Knowing How to Use/Create Dorks

ThePhilosopher

Active Member
Joined
Dec 5, 2014
Threads
349
Messages
924
Reaction score
643
i Want to share this good guide which help a lot of on Sql to me so i i will give you the link of the guide explained well.

Hidden content
You need to reply to this thread in order to see this content.
For Beginners
A method of finding websites vulnerable to SQL injection is using what we call "dorks"
Dorks:They are like search criteria in which a search engine returns results related to your dork.
The process can be a little time consuming, but the outcome will be worth it after learning on how to use dorks


For this tutorial, the search engine we'll be using is Google
Credits to those who are mentioned in this tutorial
Now I'll show you how to use dorks with the help of a video too.
[SIZE=large]Step1: [/SIZE][SIZE=medium]Finding your dorks i.e. the criteria you'll be using[/SIZE]
Dork List compiled by kobez-

Code:



Dork List by Sidesipe-

Code:



Dork List by .Newsletter'

Code:



For this tutorial, we'll be using this dork "inurl:index.php?id="
[SIZE=large]Step2: [/SIZE]Making use of your Dorks with the help of Google

Here's what you do:
  • Go to
  • Type the dork in the search bar "inurl:index.php?id=" (with or without quotes)
  • Now you'll find a whole lot of links in your results

Here's how you can speed up your process:
In your mouse, there should be a scroll button right?
Hover your mouse on each link and hit the scroll button so that it'll open on a new tab. (Lets say you can open about 10 links at a time)
[SIZE=large]Step3: [/SIZE]Vulnerability approach

Now to see whether the website is vulnerable to SQL injection or not, we simply put in a quote " ' " at the end of the url address.
So our site will look like this

Code:



Do the same thing with the websites you opened on your tabs and see if there's any vulnerable website.

[SIZE=medium]To determine if a website is vulnerable or not, it should return an error![/SIZE]

Note: If you can't find any vulnerability after doing some vulnerability search on this dork, you can always browse the dork list I've mentioned above and use any of them until you find any website vulnerable to SQL injection

Here's a video demonstration on how to use Dorks:


[SIZE=large]Extra Notes: [/SIZE]Hunting for specific websites with specific domains
Ever want to hack a government website, or an organization website?
It's simple. All you have to do is improvise your dorks.
First off, here are some common domains
.gov = Government websites
.edu = Educational websites
.org = Organizational websites
.com = Commercial websites
.info = Informative websites
.net = Networking websites ( similar to .com)

Alright now you know some specific domains, lets add them to our dork shall we?

Follow this formula-like dork

Code:
"inurl:."domain"/"dorks" "

So you would normally understand it like this:
"inurl" = input URL
"domain" = your desired domain ex. .gov
"dorks" = your dork of your choice
Now for an example, lets say you want to hack government websites
Here's how it'll look
"inurl:.gov/index.php?id="
Once you search that up, you'll find a lot of government websites on your results

Changing "inurl" and using another one
Yes, you can change that too.
Google has a lot of functions you can come up with
Some of them are below where you can change "inurl" and make another dork

Code:
intitle:
intext:
define:
site:
info:
link:

Credits to Real Steel for bringing this up
Choose any of the and make another.
Example: "intext:.edu/gallery?id="
More information about those here:
[SIZE=large]Some Dork Scanners you can use to help you speed up the process[/SIZE]

Scanner by moveax


Scanner by p0iz0ner


Scanner by kript0x


If you're lazy in using dorks to find vulnerable websites, then you can use some list right here:

Vulnerable List by Dyme:


End of Chapter 1
Upcoming chapters:
Chapter2- Basic MySQL injection using "Login" Queries"
Please stayed tuned with my tutorials and hope you enjoyed this chapter

Zer0Freak
 

Jartsu

Banned
Joined
Dec 1, 2014
Threads
161
Messages
987
Reaction score
138
Please note, if you want to make a deal with this user, that it is blocked.
Thanks

You could post tutorial here? I can't use that forum...
 

Crack4Cash

Well-Known Member
Joined
Oct 27, 2014
Threads
749
Messages
1,439
Reaction score
1,032
Well this could be really useful, thanks bruh ^.^
EDIT: i cant use this forum, can you copy tut here? :/
 

Mody216

Banned
Joined
Nov 27, 2014
Threads
62
Messages
365
Reaction score
51
Please note, if you want to make a deal with this user, that it is blocked.
thanx
 

Ops!

Well-Known Member
Retired Staff
Joined
Sep 28, 2013
Threads
1,920
Messages
3,520
Reaction score
3,634
Copy - Paste?
 

Lizard Squad

Banned
Joined
Dec 20, 2014
Threads
5
Messages
226
Reaction score
9
Please note, if you want to make a deal with this user, that it is blocked.
This will help me out a ton man

Thank you
 

W00dy

Banned
Joined
Feb 27, 2015
Threads
6
Messages
323
Reaction score
3
Please note, if you want to make a deal with this user, that it is blocked.
Thanks
 

Hadriiw

Banned
Joined
Apr 14, 2015
Threads
20
Messages
231
Reaction score
140
Please note, if you want to make a deal with this user, that it is blocked.
thanks
 

Vamos

Member
Joined
Apr 30, 2015
Threads
24
Messages
171
Reaction score
4
Thanks for this bro wanna make my own dorks
 
Top