https://gist.github.com/jhaddix/77253cea49bf4bd4bfd5d384a37ce7a4
# Github dorks work a lot with filename and extension# You can build search like thisfilename:bashrcextension:pemlangage:bash
# Possible to search terms and use these keywords# Some usefull examplesextension:pem private # Private SSH Keysextension:sql mysql dump # MySQL dumpsextension:sql mysql dump password # MySQL dumps with passwordsfilename:wp-config.php # Wordpress config filefilename:.htpasswd # .htpasswdfilename:.git-credentials # Git stored credentialsfilename:.bashrc password # .bashrc files containing passwordsfilename:.bash_profile aws # AWS keys in .bash_profilesextension:json mongolab.com # Keys/Credentials for mongolabHEROKU_API_KEY language:json # Heroku API Keysfilename:filezilla.xml Pass # FTP credentialsfilename:recentservers.xml Pass # FTP credentialsfilename:config.php dbpasswd # PHP Applications databases credentialsshodan_api_key language:python # Shodan API Keys (try others languages)filename:logins.json # Firefox saved password collection (key3.db usually in same repo)filename:settings.py SECRET_KEY # Django secret keys (usually allows for session hijacking, RCE, etc)