Passive Information Gathering

WHOIS

whois example.com -h 192.168.1.3

Google Dorks

Dork Search: https://dorksearch.com/

GHDB: https://www.exploit-db.com/google-hacking-database

site:example.com
site:example.com filetype:txt
site:example.com -filetype:html

site:example.com intitle:"index of" "parent directory"

Netcraft Report

URL: https://searchdns.netcraft.com/

Code Leak

Github: https://github.com/

Github Gist: https://gist.github.com/

Gitlab: https://about.gitlab.com/

git-leaks -v -r https https://github.com/example

Shodan

URL: https://www.shodan.io/

hostname:example.com

Security Headers

URL: https://securityheaders.com/

shcheck.py http://example.com
PreviousPentest Makinası KurulumuNextSubdomain Enumeration

Last updated

Was this helpful?