.py:
--------------------------------------------------------------------------------
1 | import requests
2 | from bs4 import BeautifulSoup
3 | import json
4 | import re
5 | rd, gn, lgn, yw, lrd, be, pe = '\033[00;31m', '\033[00;32m', '\033[01;32m', '\033[01;33m', '\033[01;31m', '\033[94m', '\033[01;35m'
6 | cn, k,g = '\033[00;36m', '\033[90m','\033[38;5;130m'
7 | number = input(f"""{k}
8 | _____ _ _ _
9 | | ___| | | (_)| |
10 | | |__ __ __ _ __ | | ___ _ | |_
11 | | __| \ \/ /| '_ \ | | / _ \ | || __| {lrd}searcher{k}
12 | | |___ > < | |_) || || (_) || || |_
13 | \____/ /_/\_\| .__/ |_| \___/ |_| \__|
14 | | |
15 | |_|
16 |
17 | {lrd}[{g}1{lrd}] {gn}Search on GitHub\n\n{lrd}[{g}2{lrd}] {gn}Search on packetstorm\n\n{lrd}[{lgn}+{lrd}] {gn}Enter Number : {cn}""")
18 | NAME = input(f"\n\n{lrd}[{k}+{lrd}] {gn}Enter the name of what you are looking for : {cn}")
19 | interesting = ['root', 'code execution', 'exploit', 'command','execute','malicious','payload',
20 | 'remote','code','execution','arbitrary','information','leak',
21 | 'vulnerability', 'unrestricted', 'remotely',
22 | 'remote-code-execution','PoC','poc','POC']
23 |
24 | def PRINT(key_string, value_string,color='Kos?',end=True):
25 | if end == True:
26 | print(f"{gn}{(key_string)} : {gn}{(value_string)}")
27 | return
28 | print(f"{cn}{(key_string)} : {gn}{value_string}")
29 | def PACKETSTORM():
30 | text = requests.get(f"https://packetstormsecurity.com/search/?q={NAME}").text
31 | URLB = 'https://packetstormsecurity.com'
32 | n_pages = list(set(re.findall(r'href="/search/files/page(\d)/\?q=.*?"',text)))
33 | n_pages_len = len(n_pages)
34 | all_page_urls = [f"https://packetstormsecurity.com/search/files/page{i}/?q={NAME}" for i in range(1,n_pages_len+1)]
35 | for link in all_page_urls:
36 | soup = BeautifulSoup(requests.get(link).content, 'html.parser')
37 | exploit_frames = soup.find('div', {'id':'m'}).find_all('dl')
38 | for frame in exploit_frames:
39 | LINKS = frame.find('dt').a['href']
40 | TITLES = frame.find('dt').a.text
41 | DATE = frame.find('dd', class_='datetime').a.text
42 | DEC = frame.find('dd', class_='detail').p.text
43 | TAGS = ''.join([str(a.text).replace('tags | ','') for a in frame.find_all('dd', class_='tags')])
44 | CVE = ''.join([str(dd.text).replace('advisories | ','') for dd in frame.find_all('dd', class_='cve') ])
45 | SYSTEM = ''.join([str(dd.text).replace('systems | ','') for dd in frame.find_all('dd', class_='os') ])
46 | compare_interesting = [i.lower() for i in TITLES.split(' ')]
47 | if any(item in interesting for item in compare_interesting) : TITLES = (f'{TITLES}, {lgn}')
48 | split_tags = [t.strip() for t in TAGS.split(',')]
49 | if any(item in interesting for item in split_tags): TAGS = (f'{TAGS}, {gn}')
50 | DEC = DEC.split(' ')
51 | colored_description = []
52 | for word in DEC:
53 | if word in interesting:colored_description.append((f'{word},{lgn}'))
54 | else: colored_description.append(word)
55 | DEC = ' '.join(colored_description)
56 | print (f"{yw}=====================================")
57 | PRINT('\nTitle ', TITLES)
58 | PRINT('\nSummary ', DEC)
59 | if CVE:
60 | PRINT(f'\n{lrd}Cve ', CVE)
61 | if SYSTEM:
62 | PRINT('\nSystems ', SYSTEM)
63 | PRINT(f'\n{rd}Tags ', TAGS)
64 | PRINT('\nDate ', DATE)
65 | PRINT('\nUrl ', f'{URLB+LINKS}')
66 |
67 | def GITHUB():
68 | headers={'Accept':'application/vnd.github.v3+json'}
69 | jres = json.loads(requests.get(f'https://api.github.com/search/repositories?q={NAME}+PoC+&sort=stars&order=desc').text)
70 | for i in jres['items']:
71 | repo_name,description,html_link,create_date = i['full_name'],i['description'],i['html_url'],str(i['created_at'])[:10]
72 | forks,language,ftags,last_updated = i['forks_count'],i['language'],i['topics'],str(i['updated_at'])[:10]
73 | tags = []
74 | for i in ftags:
75 | if i in interesting: tags.append((f'{i}, {lrd}'))
76 | else: tags.append(i)
77 | tags = ', '.join(tags)
78 | print (f"{yw}=====================================")
79 | PRINT('Title ', repo_name, end=True)
80 | if description: PRINT('Summary ', description)
81 | print(f"{gn}{('PUBLISHED')} : {rd}{create_date} {yw}| {cn}{('UPDATED')} : {k}{last_updated}")
82 | if tags: PRINT('Tags ', tags)
83 | print(f"{gn}{('LANGUAGE')} : {rd}{language}{yw} | {cn}{('FORKS')} : {k}{forks}")
84 | PRINT('Url ', html_link)
85 |
86 | if number == '1': GITHUB()
87 | elif number == '2': PACKETSTORM()
88 |
--------------------------------------------------------------------------------
/file/admin.txt:
--------------------------------------------------------------------------------
1 | admin.php
2 | admin.html
3 | index.php
4 | login.php
5 | login.html
6 | administrator
7 | admin
8 | adminpanel
9 | cpanel
10 | login
11 | wp-login.php
12 | administrator
13 | admins
14 | logins
15 | admin.asp
16 | login.asp
17 | adm/
18 | admin/
19 | admin/account.html
20 | admin/login.html
21 | admin/login.htm
22 | admin/controlpanel.html
23 | admin/controlpanel.htm
24 | admin/adminLogin.html
25 | admin/adminLogin.htm
26 | admin.htm
27 | admin.html
28 | adminitem/
29 | adminitems/
30 | administrator/
31 | administrator/login.%EXT%
32 | administrator.%EXT%
33 | administration/
34 | administration.%EXT%
35 | adminLogin/
36 | adminlogin.%EXT%
37 | admin_area/admin.%EXT%
38 | admin_area/
39 | admin_area/login.%EXT%
40 | manager/
41 | superuser/
42 | superuser.%EXT%
43 | access/
44 | access.%EXT%
45 | sysadm/
46 | sysadm.%EXT%
47 | superman/
48 | supervisor/
49 | panel.%EXT%
50 | control/
51 | control.%EXT%
52 | member/
53 | member.%EXT%
54 | members/
55 | user/
56 | user.%EXT%
57 | cp/
58 | uvpanel/
59 | manage/
60 | manage.%EXT%
61 | management/
62 | management.%EXT%
63 | signin/
64 | signin.%EXT%
65 | log-in/
66 | log-in.%EXT%
67 | log_in/
68 | log_in.%EXT%
69 | sign_in/
70 | sign_in.%EXT%
71 | sign-in/
72 | sign-in.%EXT%
73 | users/
74 | users.%EXT%
75 | accounts/
76 | accounts.%EXT%
77 | bb-admin/login.%EXT%
78 | bb-admin/admin.%EXT%
79 | bb-admin/admin.html
80 | administrator/account.%EXT%
81 | relogin.htm
82 | relogin.html
83 | check.%EXT%
84 | relogin.%EXT%
85 | blog/wp-login.%EXT%
86 | user/admin.%EXT%
87 | users/admin.%EXT%
88 | registration/
89 | processlogin.%EXT%
90 | checklogin.%EXT%
91 | checkuser.%EXT%
92 | checkadmin.%EXT%
93 | isadmin.%EXT%
94 | authenticate.%EXT%
95 | authentication.%EXT%
96 | auth.%EXT%
97 | authuser.%EXT%
98 | authadmin.%EXT%
99 | cp.%EXT%
100 | modelsearch/login.%EXT%
101 | moderator.%EXT%
102 | moderator/
103 | controlpanel/
104 | controlpanel.%EXT%
105 | admincontrol.%EXT%
106 | adminpanel.%EXT%
107 | fileadmin/
108 | fileadmin.%EXT%
109 | sysadmin.%EXT%
110 | admin1.%EXT%
111 | admin1.html
112 | admin1.htm
113 | admin2.%EXT%
114 | admin2.html
115 | yonetim.%EXT%
116 | yonetim.html
117 | yonetici.%EXT%
118 | yonetici.html
119 | phpmyadmin/
120 | myadmin/
121 | ur-admin.%EXT%
122 | ur-admin/
123 | Server.%EXT%
124 | Server/
125 | wp-admin/
126 | administr8.%EXT%
127 | administr8/
128 | webadmin/
129 | webadmin.%EXT%
130 | administratie/
131 | admins/
132 | admins.%EXT%
133 | administrivia/
134 | Database_Administration/
135 | useradmin/
136 | sysadmins/
137 | sysadmins/
138 | admin1/
139 | system-administration/
140 | administrators/
141 | pgadmin/
142 | directadmin/
143 | staradmin/
144 | ServerAdministrator/
145 | SysAdmin/
146 | administer/
147 | LiveUser_Admin/
148 | sys-admin/
149 | typo3/
150 | panel/
151 | cpanel/
152 | cpanel_file/
153 | platz_login/
154 | rcLogin/
155 | blogindex/
156 | formslogin/
157 | autologin/
158 | manuallogin/
159 | simpleLogin/
160 | loginflat/
161 | utility_login/
162 | showlogin/
163 | memlogin/
164 | login-redirect/
165 | sub-login/
166 | wp-login/
167 | login1/
168 | dir-login/
169 | login_db/
170 | xlogin/
171 | smblogin/
172 | customer_login/
173 | UserLogin/
174 | login-us/
175 | acct_login/
176 | bigadmin/
177 | project-admins/
178 | phppgadmin/
179 | pureadmin/
180 | sql-admin/
181 | radmind/
182 | openvpnadmin/
183 | wizmysqladmin/
184 | vadmind/
185 | ezsqliteadmin/
186 | hpwebjetadmin/
187 | newsadmin/
188 | adminpro/
189 | Lotus_Domino_Admin/
190 | bbadmin/
191 | vmailadmin/
192 | Indy_admin/
193 | ccp14admin/
194 | irc-macadmin/
195 | banneradmin/
196 | sshadmin/
197 | phpldapadmin/
198 | macadmin/
199 | administratoraccounts/
200 | admin4_account/
201 | admin4_colon/
202 | radmind-1/
203 | Super-Admin/
204 | AdminTools/
205 | cmsadmin/
206 | SysAdmin2/
207 | globes_admin/
208 | cadmins/
209 | phpSQLiteAdmin/
210 | navSiteAdmin/
211 | server_admin_small/
212 | logo_sysadmin/
213 | power_user/
214 | system_administration/
215 | ss_vms_admin_sm/
216 | bb-admin/
217 | panel-administracion/
218 | instadmin/
219 | memberadmin/
220 | administratorlogin/
221 | adm.%EXT%
222 | admin_login.%EXT%
223 | panel-administracion/login.%EXT%
224 | pages/admin/admin-login.%EXT%
225 | pages/admin/
226 | acceso.%EXT%
227 | admincp/login.%EXT%
228 | admincp/
229 | adminarea/
230 | admincontrol/
231 | affiliate.%EXT%
232 | adm_auth.%EXT%
233 | memberadmin.%EXT%
234 | administratorlogin.%EXT%
235 | modules/admin/
236 | administrators.%EXT%
237 | siteadmin/
238 | siteadmin.%EXT%
239 | adminsite/
240 | kpanel/
241 | vorod/
242 | vorod.%EXT%
243 | vorud/
244 | vorud.%EXT%
245 | adminpanel/
246 | PSUser/
247 | secure/
248 | webmaster/
249 | webmaster.%EXT%
250 | autologin.%EXT%
251 | userlogin.%EXT%
252 | admin_area.%EXT%
253 | cmsadmin.%EXT%
254 | security/
255 | usr/
256 | root/
257 | secret/
258 | admin/login.%EXT%
259 | admin/adminLogin.%EXT%
260 | moderator.php
261 | moderator.html
262 | moderator/login.%EXT%
263 | moderator/admin.%EXT%
264 | yonetici.%EXT%
265 | 0admin/
266 | 0manager/
267 | aadmin/
268 | cgi-bin/login%EXT%
269 | login1%EXT%
270 | login_admin/
271 | login_admin%EXT%
272 | login_out/
273 | login_out%EXT%
274 | login_user%EXT%
275 | loginerror/
276 | loginok/
277 | loginsave/
278 | loginsuper/
279 | loginsuper%EXT%
280 | login%EXT%
281 | logout/
282 | logout%EXT%
283 | secrets/
284 | super1/
285 | super1%EXT%
286 | super_index%EXT%
287 | super_login%EXT%
288 | supermanager%EXT%
289 | superman%EXT%
290 | superuser%EXT%
291 | supervise/
292 | supervise/Login%EXT%
293 | super%EXT%
294 | account.html
295 | account.php
296 | adm/
297 | adm/admloginuser.php
298 | adm_auth.php
299 | adm.html
300 | admin/
301 | admin2/index.php
302 | admin2/login.php
303 | admin2.php
304 | admin/account.html
305 | admin/account.php
306 | admin/admin.html
307 | admin/admin_login.html
308 | admin/admin-login.html
309 | admin/adminLogin.html
310 | admin/admin_login.php
311 | admin/admin-login.php
312 | admin/adminLogin.php
313 | admin/admin.php
314 | admin_area/
315 | adminarea/
316 | admin_area/admin.html
317 | adminarea/admin.html
318 | admin_area/admin.php
319 | adminarea/admin.php
320 | admin_area/index.html
321 | adminarea/index.html
322 | admin_area/index.php
323 | adminarea/index.php
324 | admin_area/login.html
325 | adminarea/login.html
326 | admin_area/login.php
327 | adminarea/login.php
328 | admincontrol.html
329 | admincontrol/login.html
330 | admincontrol/login.php
331 | admin/controlpanel.html
332 | admin/controlpanel.php
333 | admincontrol.php
334 | admin/cp.html
335 | admincp/index.asp
336 | admincp/index.html
337 | admincp/login.asp
338 | admin/cp.php
339 | adm/index.html
340 | adm/index.php
341 | admin/home.html
342 | admin/home.php
343 | admin.html
344 | admin/index.html
345 | admin/index.php
346 | administrator/
347 | administrator/account.html
348 | administrator/account.php
349 | administrator.html
350 | administrator/index.html
351 | administrator/index.php
352 | administratorlogin/
353 | administrator/login.html
354 | administrator/login.php
355 | administrator.php
356 | adminLogin/
357 | admin_login.html
358 | admin-login.html
359 | admin/login.html
360 | adminLogin.html
361 | admin_login.php
362 | admin-login.php
363 | admin/login.php
364 | adminLogin.php
365 | adminpanel.html
366 | adminpanel.php
367 | admin.php
368 | admloginuser.php
369 | adm.php
370 | affiliate.php
371 | bb-admin/
372 | bb-admin/admin.html
373 | bb-admin/admin.php
374 | bb-admin/index.html
375 | bb-admin/index.php
376 | bb-admin/login.html
377 | bb-admin/login.php
378 | controlpanel.html
379 | controlpanel.php
380 | cp.html
381 | cp.php
382 | home.html
383 | home.php
384 | instadmin/
385 | joomla/administrator
386 | login.html
387 | login.php
388 | memberadmin/
389 | modelsearch/admin.html
390 | modelsearch/admin.php
391 | modelsearch/index.html
392 | modelsearch/index.php
393 | modelsearch/login.html
394 | modelsearch/login.php
395 | moderator/
396 | moderator/admin.html
397 | moderator/admin.php
398 | moderator.html
399 | moderator/login.html
400 | moderator/login.php
401 | moderator.php
402 | nsw/admin/login.php
403 | pages/admin/admin-login.html
404 | pages/admin/admin-login.php
405 | panel-administracion/
406 | panel-administracion/admin.html
407 | panel-administracion/admin.php
408 | panel-administracion/index.html
409 | panel-administracion/index.php
410 | panel-administracion/login.html
411 | panel-administracion/login.php
412 | rcjakar/admin/login.php
413 | siteadmin/index.php
414 | siteadmin/login.html
415 | siteadmin/login.php
416 | user.html
417 | user.php
418 | webadmin/
419 | webadmin/admin.html
420 | webadmin/admin.php
421 | webadmin.html
422 | webadmin/index.html
423 | webadmin/index.php
424 | webadmin/login.html
425 | webadmin/login.php
426 | webadmin.php
427 | wp-login.php
428 | admin
429 | login
430 | log-in
431 | logini
432 | login1
433 | admin1
434 | administer
435 | administrator
436 | administratoraccounts
437 | account
438 | access
439 | adminlogin
440 | cp
441 | cpanel
442 | admin2
443 | ad3
444 | add
445 | administratoraccount
446 | admin
447 | log
448 | control
449 | control-admin
450 | control-panel
451 | paneladmin
452 | user
453 | users
454 | username
455 | tt
456 | ladmin
457 | loginadmin
458 | loginuser
459 | usr
460 | main
461 | administrators
462 | xadmin
463 | 1
464 | m
465 | cg
466 | cntrl
467 | ctrl
468 | accounts
469 | adminlogin
470 | userlogin
471 | ac
472 | acc
473 | pnl
474 | a
475 | acceptatie
476 | access
477 | accounting
478 | accounts
479 | ad
480 | adm
481 | admin
482 | administrator
483 | ads
484 | adserver
485 | affiliate
486 | affiliates
487 | agenda
488 | alpha
489 | alumni
490 | analytics
491 | ann
492 | api
493 | area
494 | apollo
495 | app
496 | apps
497 | ar
498 | archive
499 | art
500 | assets
501 | atlas
502 | auth
503 | auto
504 | autoconfig
505 | autodiscover
506 | av
507 | ayuda
508 | b
509 | b2b
510 | backup
511 | backups
512 | banner
513 | barracuda
514 | bb
515 | bbs
516 | beta
517 | biblioteca
518 | billing
519 | blackboard
520 | blog
521 | blogs
522 | board
523 | book
524 | booking
525 | bookings
526 | broadcast-ip
527 | bsd
528 | bt
529 | bug
530 | bugs
531 | business
532 | c
533 | ca
534 | cache
535 | cacti
536 | cal
537 | calendar
538 | cam
539 | careers
540 | cart
541 | cas
542 | catalog
543 | catalogo
544 | catalogue
545 | cc
546 | cctv
547 | cdn
548 | cdn1
549 | cdn2
550 | chat
551 | chimera
552 | chronos
553 | ci
554 | cisco
555 | citrix
556 | classroom
557 | client
558 | clientes
559 | clients
560 | cloud
561 | cloudflare-resolve-to
562 | club
563 | cms
564 | cn
565 | co
566 | community
567 | conference
568 | config
569 | connect
570 | contact
571 | /signin.asp
572 | /signin.html
573 | /signin/
574 | /simpleLogin/
575 | /siteadmin.php
576 | /siteadmin.asp
577 | /siteadmin.html
578 | /siteadmin/
579 | /smblogin/
580 | /sql-admin/
581 | /ss_vms_admin_sm/
582 | /sshadmin/
583 | /staradmin/
584 | /sub-login/
585 | /super1.php
586 | /super1.asp
587 | /super1.html
588 | /super1/
589 | /super.php
590 | /super.asp
591 | /super.html
592 | /super/
593 | /Super-Admin/
594 | /super_index.php
595 | /super_index.asp
596 | /super_index.html
597 | /super_index/
598 | /super_login.php
599 | /super_login.asp
600 | /super_login.html
601 | /superman.php
602 | /superman.asp
603 | /superman.html
604 | /superman/
605 | /supermanager.php
606 | /supermanager.asp
607 | /supermanager.html
608 | /superuser.php
609 | /superuser.asp
610 | /superuser.html
611 | /superuser/
612 | /supervise/
613 | /supervise/Login
614 | /supervisor/
615 | /support_login/
616 | /sys-admin/
617 | /sys_user
618 | /sys_usr
619 | /sysadm/
620 | /SysAdmin2/
621 | /sysadmin.asp
622 | /sysadmin.html
623 | /sysadmin.php
624 | /SysAdmin/
625 | /sysadmin/
626 | /sysadmins/
627 | /system-administration/
628 | /system_administration/
629 | /sysuser
630 | /sysusr
631 | /typo3/
632 | /ur-admin.asp
633 | /ur-admin.html
634 | /ur-admin.php
635 | /ur-admin/
636 | /user/
637 | /useradmin/
638 | /UserLogin/
639 | /users/
640 | /usr/
641 | /utility_login/
642 | /uvpanel/
643 | /vadmind/
644 | /vmailadmin/
645 | /vorod/
646 | /vorud/
647 | /webadmin.asp
648 | /webadmin.html
649 | /webadmin.php
650 | /WebAdmin/
651 | /webadmin/
652 | /webmaster/
653 | /wizmysqladmin/
654 | /wp-admin/
655 | /wp-login.php
656 | /wp-login/
657 | /xlogin/
658 | /yonetici.asp
659 | /yonetici.html
660 | /yonetici.php
661 | /yonetim.asp
662 | /yonetim.html
663 | /yonetim.php
664 | admin/
665 | administrator/
666 | admin1/
667 | admin2/
668 | admin3/
669 | admin4/
670 | admin5/
671 | usuarios/
672 | usuario/
673 | administrator/
674 | moderator/
675 | webadmin/
676 | adminarea/
677 | bb-admin/
678 | adminLogin/
679 | admin_area/
680 | panel-administracion/
681 | contacts
682 | content
683 | control
684 | controller
685 | controlp
686 | controlpanel
687 | corp
688 | corporate
689 | correo
690 | correoweb
691 | cp
692 | cpanel
693 | crm
694 | cs
695 | css
696 | customers
697 | cvs
698 | d
699 | da
700 | data
701 | database
702 | db
703 | db1
704 | db2
705 | dbadmin
706 | dbs
707 | dc
708 | de
709 | default
710 | demo
711 | demo2
712 | demon
713 | demostration
714 | descargas
715 | design
716 | desktop
717 | dev
718 | dev01
719 | dev1
720 | dev2
721 | devel
722 | developers
723 | development
724 | dialin
725 | diana
726 | direct
727 | directory
728 | dl
729 | dmz
730 | dns
731 | dns1
732 | dns2
733 | dns3
734 | dns4
735 | doc
736 | docs
737 | domain
738 | domain-controller
739 | domainadmin
740 | domaincontrol
741 | domaincontroller
742 | domaincontrolpanel
743 | domainmanagement
744 | domains
745 | drupal
746 | e
747 | eaccess
748 | echo
749 | ecommerce
750 | edu
751 | ektron
752 | elearning
753 | en
754 | eng
755 | enterpriseenrollment
756 | enterpriseregistration
757 | erp
758 | es
759 | event
760 | events
761 | ex
762 | example
763 | examples
764 | exchange
765 | external
766 | extranet
767 | f
768 | facebook
769 | faq
770 | fax
771 | fb
772 | feedback
773 | feeds
774 | file
775 | files
776 | fileserver
777 | finance
778 | firewall
779 | folders
780 | forms
781 | foro
782 | foros
783 | forum
784 | forums
785 | foto
786 | fr
787 | free
788 | freebsd
789 | fs
790 | ftp
791 | ftp1
792 | ftp2
793 | ftpadmin
794 | ftpd
795 | fw
796 | g
797 | galeria
798 | gallery
799 | game
800 | games
801 | gate
802 | gateway
803 | gilford
804 | gis
805 | git
806 | gmail
807 | go
808 | google
809 | groups
810 | groupwise
811 | gu
812 | guest
813 | guia
814 | guide
815 | gw
816 | health
817 | help
818 | helpdesk
819 | hera
820 | heracles
821 | hercules
822 | hermes
823 | home
824 | homer
825 | host
826 | host2
827 | hosting
828 | hotspot
829 | hr
830 | hypernova
831 | i
832 | id
833 | idp
834 | im
835 | image
836 | images
837 | images1
838 | images2
839 | images3
840 | images4
841 | images5
842 | images6
843 | images7
844 | images8
845 | imail
846 | imap
847 | imap3
848 | imap3d
849 | imapd
850 | imaps
851 | img
852 | img1
853 | img2
854 | img3
855 | imgs
856 | imogen
857 | in
858 | incoming
859 | info
860 | inmuebles
861 | internal
862 | interno
863 | intra
864 | intranet
865 | io
866 | ip
867 | ip6
868 | ipfixe
869 | iphone
870 | ipmi
871 | ipsec
872 | ipv4
873 | ipv6
874 | irc
875 | ircd
876 | is
877 | isa
878 | it
879 | j
880 | ja
881 | jabber
882 | jboss
883 | jboss2
884 | jira
885 | job
886 | jobs
887 | jp
888 | js
889 | jupiter
890 | k
891 | kb
892 | kerberos
893 | l
894 | la
895 | lab
896 | laboratories
897 | laboratorio
898 | laboratory
899 | labs
900 | ldap
901 | legacy
902 | lib
903 | library
904 | link
905 | links
906 | linux
907 | lisa
908 | list
909 | lists
910 | live
911 | lms
912 | local
913 | localhost
914 | log
915 | loghost
916 | login
917 | logon
918 | logs
919 | london
920 | loopback
921 | love
922 | lp
923 | lync
924 | lyncdiscover
925 | m
926 | m1
927 | m2
928 | magento
929 | mail
930 | mail01
931 | mail1
932 | mail2
933 | mail3
934 | mail4
935 | mail5
936 | mailadmin
937 | mailbackup
938 | mailbox
939 | mailer
940 | mailgate
941 | mailhost
942 | mailing
943 | mailman
944 | mailserver
945 | main
946 | manage
947 | manager
948 | mantis
949 | map
950 | maps
951 | market
952 | marketing
953 | mars
954 | master
955 | math
956 | mb
957 | mc
958 | mdm
959 | media
960 | meet
961 | member
962 | members
963 | mercury
964 | meta
965 | meta01
966 | meta02
967 | meta03
968 | meta1
969 | meta2
970 | meta3
971 | miembros
972 | mijn
973 | minerva
974 | mirror
975 | ml
976 | mm
977 | mob
978 | mobil
979 | mobile
980 | monitor
981 | monitoring
982 | moodle
983 | movil
984 | mrtg
985 | ms
986 | msoid
987 | mssql
988 | munin
989 | music
990 | mx
991 | mx-a
992 | mx-b
993 | mx0
994 | mx01
995 | mx02
996 | mx03
997 | mx1
998 | mx2
999 | mx3
1000 | my
1001 | mysql
1002 | mysql2
1003 | n
1004 | nagios
1005 | nas
1006 | nat
1007 | nelson
1008 | neon
1009 | net
1010 | netmail
1011 | netscaler
1012 | network
1013 | network-ip
1014 | networks
1015 | new
1016 | newmail
1017 | news
1018 | newsgroups
1019 | newsite
1020 | newsletter
1021 | nl
1022 | noc
1023 | novell
1024 | ns
1025 | ns0
1026 | ns01
1027 | ns02
1028 | ns03
1029 | ns1
1030 | ns10
1031 | ns11
1032 | ns12
1033 | ns2
1034 | ns3
1035 | ns4
1036 | ns5
1037 | ns6
1038 | ns7
1039 | ns8
1040 | nt
1041 | ntp
1042 | ntp1
1043 | o
1044 | oa
1045 | office
1046 | office2
1047 | old
1048 | oldmail
1049 | oldsite
1050 | oldwww
1051 | on
1052 | online
1053 | op
1054 | openbsd
1055 | operation
1056 | operations
1057 | ops
1058 | ora
1059 | oracle
1060 | origin
1061 | orion
1062 | os
1063 | osx
1064 | ou
1065 | outgoing
1066 | outlook
1067 | owa
1068 | ox
1069 | p
1070 | painel
1071 | panel
1072 | partner
1073 | partners
1074 | pay
1075 | payment
1076 | payments
1077 | pbx
1078 | pcanywhere
1079 | pda
1080 | pegasus
1081 | pendrell
1082 | personal
1083 | pgsql
1084 | phoenix
1085 | photo
1086 | photos
1087 | php
1088 | phpmyadmin
1089 | pm
1090 | pma
1091 | poczta
1092 | pop
1093 | pop3
1094 | portal
1095 | portfolio
1096 | post
1097 | postgres
1098 | postgresql
1099 | postman
1100 | postmaster
1101 | pp
1102 | ppp
1103 | pr
1104 | pre-prod
1105 | pre-production
1106 | preprod
1107 | press
1108 | preview
1109 | private
1110 | pro
1111 | prod
1112 | production
1113 | project
1114 | projects
1115 | promo
1116 | proxy
1117 | prueba
1118 | pruebas
1119 | pt
1120 | pub
1121 | public
1122 | q
1123 | qa
1124 | r
1125 | ra
1126 | radio
1127 | radius
1128 | ras
1129 | rdp
1130 | redirect
1131 | redmine
1132 | register
1133 | relay
1134 | remote
1135 | remote2
1136 | repo
1137 | report
1138 | reports
1139 | repos
1140 | research
1141 | resources
1142 | restricted
1143 | reviews
1144 | robinhood
1145 | root
1146 | router
1147 | rss
1148 | rt
1149 | rtmp
1150 | ru
1151 | s
1152 | s1
1153 | s2
1154 | s3
1155 | s4
1156 | sa
1157 | sales
1158 | sample
1159 | samples
1160 | sandbox
1161 | sc
1162 | search
1163 | secure
1164 | security
1165 | seo
1166 | server
1167 | server1
1168 | server2
1169 | service
1170 | services
1171 | sftp
1172 | share
1173 | sharepoint
1174 | shell
1175 | shop
1176 | shopping
1177 | signup
1178 | sip
1179 | site
1180 | siteadmin
1181 | sitebuilder
1182 | sites
1183 | skype
1184 | sms
1185 | smtp
1186 | smtp1
1187 | smtp2
1188 | smtp3
1189 | snmp
1190 | social
1191 | software
1192 | solaris
1193 | soporte
1194 | sp
1195 | spam
1196 | speedtest
1197 | sport
1198 | sports
1199 | sql
1200 | sqlserver
1201 | squirrel
1202 | squirrelmail
1203 | ssh
1204 | ssl
1205 | sslvpn
1206 | sso
1207 | st
1208 | staff
1209 | stage
1210 | staging
1211 | start
1212 | stat
1213 | static
1214 | static1
1215 | static2
1216 | stats
1217 | status
1218 | storage
1219 | store
1220 | stream
1221 | streaming
1222 | student
1223 | sun
1224 | support
1225 | survey
1226 | sv
1227 | svn
1228 | t
1229 | team
1230 | tech
1231 | telewerk
1232 | telework
1233 | temp
1234 | test
1235 | test1
1236 | test2
1237 | test3
1238 | testing
1239 | testsite
1240 | testweb
1241 | tfs
1242 | tftp
1243 | thumbs
1244 | ticket
1245 | tickets
1246 | time
1247 | tools
1248 | trac
1249 | track
1250 | tracker
1251 | tracking
1252 | train
1253 | training
1254 | travel
1255 | ts
1256 | tunnel
1257 | tutorials
1258 | tv
1259 | tw
1260 | u
1261 | uat
1262 | uk
1263 | unix
1264 | up
1265 | update
1266 | upload
1267 | uploads
1268 | us
1269 | user
1270 | users
1271 | v
1272 | v2
1273 | vc
1274 | ventas
1275 | video
1276 | videos
1277 | vip
1278 | virtual
1279 | vista
1280 | vle
1281 | vm
1282 | vms
1283 | vmware
1284 | vnc
1285 | vod
1286 | voip
1287 | vpn
1288 | vpn1
1289 | vpn2
1290 | vpn3
1291 | vps
1292 | vps1
1293 | vps2
1294 | w
1295 | w3
1296 | wap
1297 | wc
1298 | web
1299 | web0
1300 | web01
1301 | web02
1302 | web03
1303 | web1
1304 | web2
1305 | web3
1306 | web4
1307 | web5
1308 | webadmin
1309 | webcam
1310 | webconf
1311 | webct
1312 | webdb
1313 | webdisk
1314 | weblog
1315 | webmail
1316 | webmail2
1317 | webmaster
1318 | webmin
1319 | webservices
1320 | webstats
1321 | webstore
1322 | whm
1323 | wifi
1324 | wiki
1325 | win
1326 | win32
1327 | windows
1328 | wordpress
1329 | work
1330 | wp
1331 | ws
1332 | wsus
1333 | ww
1334 | ww0
1335 | ww01
1336 | ww02
1337 | ww03
1338 | ww1
1339 | ww2
1340 | ww3
1341 | www
1342 | www-test
1343 | www0
1344 | www01
1345 | www02
1346 | www03
1347 | www1
1348 | www2
1349 | www3
1350 | www4
1351 | www5
1352 | www6
1353 | www7
1354 | wwwm
1355 | wwwold
1356 | wwww
1357 | x
1358 | xml
1359 | zabbix
1360 | zeus
1361 | zimbra
1362 |
--------------------------------------------------------------------------------
/rand/dork-random.py:
--------------------------------------------------------------------------------
1 | import platform,os,random
2 | try:from googlesearch import search
3 | except:os.system("pip install google-search")
4 | rd, gn, lgn, yw, lrd, be, pe = '\033[00;31m', '\033[00;32m', '\033[01;32m', '\033[01;33m', '\033[01;31m', '\033[94m', '\033[01;35m'
5 | cn, k,g = '\033[00;36m', '\033[90m','\033[38;5;130m'
6 | def clear():
7 | if 'Windows' in platform.uname():
8 | from colorama import init
9 | init()
10 | os.system("cls")
11 | elif 'Windows' not in platform.uname():
12 | os.system("clear")
13 | clear()
14 | o = input(f"""{g}
15 | # #
16 | # #
17 | ### ## ### # #
18 | # # # # # # ##
19 | # # # # # # #
20 | ### ## # # #
21 |
22 | {lrd}[{lgn}1{lrd}] {lgn}Dork Sql injection\n\n{lrd}[{lgn}2{lrd}] {lgn}Dork Xss\n\n{lrd}[{lgn}3{lrd}] {lgn}Dork RCE
23 |
24 | {lrd}[{lgn}+{lrd}] {cn}Enter Number : {k}""")
25 | def dork_random(dork):
26 | clear()
27 | print (f"""{k}
28 | .__ __
29 | ______ _______ |__| ___ __ _____ _/ |_ ____
30 | \____ \ \_ __ \ | | \ \/ / \__ \ \ __\ _/ __ \
31 | | |_> > | | \/ | | \ / / __ \_ | | \ ___/
32 | | __/ |__| |__| \_/ (____ / |__| \___>
33 | |__|
34 | \n""")
35 | try:
36 | dork,page,time,save = dork,int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Number Page{k} : {cn}")),int(input(f"{lrd}[{lgn}+{lrd}] {lgn}Timeout {k}: {cn}")),input(f"{lrd}[{lgn}+{lrd}] {lgn}save location : {k}")
37 | nyx = 0
38 | for i in search(dork, tld="com", lang="en", num=int(page), start=0, stop=None, pause=int(time)):
39 | with open(save, 'a') as f:
40 | f.write(f'{i}\n')
41 | nyx += 1
42 | print(f'\n{lrd}[{lgn}{nyx}{lrd}] {yw}=>> {lrd}[{k}{i}{lrd}]')
43 | if nyx >= int(time):
44 | break;
45 | print(f'\n{yw}------------------------\n{lrd}[{lgn}+{lrd}] {gn}Saved : {lgn}{save}\n{lrd}[{lgn}+{lrd}] {gn}Number of sites found: {k}{nyx}')
46 | except ValueError:
47 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error Input')
48 | except KeyboardInterrupt:
49 | exit(f'{lrd}[{rd}-{lrd}] {rd}Error')
50 |
51 | if o == '1':
52 | with open("rand/sqli.txt",'r') as file:
53 | lines = file.readlines()
54 | random_line = random.choice(lines)
55 | dork_random(random_line)
56 |
57 | elif o == '2':
58 | with open("rand/xss.txt",'r') as file:
59 | lines = file.readlines()
60 | random_line = random.choice(lines)
61 | dork_random(random_line)
62 |
63 | elif o == '3':
64 | with open("rand/lfi.txt",'r') as file:
65 | lines = file.readlines()
66 | random_line = random.choice(lines)
67 | dork_random(random_line)
68 |
--------------------------------------------------------------------------------
/rand/lfi.txt:
--------------------------------------------------------------------------------
1 | /includes/header.php?systempath=
2 | /Gallery/displayCategory.php?basepath=
3 | /index.inc.php?PATH_Includes=
4 | /ashnews.php?pathtoashnews=
5 | /ashheadlines.php?pathtoashnews=
6 | /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
7 | /demo/includes/init.php?user_inc=
8 | /jaf/index.php?show=
9 | /inc/shows.inc.php?cutepath=
10 | /poll/admin/common.inc.php?base_path=
11 | /pollvote/pollvote.php?pollname=
12 | /sources/post.php?fil_config=
13 | /modules/My_eGallery/public/displayCategory.php?basepath=
14 | /bb_lib/checkdb.inc.php?libpach=
15 | /include/livre_include.php?no_connect=lol&chem_absolu=
16 | /index.php?from_market=Y&pageurl=
17 | /modules/mod_mainmenu.php?mosConfig_absolute_path=
18 | /pivot/modules/module_db.php?pivot_path=
19 | /modules/4nAlbum/public/displayCategory.php?basepath=
20 | /derniers_commentaires.php?rep=
21 | /modules/coppermine/themes/default/theme.php?THEME_DIR=
22 | /modules/coppermine/include/init.inc.php?CPG_M_DIR=
23 | /modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
24 | /coppermine/themes/maze/theme.php?THEME_DIR=
25 | /myPHPCalendar/admin.php?cal_dir=
26 | /agendax/addevent.inc.php?agendax_path=
27 | /modules/mod_mainmenu.php?mosConfig_absolute_path=
28 | /modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
29 | /main.php?page=
30 | /default.php?page=
31 | /index.php?action=
32 | /index1.php?p=
33 | /index2.php?x=
34 | /index2.php?content=
35 | /index.php?conteudo=
36 | /index.php?cat=
37 | /include/new-visitor.inc.php?lvc_include_dir=
38 | /modules/agendax/addevent.inc.php?agendax_path=
39 | /shoutbox/expanded.php?conf=
40 | /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
41 | /pivot/modules/module_db.php?pivot_path=
42 | /library/editor/editor.php?root=
43 | /library/lib.php?root=
44 | /e107/e107_handlers/secure_img_render.php?p=
45 | /zentrack/index.php?configFile=
46 | /main.php?x=
47 | /becommunity/community/index.php?pageurl=
48 | /GradeMap/index.php?page=
49 | /mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=
50 | /zentrack/index.php?configFile=
51 | /pivot/modules/module_db.php?pivot_path=
52 | /inc/header.php/step_one.php?server_inc=
53 | /install/index.php?lng=../../include/main.inc&G_PATH=
54 | /inc/pipe.php?HCL_path=
55 | /include/write.php?dir=
56 | /include/new-visitor.inc.php?lvc_include_dir=
57 | /includes/header.php?systempath=
58 | /support/mailling/maillist/inc/initdb.php?absolute_path=
59 | /coppercop/theme.php?THEME_DIR=
60 | /zentrack/index.php?configFile=
61 | /pivot/modules/module_db.php?pivot_path=
62 | /inc/header.php/step_one.php?server_inc=
63 | /install/index.php?lng=../../include/main.inc&G_PATH=
64 | /inc/pipe.php?HCL_path=
65 | /include/write.php?dir=
66 | /include/new-visitor.inc.php?lvc_include_dir=
67 | /includes/header.php?systempath=
68 | /support/mailling/maillist/inc/initdb.php?absolute_path=
69 | /coppercop/theme.php?THEME_DIR=
70 | /becommunity/community/index.php?pageurl=
71 | /shoutbox/expanded.php?conf=
72 | /agendax/addevent.inc.php?agendax_path=
73 | /myPHPCalendar/admin.php?cal_dir=
74 | /yabbse/Sources/Packages.php?sourcedir=
75 | /zboard/zboard.php
76 | /path_of_cpcommerce/_functions.php?prefix
77 | /dotproject/modules/projects/addedit.php?root_dir=
78 | /dotproject/modules/projects/view.php?root_dir=
79 | /dotproject/modules/projects/vw_files.php?root_dir=
80 | /dotproject/modules/tasks/addedit.php?root_dir=
81 | /dotproject/modules/tasks/viewgantt.php?root_dir=
82 | /My_eGallery/public/displayCategory.php?basepath=
83 | /modules/My_eGallery/public/displayCategory.php?basepath=
84 | /modules/4nAlbum/public/displayCategory.php?basepath=
85 | /modules/coppermine/themes/default/theme.php?THEME_DIR=
86 | /modules/agendax/addevent.inc.php?agendax_path=
87 | /modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
88 | /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
89 | /modules/coppermine/include/init.inc.php?CPG_M_DIR=
90 | /modules/mod_mainmenu.php?mosConfig_absolute_path=
91 | /shoutbox/expanded.php?conf=
92 | /pivot/modules/module_db.php?pivot_path=
93 | /library/editor/editor.php?root=
94 | /library/lib.php?root=
95 | /e107/e107_handlers/secure_img_render.php?p=
96 | /main.php?x=
97 | /main.php?page=
98 | /default.php?page=
99 | /index.php?meio.php=
100 | /index.php?include=
101 | /index.php?inc=
102 | /index.php?page=
103 | /index.php?pag=
104 | /index.php?p=
105 | /index.php?x=
106 | /index.php?open=
107 | /index.php?open=
108 | /index.php?visualizar=
109 | /index.php?pagina=
110 | /index.php?content=
111 | /index.php?cont=
112 | /index.php?c=
113 | /index.php?meio=
114 | /index.php?x=
115 | /index.php?cat=
116 | /index.php?site=
117 | /index.php?configFile=
118 | /index.php?action=
119 | /index.php?do=
120 | /index2.php?x=
121 | /index2.php?content=
122 | /template.php?pagina=
123 | /inc/step_one_tables.php?server_inc=
124 | /GradeMap/index.php?page=
125 | /phpshop/index.php?base_dir=
126 | /admin.php?cal_dir=
127 | /path_of_cpcommerce/_functions.php?prefix=
128 | /contacts.php?cal_dir=
129 | /convert-date.php?cal_dir=
130 | /album_portal.php?phpbb_root_path=
131 | /mainfile.php?MAIN_PATH=
132 | /dotproject/modules/files/index_table.php?root_dir=
133 | /html/affich.php?base=
134 | /gallery/init.php?HTTP_POST_VARS=
135 | /pm/lib.inc.php?pm_path=
136 | /ideabox/include.php?gorumDir=
137 | index2.php?includes_dir=
138 | forums/toplist.php?phpbb_root_path=
139 | forum/toplist.php?phpbb_root_path=
140 | admin/config_settings.tpl.php?include_path=
141 | include/common.php?include_path=
142 | event/index.php?page=
143 | forum/index.php?includeFooter=
144 | forums/index.php?includeFooter=
145 | forum/bb_admin.php?includeFooter=
146 | forums/bb_admin.php?includeFooter=
147 | language/lang_english/lang_activity.php?phpbb_root_path=
148 | forum/language/lang_english/lang_activity.php?phpbb_root_path=
149 | blend_data/blend_common.php?phpbb_root_path=
150 | master.php?root_path=
151 | includes/kb_constants.php?module_root_path=
152 | forum/includes/kb_constants.php?module_root_path=
153 | forums/includes/kb_constants.php?module_root_path=
154 | classes/adodbt/sql.php?classes_dir=
155 | agenda.php3?rootagenda=
156 | agenda2.php3?rootagenda=
157 | public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=
158 | extras/poll/poll.php?file_newsportal=
159 | index.php?site_path=
160 | mail/index.php?site_path=
161 | fclick/show.php?path=
162 | show.php?path=
163 | calogic/reconfig.php?GLOBALS[CLPath]=
164 | eshow.php?Config_rootdir=
165 | auction/auction_common.php?phpbb_root_path=
166 | index.php?inc_dir=
167 | calendar/index.php?inc_dir=
168 | modules/TotalCalendar/index.php?inc_dir=
169 | modules/calendar/index.php?inc_dir=
170 | calendar/embed/day.php?path=
171 | ACalendar/embed/day.php?path=
172 | calendar/add_event.php?inc_dir=
173 | claroline/auth/extauth/drivers/ldap.inc.php?clarolineRepositorySys=
174 | claroline/auth/ldap/authldap.php?includePath=
175 | docebo/modules/credits/help.php?lang=
176 | modules/credits/help.php?lang=
177 | config.php?returnpath=
178 | editsite.php?returnpath=
179 | in.php?returnpath=
180 | addsite.php?returnpath=
181 | includes/pafiledb_constants.php?module_root_path=
182 | phpBB/includes/pafiledb_constants.php?module_root_path=
183 | pafiledb/includes/pafiledb_constants.php?module_root_path=
184 | auth/auth.php?phpbb_root_path=
185 | auth/auth_phpbb/phpbb_root_path=
186 | phpdig/includes/config.php?relative_script_path=
187 | includes/phpdig/includes/config.php?relative_script_path=
188 | includes/dbal.php?eqdkp_root_path=
189 | eqdkp/includes/dbal.php?eqdkp_root_path=
190 | dkp/includes/dbal.php?eqdkp_root_path=
191 | path/include/SQuery/gameSpy2.php?libpath=
192 | topsites/config.php?returnpath=
193 | ubbthreads/addpost_newpoll.php?addpoll=thispath=
194 | forum/addpost_newpoll.php?thispath=
195 | forums/addpost_newpoll.php?thispath=
196 | ubbthreads/ubbt.inc.php?thispath=
197 | forums/ubbt.inc.php?thispath=
198 | forum/ubbt.inc.php?thispath=
199 | forum/admin/addentry.php?phpbb_root_path=
200 | admin/addentry.php?phpbb_root_path=
201 | index.php?f=
202 | index.php?act=
203 | ipchat.php?root_path=
204 | stats.php?dir[func]=dir[base]=
205 | ladder/stats.php?dir[base]=
206 | ladders/stats.php?dir[base]=
207 | sphider/admin/configset.php?settings_dir=
208 | admin/configset.php?settings_dir=
209 | vwar/admin/admin.php?vwar_root=
210 | modules/vwar/admin/admin.php?vwar_root=
211 | modules/vWar_Account/includes/get_header.php?vwar_root=
212 | modules/vWar_Account/includes/functions_common.php?vwar_root2=
213 | sphider/admin/configset.php?settings_dir=
214 | admin/configset.php?settings_dir=
215 | impex/ImpExData.php?systempath=
216 | forum/impex/ImpExData.php?systempath=
217 | forums/impex/ImpExData.php?systempath=
218 | application.php?base_path=
219 | index.php?theme_path=
220 | become_editor.php?theme_path=
221 | add.php?theme_path=
222 | bad_link.php?theme_path=
223 | browse.php?theme_path=
224 | detail.php?theme_path=
225 | fav.php?theme_path=
226 | get_rated.php?theme_path=
227 | login.php?theme_path=
228 | mailing_list.php?theme_path=
229 | new.php?theme_path=
230 | modify.php?theme_path=
231 | pick.php?theme_path=
232 | power_search.php?theme_path=
233 | rating.php?theme_path=
234 | register.php?theme_path=
235 | review.php?theme_path=
236 | rss.php?theme_path=
237 | search.php?theme_path=
238 | send_pwd.php?theme_path=
239 | sendmail.php?theme_path=
240 | tell_friend.php?theme_path=
241 | top_rated.php?theme_path=
242 | user_detail.php?theme_path=
243 | user_search.php?theme_path=
244 | invoice.php?base_path=
245 | cgi-bin//classes/adodbt/sql.php?classes_dir=
246 | cgi-bin/install/index.php?G_PATH=
247 | cgi-bin/include/print_category.php?dir=
248 | includes/class_template.php?quezza_root_path=
249 | bazar/classified_right.php?language_dir=
250 | classified_right.php?language_dir=
251 | phpBazar/classified_right.php?language_dir=
252 | chat/messagesL.php3?cmd=
253 | phpMyChat/chat/messagesL.php3?cmd=
254 | bbs/include/write.php?dir=
255 | visitorupload.php?cmd=
256 | index.php?template=
257 | armygame.php?libpath=
258 | lire.php?rub=
259 | pathofhostadmin/?page=
260 | apa_phpinclude.inc.php?apa_module_basedir=
261 | index.php?req_path=
262 | research/boards/encapsbb-0.3.2_fixed/index_header.php?root=
263 | Farsi1/index.php?archive=
264 | index.php?archive=
265 | show_archives.php?template=
266 | forum/include/common.php?pun_root=
267 | vuln.php?=
268 | cgi-bin//include/write.php?dir=
269 | admin/common.inc.php?basepath=
270 | pm/lib.inc.php?sfx=
271 | pm/lib.inc.php?pm_path=
272 | artmedic-kleinanzeigen-path/index.php?id=
273 | index.php?pagina=
274 | osticket/include/main.php?include_dir=
275 | quick_reply.php?phpbb_root_path=
276 | zboard/include/write.php?dir=
277 | PATH/admin/plog-admin-functions.php?configbasedir=
278 | path_to_phpgreetz/content.php?content=
279 | path_to_qnews/q-news.php?id=
280 | _conf/core/common-tpl-vars.php?confdir=
281 | votebox.php?VoteBoxPath=
282 | al_initialize.php?alpath=
283 | protection.php?siteurl=
284 | modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=
285 | index2.php?includes_dir=
286 | classes.php?LOCAL_PATH=
287 | extensions/moblog/moblog_lib.php?basedir=
288 | phpWebLog/include/init.inc.php?G_PATH=
289 | admin/objects.inc.php4?Server=
290 | trg_news30/trgnews/install/article.php?dir=
291 | block.php?Include=
292 | arpuivo.php?data=
293 | path_to_gallery/setup/index.php?GALLERY_BASEDIR=
294 | include/help.php?base=
295 | index.php?[Home]=
296 | path_to_script/block.php?Include=
297 | examples/phonebook.php?page=
298 | PHPNews/auth.php?path=
299 | include/print_category.php?dir=
300 | skin/zero_vote/login.php?dir=
301 | skin/zero_vote/setup.php?dir=
302 | skin/zero_vote/ask_password.php?dir=
303 | gui/include/sql.php?include_path=
304 | webmail/lib/emailreader_execute_on_each_page.inc.php?emailread er_ini=
305 | email.php?login=cer_skin=
306 | PhotoGal/ops/gals.php?news_file=
307 | index.php?custom=
308 | loginout.php?cutepath=
309 | xcomic/initialize.php?xcomicRootPath=
310 | skin/zero_vote/setup.php?dir=
311 | skin/zero_vote/error.php? dir=
312 | includes/db_adodb.php?baseDir=
313 | includes/db_connect.php?baseDir=
314 | includes/session.php?baseDir=
315 | modules/admin/vw_usr_roles.php?baseDir=
316 | modules/public/calendar.php?baseDir=
317 | modules/public/date_format.php?baseDir=
318 | modules/tasks/gantt.php?baseDir=
319 | mantis/login_page.php?g_meta_include_file=
320 | phpgedview/help_text_vars.php?PGV_BASE_DIRECTORY=
321 | modules/My_eGallery/public/displayCategory.php?basepath=
322 | dotproject/modules/files/index_table.php?root_dir=
323 | nukebrowser.php?filnavn=
324 | bug_sponsorship_list_view_inc.php?t_core_path=
325 | modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
326 | modules/coppermine/themes/maze/theme.php?THEME_DIR=
327 | modules/coppermine/include/init.inc.php?CPG_M_DIR=
328 | includes/calendar.php?phpc_root_path=
329 | includes/setup.php?phpc_root_path=
330 | phpBB/admin/admin_styles.php?mode=
331 | aMember/plugins/db/mysql/mysql.inc.php?config=
332 | admin/lang.php?CMS_ADMIN_PAGE=
333 | inc/pipe.php?HCL_path=
334 | include/write.php?dir=
335 | becommunity/community/index.php?pageurl=
336 | modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
337 | modules/mod_mainmenu.php?mosConfig_absolute_path=
338 | modules/agendax/addevent.inc.php?agendax_path=
339 | shoutbox/expanded.php?conf=
340 | modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
341 | index.php?page=
342 | index.php?pag=
343 | index.php?include=
344 | index.php?content=
345 | index.php?cont=
346 | index.php?c=
347 | modules/My_eGallery/index.php?basepath=
348 | modules/newbb_plus/class/forumpollrenderer.php?bbPath=
349 | journal.php?m=
350 | index.php?m=
351 | links.php?c=
352 | forums.php?m=
353 | list.php?c=
354 | user.php?xoops_redirect=
355 | index.php?id=
356 | r.php?url=
357 | inc/formmail.inc.php?script_root=
358 | include/init.inc.php?G_PATH=
359 | backend/addons/links/index.php?PATH=
360 | protection.php?siteurl=
361 | htmltonuke.php?filnavn=
362 | mail_autocheck.php?pm_path=
363 | index.php?p=
364 | modules/4nAlbum/public/displayCategory.php?basepath=
365 | e107/e107_handlers/secure_img_render.php?p=
366 | include/new-visitor.inc.php?lvc_include_dir=
367 | path_of_cpcommerce/_functions.php?prefix=
368 | community/modules/agendax/addevent.inc.php?agendax_path=
369 | library/editor/editor.php?root=
370 | library/lib.php?root=
371 | zentrack/index.php?configFile=
372 | pivot/modules/module_db.php?pivot_path=
373 | main.php?x=
374 | myPHPCalendar/admin.php?cal_dir=
375 | index.php/main.php?x=
376 | index.php?x=
377 | index.php?open=
378 | index.php?visualizar=
379 | template.php?pagina=
380 | index.php?inc=
381 | includes/include_onde.php?include_file=
382 | index.php?pg=
383 | index.php?show=
384 | index.php?cat=
385 | print.php?val1=
386 | cmd.php?function=
387 | iframe.php?file=
388 | os/pointer.php?url=
389 | p_uppc_francais/pages_php/p_aidcon_conseils/index.php?FM=
390 | index.php?file=
391 | db.php?path_local=
392 | phpGedView/individual.php?PGV_BASE_DIRECTORY=
393 | Sources/Packages.php?sourcedir=
394 | yabbse/Sources/Packages.php?sourcedir=
395 | modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=
396 | cgi-bin//gadgets/Blog/BlogModel.php?path=
397 | cgi-bin//admin.php?cal_dir=
398 | gallery/captionator.php?GALLERY_BASEDIR=
399 | cgi-bin/main.php?x=
400 | Blog/BlogModel.php?path=
401 | admin.php?cal_dir=
402 | expanded.php?conf=
403 | pollvote/pollvote.php?pollname=
404 | displayCategory.php?basepath=
405 | phpBB2/admin/admin_cash.php?phpbb_root_path=
406 | modules/foro/includes/functions_admin.php?phpbb_root_path=
407 | modules/Forums/admin/admin_forums.php?phpEx=
408 | modules/Forums/admin/admin_disallow.php?phpEx=
409 | modules/Forums/admin/admin_smilies.php?phpEx=
410 | modules/Forums/admin/admin_board.php?phpEx=
411 | modules/Forums/admin/admin_users.php?phpEx=
412 | modules/Forums/admin/admin_mass_email.php?phpEx=
413 | modules/Forums/admin/admin_forum_prune.php?phpEx=
414 | modules/Forums/admin/admin_styles.php?phpbb_root_path=
415 | index.php?hc=
416 | mt-comments.cgi?id=
417 | webcalendar/tools/send_reminders.php?includedir=
418 | cmd/product_info.php/products_id/1622/shop_content.php?coID=
419 | addevent.inc.php?agendax_path=
420 | step_one.php?server_inc=
421 | upgrade_album.php?GALLERY_BASEDIR=
422 | search.php?cutepath=
423 | modules.php?name=
424 | wagora/extras//quicklist.php?site=
425 | vCard/admin/define.inc.php?match=
426 | forum/ubbthreads.php?Cat=
427 | admin/includes/classes/spaw/spaw_control.class.php?spaw_root=
428 | secure.php?cfgProgDir=
429 | modules/My_eGallery/public//inc/?HCL_path=
430 | modules/My_eGallery/public/imagen.php?basepath=
431 | adlayer.php?layerstyle=
432 | Forums/bb_smilies.php?name=
433 | modules/Forums/bb_smilies.php?name=
434 | gadgets/Blog/BlogModel.php?path=
435 | learnlinc/clmcpreload.php?CLPATH=
436 | modernbill/samples/news.php?DIR=
437 | religions/faq.php?page=
438 | forum/viewtopic.php?t=
439 | announcements.php?includePath=
440 | inc/header.php/step_one.php?server_inc=
441 | phpatm/index.php?include_location=
442 | gb/form.inc.php3?lang=
443 | shannen/index.php?x=
444 | family/phpgedview/index.php?PGV_BASE_DIRECTORY=
445 | main.php?left=
446 | forum/misc.php?action=
447 | nucleus/libs/globalfunctions.php?DIR_LIBS=
448 | show_archives.php?cutepath=
449 | gallery.php=
450 | magicforum/misc.php?action=
451 | forum/admin/actions/del.php?include_path=
452 | index.php?meio=
453 | local/investing_industrialeastate1.php?a=
454 | modules/coppermine/themes/default/theme.php?THEME_DIR
455 | Popper/index.php?childwindow.inc.php?form=
456 | class.mysql.php?path_to_bt_dir=
457 | include/footer.inc.php?_AMLconfig[cfg_serverpath]=
458 | eyeos/desktop.php?baccio=
459 | ashnews.php?pathtoashnews=
460 | index.php?modpath=
461 | becommunity/community/index.php?pageurl=
462 | index.php?sqld=
463 | modules/module_db.php?pivot_path=
464 | catalog/includes/include_once.php?include_file=
465 | cgi-bin/calendar.pl?fromTemplate=
466 | live/inc/pipe.php?HCL_path=
467 | zb41/include/write.php?dir=
468 | cgi-bin/awstats.pl?logfile=
469 | presse/stampa.php3?azione=
470 | inc/step_one_tables.php?server_inc=
471 | index.php?mainpage=
472 | phpprojekt/lib/authform.inc.php?path_pre=
473 | captionator.php?GALLERY_BASEDIR=
474 | _head.php?_zb_path=.example.com
475 | achievo/atk/javascript/class.atkdateattribute.js.php?config_atkroot=
476 | gallery/captionator.php?GALLERY_BASEDIR=.example.com
477 | globals.php3?LangCookie=.example.com
478 | include/msql.php?inc_dir=
479 | include/mssql7.php?inc_dir=
480 | include/mysql.php?inc_dir=
481 | include/oci8.php?inc_dir=
482 | include/postgres.php?inc_dir=
483 | include/postgres65.php?inc_dir=
484 | install.php?phpbb_root_dir=
485 | mantis/login_page.php?g_meta_inc_dir=
486 | page.php?template=
487 | phorum/admin/actions/del.php?include_path=
488 | pollensondage.inc.php?app_path=
489 | user/agora_user.php?inc_dir=
490 | user/ldap_example.php?inc_dir=
491 | userlist.php?ME=.example.com
492 | _functions.php?prefix=
493 | cpcommerce/_functions.php?prefix=
494 | ashnews.php?pathtoashnews=cd /tmp;wget
495 | b2-tools/gm-2-b2.php?b2inc=
496 | includes/include_once.php?include_file=
497 | modules.php?name=jokeid=
498 | index.php?site=
499 | livehelp/inc/pipe.php?HCL_path=
500 | hcl/inc/pipe.php?HCL_path=
501 | support/faq/inc/pipe.php?HCL_path=
502 | help/faq/inc/pipe.php?HCL_path=
503 | helpcenter/inc/pipe.php?HCL_path=
504 | live-support/inc/pipe.php?HCL_path=
505 | gnu3/index.php?doc=
506 | gnu/index.php?doc=
507 | phpgwapi/setup/tables_update.inc.php?appdir=
508 | includes/calendar.php?phpc_root_path=
509 | includes/setup.php?phpc_root_path=
510 | inc/authform.inc.php?path_pre=
511 | include/authform.inc.php?path_pre=
512 | web_statistics/modules/coppermine/themes/default/theme.php?THEME_DIR=
513 | web_statistics//tools/send_reminders.php?includedir=
514 | web_statistics//include/write.php?dir=
515 | web_statistics//modules/My_eGallery/public/displayCategory.php?basepath=
516 | web_statistics//calendar/tools/send_reminders.php?includedir=
517 | web_statistics//skin/zero_vote/error.php?dir=
518 | web_statistics//coppercop/theme.php?THEME_DIR=
519 | includes/header.php?systempath=
520 | Gallery/displayCategory.php?basepath=
521 | index.inc.php?PATH_Includes=
522 | ashheadlines.php?pathtoashnews=
523 | demo/includes/init.php?user_inc=
524 | jaf/index.php?show=
525 | inc/shows.inc.php?cutepath=
526 | poll/admin/common.inc.php?base_path=
527 | sources/post.php?fil_config=
528 | bb_lib/checkdb.inc.php?libpach=
529 | include/livre_include.php?chem_absolu=
530 | index.php?pageurl=
531 | derniers_commentaires.php?rep=
532 | modules/coppermine/themes/default/theme.php?THEME_DIR=
533 | coppermine/themes/maze/theme.php?THEME_DIR=
534 | agendax/addevent.inc.php?agendax_path=
535 | main.php?page=
536 | default.php?page=
537 | index.php?action=
538 | index1.php?p=
539 | index2.php?x=
540 | index2.php?content=
541 | index.php?conteudo=
542 | GradeMap/index.php?page=
543 | phpopenchat/contrib/yabbse/poc.php?sourcedir=
544 | calendar/calendar.php?serverPath=
545 | calendar/functions/popup.php?serverPath=
546 | calendar/events/header.inc.php?serverPath=
547 | calendar/events/datePicker.php?serverPath=
548 | calendar/setup/setupSQL.php?serverPath=
549 | calendar/setup/header.inc.php?serverPath=
550 | install/index.php?G_PATH=
551 | support/mailling/maillist/inc/initdb.php?absolute_path=
552 | coppercop/theme.php?THEME_DIR=
553 | dotproject/modules/projects/addedit.php?root_dir=
554 | dotproject/modules/projects/view.php?root_dir=
555 | dotproject/modules/projects/vw_files.php?root_dir=
556 | dotproject/modules/tasks/addedit.php?root_dir=
557 | dotproject/modules/tasks/viewgantt.php?root_dir=
558 | My_eGallery/public/displayCategory.php?basepath=
559 | index.php?meio.php=
560 | index.php?configFile=
561 | index.php?do=
562 | phpshop/index.php?base_dir=
563 | contacts.php?cal_dir=
564 | convert-date.php?cal_dir=
565 | album_portal.php?phpbb_root_path=
566 | mainfile.php?MAIN_PATH=
567 | html/affich.php?base=
568 | gallery/init.php?HTTP_POST_VARS=
569 | ideabox/include.php?gorumDir=
570 | stats/modules/My_eGallery/index.php?basepath=
571 | stats/include/write.php?dir=
572 | stats/tools/send_reminders.php?includedir=
573 | index.cgiupgrade_album.php?GALLERY_BASEDIR=
574 | pollvote/pollvote.php?pollname
575 | includes/page_header.php?dir=
576 | index2.php?mosConfig_absolute_path=
577 | new/bbs//include/write.php?dir=
578 | index.php?mosConfig_absolute_path=
579 | modules/My_eGallery/public/inc/?HCL_path=
580 | /forum/auth/auth.php?phpbb_root_path=
581 | /forum/auth/auth_phpbb/phpbb_root_path=
582 | /cutenews/comments.php?cutepath=
583 | /library/lib.php?root=
584 | /impex/ImpExData.php?systempath=
585 | /coppermine/thumbnails.php?lang=
586 | /gallery/thumbnails.php?lang=
587 | /aWebNews/visview.php?path_to_news=
588 | /ashnews.php?pathtoashnews=
589 | /4images/index.php?template=
590 | /galeri/index.php?template=
591 | /components/com_loudmounth/includes/abbc/abbc.class.php?mosConfig_absolute_path=
592 | /components/com_smf/smf.php?mosConfig_absolute_path=
593 | /components/com_videodb/core/videodb.class.xml.php?mosConfig_absolute_path=
594 | /components/com_simpleboard/image_upload.php?sbp=
595 | /gallery/index.php?template=
596 | /auth/auth.php?phpbb_root_path=
597 | /auth/auth_phpbb/phpbb_root_path=
598 | /modules/Forums/admin/index.php?phpbb_root_path=
599 | /modules/Forums/admin/admin_avatar.php?phpbb_root_path=
600 | /modules/Forums/admin/admin_styles.php?phpbb_root_path=
601 | /_wk/wk_lang.php?wkPath=
602 | /shoutbox/expanded.php?conf=
603 | /myPHPCalendar/admin.php?cal_dir=
604 | /phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=
605 | /modules/Forums/admin/admin_board.php?phpEx=
606 | /modules/Forums/admin/admin_users.php?phpEx=
607 | /library/editor/editor.php?root=
608 | /library/lib.php?root=
609 | /e107/e107_handlers/secure_img_render.php?p=
610 | /modules/My_eGallery/public/displayCategory.php?basepath=
611 | /modules/My_eGallery/index.php?basepath=
612 | /modules/coppermine/themes/default/theme.php?THEME_DIR=
613 | /modules/4nAlbum/public/displayCategory.php?basepath=
614 | /modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
615 | /modules/coppermine/themes/maze/theme.php?THEME_DIR=
616 | /modules/coppermine/include/init.inc.php?CPG_M_DIR=
617 | /phpBB/admin/admin_styles.php?mode=
618 | /modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=
619 | /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
620 | /index.php?page=
621 | /index.php?pag=
622 | /index.php?sayfa=
623 | /index.php?pg=
624 | /index.php?include=
625 | /index.php?content=
--------------------------------------------------------------------------------
/rand/sqli.txt:
--------------------------------------------------------------------------------
1 | docDetail.aspx?chnum=
2 | index.php?section=
3 | index.php?page=
4 | index.php?page=
5 | en/publications.php?id=
6 | events/detail.php?ID=
7 | forum/profile.php?id=
8 | media/pr.php?id=
9 | content.php?ID=
10 | cloudbank/detail.php?ID=
11 | pages.php?id=
12 | news.php?id=
13 | beitrag_D.php?id=
14 | content/index.php?id=
15 | index.php?i=
16 | ?action=
17 | index.php?page=
18 | beitrag_F.php?id=
19 | index.php?pageid=
20 | page.php?modul=
21 | detail.php?id=
22 | index.php?w=
23 | index.php?modus=
24 | news.php?id=
25 | news.php?id=
26 | aktuelles/meldungen-detail.php?id=
27 | item.php?id=
28 | obio/detail.php?id=
29 | page/de/produkte/produkte.php?prodID=
30 | packages_display.php?ref=
31 | shop/index.php?cPath=
32 | modules.php?bookid=
33 | view/7/9628/1.html?reply=
34 | product_details.php?prodid=
35 | catalog/product.php?pid=
36 | rating.php?id=
37 | ?page=
38 | catalog/main.php?cat_id=
39 | index.php?page=
40 | detail.php?prodid=
41 | products/product.php?pid=
42 | news.php?id=
43 | book_detail.php?BookID=
44 | catalog/main.php?cat_id=
45 | catalog/main.php?cat_id=
46 | default.php?cPath=
47 | catalog/main.php?cat_id=
48 | catalog/main.php?cat_id=
49 | category.php?catid=
50 | categories.php?cat=
51 | categories.php?cat=
52 | detail.php?prodID=
53 | detail.php?id=
54 | category.php?id=
55 | hm/inside.php?id=
56 | index.php?area_id=
57 |
58 | gallery.php?id=
59 | products.php?cat=
60 | products.php?cat=
61 | media/pr.php?id=
62 | books/book.php?proj_nr=
63 | products/card.php?prodID=
64 | general.php?id=
65 | news.php?t=
66 | usb/devices/showdev.php?id=
67 | content/detail.php?id=
68 | templet.php?acticle_id=
69 | news/news/title_show.php?id=
70 | product.php?id=
71 | index.php?url=
72 | cryolab/content.php?cid=
73 | ls.php?id=
74 | s.php?w=
75 | abroad/page.php?cid=
76 | bayer/dtnews.php?id=
77 | news/temp.php?id=
78 | index.php?url=
79 | book/bookcover.php?bookid=
80 | index.php/en/component/pvm/?view=
81 | product/list.php?pid=
82 | cats.php?cat=
83 | software_categories.php?cat_id=
84 | print.php?sid=
85 | about.php?cartID=
86 | accinfo.php?cartId=
87 | acclogin.php?cartID=
88 | add.php?bookid=
89 | add_cart.php?num=
90 | addcart.php?
91 | addItem.php
92 | add-to-cart.php?ID=
93 | addToCart.php?idProduct=
94 | addtomylist.php?ProdId=
95 | adminEditProductFields.php?intProdID=
96 | advSearch_h.php?idCategory=
97 | affiliate.php?ID=
98 | affiliate-agreement.cfm?storeid=
99 | affiliates.php?id=
100 | ancillary.php?ID=
101 | archive.php?id=
102 | article.php?id=
103 | phpx?PageID
104 | basket.php?id=
105 | Book.php?bookID=
106 | book_list.php?bookid=
107 | book_view.php?bookid=
108 | BookDetails.php?ID=
109 | browse.php?catid=
110 | browse_item_details.php
111 | Browse_Item_Details.php?Store_Id=
112 | buy.php?
113 | buy.php?bookid=
114 | bycategory.php?id=
115 | cardinfo.php?card=
116 | cart.php?action=
117 | cart.php?cart_id=
118 |
119 | view_items.php?id=
120 | home.php?cat=
121 | item_book.php?CAT=
122 | www/index.php?page=
123 | schule/termine.php?view=
124 | goods_detail.php?data=
125 | storemanager/contents/item.php?page_code=
126 | view_items.php?id=
127 | customer/board.htm?mode=
128 | help/com_view.html?code=
129 | n_replyboard.php?typeboard=
130 | eng_board/view.php?T****=
131 | prev_results.php?prodID=
132 | bbs/view.php?no=
133 | gnu/?doc=
134 | zb/view.php?uid=
135 | global/product/product.php?gubun=
136 | m_view.php?ps_db=
137 | productlist.php?tid=
138 | product-list.php?id=
139 | onlinesales/product.php?product_id=
140 | garden_equipment/Fruit-Cage/product.php?pr=
141 | product.php?shopprodid=
142 | product_info.php?products_id=
143 | productlist.php?tid=
144 | showsub.php?id=
145 | productlist.php?fid=
146 | products.php?cat=
147 | products.php?cat=
148 | product-list.php?id=
149 | product.php?sku=
150 | store/product.php?productid=
151 | products.php?cat=
152 | productList.php?cat=
153 | product_detail.php?product_id=
154 | product.php?pid=
155 | view_items.php?id=
156 | more_details.php?id=
157 | county-facts/diary/vcsgen.php?id=
158 | idlechat/message.php?id=
159 | podcast/item.php?pid=
160 | products.php?act=
161 | details.php?prodId=
162 | socsci/events/full_details.php?id=
163 | ourblog.php?categoryid=
164 | mall/more.php?ProdID=
165 | archive/get.php?message_id=
166 | review/review_form.php?item_id=
167 | english/publicproducts.php?groupid=
168 | news_and_notices.php?news_id=
169 | rounds-detail.php?id=
170 | gig.php?id=
171 | board/view.php?no=
172 | index.php?modus=
173 | news_item.php?id=
174 | rss.php?cat=
175 | products/product.php?id=
176 | details.php?ProdID=
177 | els_/product/product.php?id=
178 | store/description.php?iddesc=
179 | socsci/news_items/full_story.php?id=
180 | naboard/memo.php?bd=
181 | bookmark/mybook/bookmark.php?bookPageNo=
182 | board/board.html?table=
183 | kboard/kboard.php?board=
184 | order.asp?lotid=
185 | goboard/front/board_view.php?code=
186 | bbs/bbsView.php?id=
187 | boardView.php?bbs=
188 | eng/rgboard/view.php?&bbs_id=
189 | product/product.php?cate=
190 | content.php?p=
191 | page.php?module=
192 | ?pid=
193 | bookpage.php?id=
194 | cbmer/congres/page.php?LAN=
195 | content.php?id=
196 | news.php?ID=
197 | photogallery.php?id=
198 | index.php?id=
199 | product/product.php?product_no=
200 | nyheder.htm?show=
201 | book.php?ID=
202 | print.php?id=
203 | detail.php?id=
204 | book.php?id=
205 | content.php?PID=
206 | more_detail.php?id=
207 | content.php?id=
208 | view_items.php?id=
209 | view_author.php?id=
210 | main.php?id=
211 | english/fonction/print.php?id=
212 | magazines/adult_magazine_single_page.php?magid=
213 | product_details.php?prodid=
214 | magazines/adult_magazine_full_year.php?magid=
215 | products/card.php?prodID=
216 | catalog/product.php?cat_id=
217 | e_board/modifyform.html?code=
218 | community/calendar-event-fr.php?id=
219 | products.php?p=
220 | news.php?id=
221 | StoreRedirect.php?ID=
222 | subcategories.php?id=
223 | tek9.php?
224 | template.php?Action=Item&pid=
225 | topic.php?ID=
226 | tuangou.php?bookid=
227 | type.php?iType=
228 | updatebasket.php?bookid=
229 | updates.php?ID=
230 | view.php?cid=
231 | view_cart.php?title=
232 | view_detail.php?ID=
233 | viewcart.php?CartId=
234 | viewCart.php?userID=
235 | viewCat_h.php?idCategory=
236 | viewevent.php?EventID=
237 | viewitem.php?recor=
238 | viewPrd.php?idcategory=
239 | ViewProduct.php?misc=
240 | voteList.php?item_ID=
241 | whatsnew.php?idCategory=
242 | WsAncillary.php?ID=
243 | WsPages.php?ID=noticiasDetalle.php?xid=
244 | sitio/item.php?idcd=
245 | index.php?site=
246 | de/content.php?page_id=
247 | gallerysort.php?iid=
--------------------------------------------------------------------------------
/rand/xss.txt:
--------------------------------------------------------------------------------
1 | inurl:".php?cmd="
2 | inurl:".php?z="
3 | inurl:".php?q="
4 | inurl:".php?search="
5 | inurl:".php?query="
6 | inurl:".php?searchstring="
7 | inurl:".php?keyword="
8 | inurl:".php?file="
9 | inurl:".php?years="
10 | inurl:".php?txt="
11 | inurl:".php?tag="
12 | inurl:".php?max="
13 | inurl:".php?from="
14 | inurl:".php?author="
15 | inurl:".php?pass="
16 | inurl:".php?feedback="
17 | inurl:".php?mail="
18 | inurl:".php?cat="
19 | inurl:".php?vote="
20 | inurl:search.php?q=
21 | inurl:com_feedpostold/feedpost.php?url=
22 | inurl:scrapbook.php?id=
23 | inurl:headersearch.php?sid=
24 | inurl:/poll/default.asp?catid=
25 | inurl:/search_results.php?search=
26 | inurl:categoryId inurl:storeId (2 million results)
27 | inurl:resultCatEntryType
28 | inurl:searchTermScope
29 | inurl:”webapp/wcs”
30 | inurl:”ProductListingView”
31 | inurl:”AdvancedSearchDisplay”
32 | inurl:”CompareProductsDisplayView”
33 | inurl:parent_category_rn
--------------------------------------------------------------------------------
/scree/Screenshot_20230811-164406_Pydroid 3.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/esfelurm/google-hacking/a3bd2244067e2bab18aaeb9ad3e3170b6cfdabea/scree/Screenshot_20230811-164406_Pydroid 3.jpg
--------------------------------------------------------------------------------
/scree/Screenshot_20230811-164417_Pydroid 3.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/esfelurm/google-hacking/a3bd2244067e2bab18aaeb9ad3e3170b6cfdabea/scree/Screenshot_20230811-164417_Pydroid 3.jpg
--------------------------------------------------------------------------------
/scree/Screenshot_20230811-165357_Pydroid 3.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/esfelurm/google-hacking/a3bd2244067e2bab18aaeb9ad3e3170b6cfdabea/scree/Screenshot_20230811-165357_Pydroid 3.jpg
--------------------------------------------------------------------------------
/scree/Screenshot_20230811-170141_Pydroid 3.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/esfelurm/google-hacking/a3bd2244067e2bab18aaeb9ad3e3170b6cfdabea/scree/Screenshot_20230811-170141_Pydroid 3.jpg
--------------------------------------------------------------------------------