Yo, here we are with another quick entry of interesting findings publicly exposed on the internet. This post will not have anything that will blow your mind but I promise you won’t be disappointed.
Before I show ’em off, here is the google dork I used to find them:
“Index Of” site:*.35.* -com -ru
So I’m searching with site that have directory listing/browsing available no .com or .ru Top Level Domains (TLD) and for the site dork, it means, x.35.x where x means anything.
This is one of the best ways I’ve found to have google only return results that are IPs and not domains. Obviously you can change the 35 to any number up to 254. If you wanted to go even deeper, you could do something like
“Index Of” site:100.35.*.* -com -ru
Which means all results have to start with 100.35
This is the closest way to have a wildcard via Google although technically it is not a complete wildcard.
I believe I also added filetype:xsl to the end of the google dork mentioned above and was surprised to find something like this in the results. Here is another example of Icecast2
I’d tell you what I found next but I’m not quite sure of what it is
Next is some type of web application for the Ministry of Health for an unknown country.
Until Next time;
Check out the other entries in this series!
- OSINT Escapades #1
- OSINT Escapades #2
- OSINT Escapades #3
- OSINT Escapades #4
- OSINT Escapades #5
- OSINT Escapades #6
- OSINT Escapades #7
- OSINT Escapades #8
- OSINT Escapades #9
- OSINT Escapades #10
- OSINT Escapades #11
- OSINT Escapades #12
- OSINT Escapades #13