1. Use Strong, Unique Passwords

One of the simplest yet most effective security measures is creating strong, unique passwords for each of your accounts. Avoid common passwords like “password123” or “admin,” as these are easy targets for hackers. Instead, use a combination of uppercase and lowercase letters, numbers, and special characters. Consider using a password manager to generate and store complex passwords securely. This way, you won’t have to remember them all — just one master password.

2. Enable Two-Factor Authentication (2FA)

Adding an extra layer of security with two-factor authentication is a game-changer. With 2FA, even if hackers get hold of your password, they’ll need a second form of verification—like a code sent to your phone or fingerprint scan—to gain access. Many popular services like Gmail, Facebook, and banking apps support 2FA, so enable it wherever possible.

3. Keep Software Up to Date

Software developers frequently release updates to fix security vulnerabilities. Failing to install these updates leaves your devices open to attacks. Turn on automatic updates on your operating system, browsers, and apps to ensure you’re protected against the latest threats.

4. Be Wary of Phishing Attacks

Phishing scams are emails or messages designed to trick you into revealing sensitive information. They often appear legitimate, mimicking trusted brands or contacts. Always scrutinize emails for signs of fraud, such as suspicious sender addresses, grammatical errors, or unusual requests. Never click on suspicious links or share personal data unless you are certain of the sender’s identity.

5. Secure Your Wi-Fi Network

Your home Wi-Fi network is a gateway to all your connected devices. Secure it with a strong password and WPA3 encryption. Change the default router credentials and disable remote management features. Consider setting up a separate guest network for visitors to prevent access to your main devices.

6. Backup Your Data Regularly

Data loss can occur due to malware attacks, hardware failure, or accidental deletion. Protect yourself by regularly backing up important files to an external drive or cloud storage service. In case of an attack, having recent backups ensures you can restore your data quickly.

7. Use Antivirus and Anti-Malware Software

Installing reputable antivirus and anti-malware programs adds a vital layer of defense. These tools can detect and remove malicious software before it causes harm. Keep your security software updated and run regular scans.

8. Limit Personal Information Sharing

Be cautious about how much personal information you share online, especially on social media. Details like your address, phone number, or travel plans can be exploited by hackers for identity theft or targeted attacks. Keep your privacy settings tight and share information only with trusted contacts.

9. Be Vigilant on Public Wi-Fi

Public Wi-Fi networks are convenient but often insecure. Avoid accessing sensitive accounts or conducting financial transactions on public networks. If necessary, use a Virtual Private Network (VPN) to encrypt your internet connection and protect your data from prying eyes.

10. Educate Yourself and Stay Informed

Cyber threats evolve constantly. Stay informed about the latest scams, security tools, and best practices. Regularly educate yourself about online safety and encourage your friends and family to do the same.

The post Top Security Tips and Tricks to Protect Yourself in Today’s Digital World 2025 appeared first on ITBlogSec.com.

Enjoy and stay tuned for the next episodes  

What you can learn 

If you want to start with hacking, first you need to have some hacking tools available. The best option for that purpose is using Kali Linux what is linux distribution specially designed to be used for hacking activities. As the part of our hacking tutorials for beginners, we are starting with the #1 where you can find exact steps how to install Kali linux on MacOS using Parallels Desktop or Virtual Box. Of course, you can use any virtualization platform you want, even there is ARM Kali Linux image available for rapsbperry PI, you can download it here. 

1: Download kali linux image

– use official webpage https://www.kali.org/downloads/

2: Import Kali linux image

– here is example by using Parallels Desktop – choose Debian GNI/Linux (the same applicable for for Virtual Box)

3: Choose name and location 

4: Select type of installation (Graphical install)

5: Select language for installation

6: Wait for installation 

7: Type hostname of your Kali linux system

8: Type domain name

– if you do not use domain, just leave it blank

9: Set-up user and password

– (always use strong password)

10: Select your time-zone 

11: Partition and format your virtual disk

– please select: Guided – use entire disk

12: Select software you want to install

– of course later you can install any kind of software you want

13: Install GRUB boot loader

14: Wait for installation to be finished

15: Congratulations! We are done.

– Now your Kali linux system is ready to be used for your hacking practice 

Conclusion

At this point, you have the system which is ready to learn new hacking practice by yourself. In our next tutorials, we will try to bring you step-by-step guides how to learn ethical hacking practices. Stay tuned, like us on facebook and soon there will second part of Hacking for Beginners available. 

The post Hacking for beginners #1 – Install the Kali Linux appeared first on ITBlogSec.com.

After a series of ransomware attacks capturing the headlines past year, crypto mining malware and cryptojacking attacks came into the play. Just last month, a Starbucks customer found that the infected Wi-Fi hotspot was trying to mine Monero digital coins. It was a new kind of threat associated with using public hotspots, which are often labeled unsafe and users are advised to use VPN services for extra privacy.

In a similar development, a security researcher named Arnau has published a proof-of-concept project that showcases how troublesome actors can exploit such public Wi-Fi networks and print free money.

Named CoffeeMiner, this attack uses a script to perform autonomous MITM attack to inject some malicious JavaScript code into the HTML pages. The attack has been tested in the real-world scenario to turn smartphones and PCs into cryptomining bots.

For performing MITM attack, the ARP spoofing technique is used. The researcher used dsniff library to perform the ARP spoofing attack. Using another tool named mitmproxy, the traffic going to the host is analyzed and JavaScript code is injected. To make the process cleaner, a single line of HTML code is injected; this line calls the miner.

As expected, the miner being used in the concept is from CoinHive. It’s a Monero miner that uses the CPU power to calculate hashes with Cryptonight PoW hash algorithm for mining.

The real-world demo of the attack using Kali Linux is shown above. The researcher has shared this attack for academic purposes and to showcase how easily one cybercriminal can exploit your weak security practices.

source: https://fossbytes.com

The post How CoffeeMiner Attack Hacks Public Wi-Fi And Uses Your PC For Mining Cryptocurrency appeared first on ITBlogSec.com.

Private browsing using the private or incognito modes provided in your browser, does not give you the level of privacy you think it does. If you really don’t want to be tracked and also don’t want anyone tracking your searches, try these search engines.

1.DuckDuckGo

DuckDuckGo is a very secure search engine that never tracks your searches while providing you really good search experience. The main purpose of building this search engine is for people who likes to remain private while searching, and delivers instant results without tailored ads on the search pages. DuckDuckGo gets around 10M+ searches a day.

2.WolframAlpha

This is a great computable search engine which provides very accurate answers and offers open knowledge. WolframAlpha’s main purpose is to serve knowledge and nonetheless it does not track what you search for. WolframAlpha performs dynamic calculations using built-in algorithms and delivers an expert knowledge about calculations, people, money & finance, health & medicines, music & movies and much more.

3.Startpage

Startpage is a powerful search engine which provides accurate results while protecting your searches and avoiding tracking your steps. It offers browsing through a proxy server and helps protecting you from websites that track your IP address or location. You can add Startpage to your browser, on Firefox or Chrome , and even change its color theme.

4.Privatelee

There is nothing much to talk about Privatelee but it enables strict filters and secure searches if you need it. Privatelee doesn’t keeps your search keywords to be used for surveillance or adds. It offers ‘PowerSearch‘ commands that lets you configure search source and more. It is also famous by name Qrobe.it.

5.Yippy

Yippy allows you to manually filter the results according to categories and flag any inappropriate result. Unlike some engines, it allows searching of many types of content including images, web, news, blogs, jobs, government data, etc. Yippy lets you view cached pages (like Google) and filter results by tags like sources, clouds, websites. Yippy does not track your search queries and doesn’t show customized ads.

| ALSO READ: Hack a Windows 7/8/10 admin account password with Windows magnifier

6.Hulbee

This is a private search that delivers instant searches while not tracking your location history or search. Hulbee provides very intelligent information yet never analyses or stores its visitor’s details. All your searches are encrypted for security against man in the middle attacks and data leaks. There is an option to choose a region for most relevant search results and then lets you ‘clear your activity‘ to avoid any trace of information.

7.Ixquick

Ixquick is the main search engine from the company that runs Startpage. Unlike Startpage, Ixquick pulls results from a variety of sources instead of only Google – this can be a good or a bad thing, depending on how much you like Google’s search results. Ixquick and Startpage have essentially the same design. Ixquick includes the same privacy features Startpage does, including the Ixquick proxy links in the search results.

8.Disconnect Search

Just like Gibiru, Disconnect Search uses search assistance from major search engines like Google, Yahoo and Bing but it does not track your online activities or searches or IP address. It lets you search by location so that you get accurate and relevant search results based on the information you provided.

9.Lukol

Lukol uses a proxy server to give you customized search results from Google using its own enhanced custom search. It conserves your privacy by removing traceable entities. Lukol is considered as one of the best private search engines that protects from online information and keeps the spammers away from you by safeguarding you from inappropriate and misleading sites. It ensures full anonymity for your searches.

| ALSO READ: How to see who viewed your Facebook profile

10.MetaGer

MetaGer lets you make confidential untraceable searches that leave no footprints. It also integrates a proxy server so that you can open any link anonymously from the search result pages and yet keep your IP address hidden from the destination server. It also never tracks your keywords. This prohibits third parties or advertisers to target you for ads or any of malicious attacks. Its default language is in German.

source: https://codingsec.net, https://www.howtogeek.com

The post 10 private search engines that do not track you appeared first on ITBlogSec.com.

This exploit takes advantage of the ease of access tool on the login page by ‘tricking’ windows into launching a fully privileged command prompt by selecting ‘make items on the screen larger – magnifier’. By using this method you can simply reset admin account password, just by having physical access to the computer.

Disclaimer: This is for use on a PC that you own. Breaking into someone else’s PC is considered a serious crime in most places. If you make a mistake or change something else, your Windows may become a non-boot. If so, just undo whatever you changed outside of the hack shown here, and it will back to normal. Need I say this is for Educational Purposes! You are responsible for your own thoughts and actions.

1. Launch any OS that allow full access to file system

Here you can use many different linux distros or even a windows disk/usb, as long as you can access the terminal/command prompt, you’re good. In this case, we are going to use Kali linux distro. Insert CD/DVD into drive and reboot the machine. Start your Live DVD. You may need to go into the BIOS screen and change the boot-up order to CD/DVD drive first, HDD second.

2. Navigate to Sys32

Use the file browser in your Linux environment, navigate to %windir%/system32/. You may have to right-click and mount the Windows partition/drive first or use the NTFS-3G command.

Article is written on a macbook with Windows dual booted, there is Windows instance named as BOOTCAMP.

3. Rename Magnify.exe

Find and rename magnify.exe (Magnifier file) to magnify.old. 

mv magnify.exe magnify.old

4. Rename cmd.exe

Find and rename cmd.exe to magnify.exe.

mv cmd.exe magnify.exe

5. Shut Down Linux & Reboot Windows

Log out and reboot, remove CD/DVD/USB, and restart into Windows.

6. Get CMD Prompt Modify Accounts

When Windows reboots, click on the ease of access button in the bottom left corner

Click the second selection “Make items on the screen larger (Magnifier)” and hit apply.

The command prompt should now be in front of you. You now have a system level command prompt. At this point is where you can change the admin password and make any modification to the system using administrator privileges. 

Tip: You can right-click on cmd.exe and click “Run as administrator” inside of Windows for escalated privileges. To edit files, it would never be allowed at basic admin level (caution). Same goes for any app in Windows right click and make the magic happen.

Type net user to get a list of accounts

Change Password: 

net user username new_password

Tip: when you do so, the password changes without prompting you again.

Add an account: 

net user username password /add

Tip: If your username has a space, like John Doe, use quotes like “John Doe”.

Admin that: 

net localgroup administrators username /add

Delete that: 

net user username /delete

Remote Desktop Users Group: 

net localgroup Remote Desktop Users username /add

Net User Syntax Reference:

net user commands 
net user for domain

7. Revert back all changes

Now you should insert your Linux Live CD/DVD/USB and rename the files back to the original names.

1. Repeat Step 1
2. Repeat Step 2
3. Rename magnify.exe back to cmd.exe
4. Rename magnify.old back to magnify.exe
5. Log out, take out CD/DVD USB, reboot into Windows

Recommended resources

Kali Linux
Create Live USB Sticks Rufus

Conclusion

Well, that was how you hack a Windows 7/8/2008/10 administrator account password with Windows Magnifier. This also demonstrates how you could Pwn a machine if you think about it some, have hands on and they have not disabled EoA.  Hope it helps you in some way.

source: https://null-byte.wonderhowto.com, https://thehacktoday.com

The post Hack a Windows 7/8/10 admin account password with Windows magnifier appeared first on ITBlogSec.com.

The first question to answer here is why go for anonymous emails when there are plenty of premium featured and free email services such as Gmail, Outlook and Yahoo! Mail available? Well, privacy and anonymity is a digital right — our digital right. These email services are ‘free’ because of the advertisements.

Although deemed necessary evils, ads are mostly tailored for the visitor or service user, and to do that, service providers need your data to show you advertisements targeted to you and your user group. These are ads that you are most likely to click and/or follow.

Moreover, the disclosure of the motives of secret agencies and their top-secret internet-censoring programs (such as PRISM) has raised concerns among digital privacy advocates. If you want to keep your emails away from prying eyes, this article will introduce to you the many options for sending and receiving anonymous emails.

Anonymous email forms the basic foundation of anonymity over the web. Internet is no secure storage, but you have a say in who has access to your data and who doesn’t. If that is no, anonymous emails is one way to ensure your emails are not trackable online.

Note: Anonymity is not possible on the web without hiding your IP address, so you must use Tor, or any other proxy or VPN service before using the services below to remain anonymous on the Internet.

| ALSO READ: Amazing hidden features of Google Search you probably don’t know

Encrypted / Anonymous Email Service

Here are some of the anonymous email services that lets you send and receive emails anonymously online. Some of them have encryption features, others are disposable or will self-destruct after a specified period of time. Here are:

Anonymous Email – TorGuard – This service provides you an anonymous inbox with lots of privacy and cryptographic features. You get 10MB storage, and end-to-end security using SSL encryption for connection and G/PGP encryption for securing the messages.

Tor Mail – Tor Mail is a Tor Hidden service that provides truly anonymous email service. It runs on the hidden service network of The Tor Project so you must use Tor to access and use it. Tor Mail is developed for super anonymity. As it’s built over the Tor network, it cannot be traced easily.

GuerrilaMail – GuerrillaMail offers you a disposable, self-destructible, temporary email address to send and receive emails anonymously on the internet. Mail is deleted after an hour. You only need to choose an email address; no personal data is required.

Secure Mail – This service encrypts your mail using 4096-bit key, which makes it unreadable by anyone except you. It doesn’t ask for your personal information or IP address to sign up. They also have a zero-tolerance policy against spam.

The Anonymous Email – Create an account to send and receive emails by signing up with your real email. None of your other personal info is necessary.

Send Emails Without Registration

Receive emails

The post Send Anonymous emails: 19 sites to keep your identity hidden appeared first on ITBlogSec.com.

You may be aware of the fact that a local Windows user with system rights and permissions can reset the password for other users, but did you know that a local user can also hijack other users’ session, including domain admin/system user, without knowing their passwords?

Alexander Korznikov, an Israeli security researcher, has recently demonstrated that a local privileged user can even hijack the session of any logged-in Windows user who has higher privileges without knowing that user’s password, using built-in command line tools.

This trick works on almost all versions of Windows operating system and does not require any special privileges. Korznikov is himself unable to figure out if it is a Windows feature or a security flaw. The issue discovered by Korznikov is not entirely new, as a French security researcher, namely Benjamin Delpy, detailed a similar user session hijacking technique on his blog some six years ago.

Korznikov calls the attack a “privilege escalation and session hijacking,” which could allow an attacker to hijack high-privileged users’ session and gain unauthorized access to applications and other sensitive data. For successful exploitation, an attacker requires physical access to the targeted machine, but using Remote Desktop Protocol (RDP) session on a hacked machine; the attack can be performed remotely as well.

Video Demonstrations and PoC Exploit Released!

https://www.youtube.com/watch?v=oPk5off3yUg&feature=player_embedded

Korznikov has also provided a few video demonstrations of a successful session hijacking (using Task manager, service creation, as well as command line), along with Proof-of-Concept (PoC) exploit.

Korznikov successfully tested the flaw on the newest Windows 10, Windows 7, Windows Server 2008 and Windows Server 2012 R2, though another researcher confirmed on Twitter that the flaw works on every Windows version, even if the workstation is locked.

While Microsoft does not deem it to be a security vulnerability and some experts argued that a Windows user with administrative permissions can do anything, Korznikov explained a simple attack scenario to explain how a malicious insider can easily misuse this flaw:

Some bank employee have access to the billing system and its credentials to log in. One day, he comes to work, logging into the billing system and start to work. At lunchtime, he locks his workstation and goes out for lunch. Meanwhile, the system administrator gets to can use this exploit to access employee’s workstation.

According to the bank’s policy, administrator’s account should not have access to the billing system, but with a couple of built-in commands in windows, this system administrator will hijack employee’s desktop which he left locked. From now, a sysadmin can perform malicious actions in billing system as billing employee account.

https://www.youtube.com/watch?v=VytjV2kPwSg&feature=player_embedded

Well, no doubt, alternatively an attacker can also dump out system memory to retrieve users’ passwords in plaintext, but this is a long and complicated process compared to just running tscon.exe with a session number without leaving any trace and using any external tool.

The issue has been known to Microsoft since last six years, so it’s likely the company doesn’t consider it a security flaw as it requires local admin rights on the computer, and deems this is how its operating system is supposed to behave.

For more technical details, please check Korznikov’s blog directly.

source: http://thehackernews.com, http://www.korznikov.com/

The post Hacker Reveals Easiest Way to Hijack Privileged Windows User Session Without Password appeared first on ITBlogSec.com.

No one would argue the fact that Google is one of the most useful sites on the Internet. Unfortunately, most people only use about 3% of its power. Smart Google users, on the other hand, know how to turn Google into a quick calculator, translate foreign sites, create their own customized search engine, and search for movie reviews and stock quotes with special search queries. From easter eggs to handy shortcuts that give you want, you want and what you need almost instantly, Google can do it all. Google Search is becoming an indispensable tool to students, travelers, the curious and the bored and here the 15 Amazing Hidden Features Of Google Search You Probably Didn’t Know.

CHECK ALSO: Google hacking (dorking) tutorial #1

1) Play “Atari Breakout”(Google Images)

Breakout is an arcade game developed and published by Atari, Inc. It was conceptualized by Nolan Bushnell and Steve Bristow, influenced by the 1972 Atari arcade game Pong, and built by Steve Wozniak aided by Steve Jobs. The game was ported to multiple platforms and upgraded to video games such as Super Breakout. In addition, Breakout was the basis and inspiration for certain aspects of the Apple II personal computer.

In the game, a layer of bricks lines the top third of the screen. A ball travels across the screen, bouncing off the top and side walls of the screen. When a brick is hit, the ball bounces away and the brick is destroyed. The player loses a turn when the ball touches the bottom of the screen. To prevent this from happening, the player has a movable paddle to bounce the ball upward, keeping it in play.

Google is commemorating the game’s 37th anniversary with a fun, little surprise today. Run a Google image search for “Atari Breakout” and instead of turning up a page of game screenshots, you’ll be treated to a playable version of game!

1. Click to “Images” tab on Google search
2. Type: “Atari Breakout”
3. Enjoy free gaming

2) Play “Pacman”

Pac-Man (Japanese: パックマン Hepburn: Pakkuman), stylized as PAC-MAN, is an arcade game developed by Namco and first released in Japan in May 1980. It was created by Japanese video game designer Toru Iwatani. It was licensed for distribution in the United States by Midway and released in October 1980. Immensely popular from its original release to the present day, Pac-Man is considered one of the classics of the medium, and an icon of 1980s popular culture.

1. Click to “All” tab on Google search
2. Type: “pacman”
3. Enjoy free gaming

3) Play “Zerg Rush”

In video games, rushing is a battle tactic similar to the blitzkrieg or the human wave attack tactics in real-world ground warfare, in which speed and surprise are used to overwhelm an enemy’s ability to wage war, usually before the enemy is able to achieve an effective buildup of sizable defensive and/or expansionist capabilities.

Also known as a zerg or zerg rush, the term originated in the StarCraft strategy game to describe a strategy that was effective with the Zerg race. An Easter egg of a simulated zerg rush is activated in a browser if “zerg rush” is typed into a Google search.

Enjoy playable game originally created by Google with small ‘o’ characters that destroy search results if they are not clicked with the mouse pointer.

1. Click to “All” tab on Google search
2. Type: “Zerg Rush”
3. Enjoy free gaming

4) Input Handwriting for Translation

Go to Google Translator, click the pencil option at the bottom left side of the text box and write the word by hand. This is helpful when translating from character-based languages.

5) Pronouncing of Big Numbers

If you want Google Search to teach you how to pronounce big numbers, just type in the figure, then adds an equal (=) and the language you want it to be pronounced. However, this works for up to 13 digits only.

6) Use it like calculator

You can not only perform direct calculations, e.g. 5^3, 10+5, 15-8, 35*55, 100/50 in the search bar, but also can calculate the results for trigonometric functions as well.

7) Solve Geometrical Shapes

You can solve for geometrical shapes such as circle, rectangle, triangle, trapezoid, ellipse etc. With Google search. To do so type “solve” and add a shape e.g. “Solve triangle”, click the search button and it will return you with a calculator to solve that shape. Not only this but you can also choose to solve for area, perimeter, gamma, height, side (a) or side (c). Each shape carries a different calculator.

8) Generate a graph

You can create a graph instantly for a mathematical function. For instance, search “graph for x^2” or “graph for tan (x)” and so on. The search results returned with the graph drawn.

9) Google tip calculator

You can calculate the Waiter Tip with this if you are poor with math but not with tips. Search “tip calculator”, enter your bill amount, tip % and select the number of people contributing to the bill to get how much your tip is.

10) Currency Conversion

Although currency conversions could be done via Google Currency Converter but if you want to perform currency conversion directly from the Google search bar, then just type, the currency you want to convert from and into like this: 100 GBP to USD. The search result will return with the converted amount.

11) Conversion of Units for Different Quantities

Not just currency, but you can also  convert units for different. There are 9 categories you can do conversions in: temperature, length, mass, speed, volume, area, fuel consumption, time and digital storage.

12) Translation between Languages

Just type the language you want to translate from and the language you want to translate into to turn your search bar into a temporary translator. In this example, we tried “French to English”.

13) Google Timer

Type in Google Timer and a box will pop up, allowing you to enter any amount of time, for example 45 seconds. Google Timer will start the countdown and a beeping alarm will ring once it reaches 0. Google timer can be set for full screen as well.

14) Sunrise and Sunset

One of the amazing hidden features of Google Search is the exact times for sunrise and sunset in your city. Search sunrise or sunset in city_name  and the search result will return to the exact time.

15) Weather Forecast

You can get the weather forecast for any city just by typing the city. Followed by “forecast.”

Extra TIP

By opening website http://elgoog.im/ you will get a fully modified google search home page with many interesting features. Beware elgooG is not affiliated with Google, it is fully designed for fun. Among many features (some of them already mentioned above) you can find there many another amazing hidden features of Google Search:

a) Underwater searching
b) Gravity
c) Terminal
d) Guitar
e) Snake Game
f) Bing Wallpaper
g) My Location
h) Bing Mirror

 source: https://en.wikipedia.org, https://techxerl.net

The post Amazing hidden features of Google Search you probably don’t know appeared first on ITBlogSec.com.

Everybody knows how to use search engine “google”.  But do you know tips, tricks and operators which can be used for google hacking? Here’s a tutorial that will teach you how to use google to hack and obtain even more specific data. Enjoy!

We have decided to start a new tutorial where we are trying to collect all techniques and commands which can be used for google hacking. Google hacking, also named Google dorking, is a computer hacking technique that uses Google Search and other Google applications to find security holes in the configuration and computer code that websites use. Google hacking involves using advanced operators in the Google search engine to locate specific strings of text within search results. Some of the more popular examples are finding specific versions of vulnerable Web applications.

History 

The concept of “Google Hacking” dates back to 2002, when Johnny Long began to collect interesting Google search queries that uncovered vulnerable systems and/or sensitive information disclosures – labeling them googleDorks.

The list of googleDorks grew into large dictionary of queries, which were eventually organized into the original Google Hacking Database (GHDB) in 2004. These Google hacking techniques were the focus of a book released by Johnny Long in 2005, called Google Hacking for Penetration Testers, Volume 1.

Since its heyday, the concepts explored in Google Hacking have been extended to other search engines, such as Bing and Shodan. Automated attack tools use custom search dictionaries to find vulnerable systems and sensitive information disclosures in public systems that have been indexed by search engines.

But in 2012 Google held an open challenge for anyone to infiltrate their resisting servers. For a full visual timeline, detailing the major events and developments in Google Hacking from 2002 to Present, see the Google Hacking History by Bishop Fox.

Search operators

There are many operators which can be used and even combined to achieve required results, see here the list of most popular operators:

The formula of google dorks

Dorks: They are like search criteria in which a search engine returns results related to your dork. The process can be a little time consuming, but the outcome will be worth it after learning on how to use dorks.

Basic Formula of dork: 

"inurl:."domain"/"dorks" "

So now try to understand concept: 
“inurl” = input URL
“domain” = your desired domain ex. .gov
“dorks” = your dork of your choice

Real examples

"intitle:index.of:" mp3 jackson

– download your favorite music for free

intitle:index.of +?last modified? +?parent directory? +pdf "lord of the rings" -htm -html -php -asp

– download book for free

300 -inurl:(htm|html|php|pls|txt) intitle:index.of “last modified” (mp4|wma|aac|avi)

– download your favorite movie directly from the Internet or you can watch it even online (in our example movie 300)
– explanation:

movie Name -inurl:(htm|html|php|pls|txt) intitle:index.of “last modified” (mp4|wma|aac|avi)
– as a result you will see a movie name there you can add any movie name for example 300, deadpool, etc.

inurl(htm|html|php|pls|txt)
– this means search the movie name in the URL. Most of the times there are name of the keywords given in the link itself, and it will search all the links which are having extensions named as htm, html, php, pls, txt.

intitle:index.of “last modified”
– It means that this will search for the recent date when the file was uploaded, so that you can get the HD print of the movie and you can download it in blazing fast speed.

(mp4|wma|aac|avi)
– Your movie will be searched which is having extension of mp4, wma, aac, avi format only. 

Conlusion

In the second part of our tutorial, we will show you more complicated formulas, how to find vulnerable online cameras, web servers and many many another practical tips and tricks. Comment, subscribe or Like us on Facebook so you will get notification about new part of tutorial. Enjoy!

The post Google hacking (dorking) tutorial #1 appeared first on ITBlogSec.com.