Technique:
Google Dork for getting results consisting only of IP addresses.
You have to include 2 octets but then can use * for the right.
For example if I’m looking for data on
103.10.1.1/16
I can do site:103.10.* or site:103.10.*.*
Remember * aren’t wildcards but they are as close as you’ll get. Also remember that quotes and apostrophes are different within Google.
‘password’ site:103.10.* filetype:xml
You might find some interesting stuff
Tool:
Arachni
Just another layer I like to add to my vulnerability assessment or the vulnerability vulnerability scan phase of a test
Tbh, I haven’t had it find anything juicy EVER but I have hope one day it will
Lecture:
batshit stupid things you can put on the internet in as fast as I can go – Dan Tentler
Same guy as last post :]
Check out all the entries of this series!
- Technique Tool and Lecture #14
- Technique Tool and Lecture #13
- Technique, Tool and Lecture #12
- Technique, Tool and Lecture #11
- Technique Tool and Lecture #10
- Technique, Tool and Lecture #9
- Technique, Tool and Lecture #8
- Technique, Tool and Lecture #7
- Technique, Tool and Lecture #6
- Technique, Tool and Lecture #5
- Technique, Tool and Lecture #4
- Technique, Tool and Lecture #3
- Technique, Tool and Lecture #2
- Technique, Tool and Lecture #1
END TRANSMISSION