🔍Google Dork Recon
Clean Kali OS
sudo apt update && sudo apt upgrade -y && sudo apt clean && sudo apt autoremove -y && sudo apt autoclean && sudo apt install deborphan && sudo deborphan | xargs sudo apt-get -y remove --purge && rm -rf ~/.local/share/Trash/* && rm -rf ~/.cache/* && sudo journalctl --vacuum-time=3d && echo $(dpkg --list | grep linux-image | awk '{ print $2 }' | sort -V | sed -n '/'`uname -r`'/q;p') $(dpkg --list | grep linux-headers | awk '{ print $2 }' | sort -V | sed -n '/'"$(uname -r | sed "s/\([0-9.-]*\)-\([^0-9]\+\)/\1/")"'/q;p') | xargs sudo apt-get -y purge && sudo updatedb && sudo rm -rf /tmp/* && sudo du -sh /var/* | sort -rh | head -5 && sudo apt install bleachbit && sudo apt install baobab && baobab Fing BB programs and VD Programs
"submit vulnerability report" | "powered by bugcrowd" | "powered by hackerone"site:*/security.txt "bounty"inurl:/bug bounty
inurl:/security
inurl:security.txt
inurl:security "reward"
Bug Bounty program "reward"
inurl:/responsible disclosure
inurl:/responsible-disclosure/ reward
inurl:/responsible-disclosure/ swag
inurl:/responsible-disclosure/ bounty
responsible disclosure "reward" site:com
responsible disclosure hall of fame
"powered by bugcrowd" -site:bugcrowd.com
"submit vulnerability report"
"submit vulnerability report" | "powered by bugcrowd" | "powered by hackerone"
responsible-disclosure hall of fame
inurl:/responsible-disclosure/ swag
inurl:/responsible-disclosure/ reward
inurl:/responsible-disclosure/ bounty
inurl:'/responsible-disclosure' hoodie
responsible-disclosure reward r=h:UK
responsible-disclosure reward r=h:eu
responsible-disclosure reward r=h:nl
responsible-disclosure reward r=h:pk
site:*.*.* inurl:bug inurl:bounty---------------------------------------------------------------
Find Subdomains:
---------------------------------------------------------------
Find file Upload:
---------------------------------------------------------------
Information Gathering with Metagoofil:
-------------------------------------------------------------
Find Admin Panel or Directories or the login functionalities:
---------------------------------------------------------------
Search for password directories:
---------------------------------------------------------------
Finding Sensitive Docs
Finding Sensitive information like credentials and secret key
Finding .env file which contains sensitive creds and information
Finding AWS secret file
Finding .env file which contains sensitive creds and information
Finding exposed phpinfo.php files
Finding confidential information
Search Index or Insecure Information:
Searc for db files containing admin in URL:
Search for Excel and csv files on target domain:
Search for mail directories:
Search for diffrent extensions:
Searching for logs on target domain
---------------------------------------------------------------
Search .htaccess File:
---------------------------------------------------------------
Find Sensitive Confidential Information Document File:
---------------------------------------------------------------
Find Swagger UI:
---------------------------------------------------------------
Last updated