Github 搜索关键词
2023-1-3 09:25:35 Author: Ots安全(查看原文) 阅读量:14 收藏

https://gist.github.com/jhaddix/77253cea49bf4bd4bfd5d384a37ce7a4
# Github dorks work a lot with filename and extension# You can build search like thisfilename:bashrcextension:pemlangage:bash
# Possible to search terms and use these keywords# Some usefull examplesextension:pem private # Private SSH Keysextension:sql mysql dump # MySQL dumpsextension:sql mysql dump password # MySQL dumps with passwordsfilename:wp-config.php # Wordpress config filefilename:.htpasswd # .htpasswdfilename:.git-credentials # Git stored credentialsfilename:.bashrc password # .bashrc files containing passwordsfilename:.bash_profile aws # AWS keys in .bash_profilesextension:json mongolab.com # Keys/Credentials for mongolabHEROKU_API_KEY language:json # Heroku API Keysfilename:filezilla.xml Pass # FTP credentialsfilename:recentservers.xml Pass # FTP credentialsfilename:config.php dbpasswd # PHP Applications databases credentialsshodan_api_key language:python # Shodan API Keys (try others languages)filename:logins.json # Firefox saved password collection (key3.db usually in same repo)filename:settings.py SECRET_KEY # Django secret keys (usually allows for session hijacking, RCE, etc)

文章来源: http://mp.weixin.qq.com/s?__biz=MzAxMjYyMzkwOA==&mid=2247496333&idx=3&sn=4aa33ab71f777422d8e13722b7dbcbde&chksm=9badbbc6acda32d019a72e1d85bb932a330ce01d6d1450a5f07551a8e04a541b67ee91fa33a0#rd
如有侵权请联系:admin#unsafe.sh