Results 1 to 4 of 4

Thread: Google Penetration Testing Hack Database v 1.0

  1. #1
    Moderator firebits's Avatar
    Join Date
    Mar 2010

    Lightbulb Google Penetration Testing Hack Database v 1.0

    Google Penetration Testing Hack Database v 1.0

    Database of Google Hacks and a tool for manipulating it.
    Database is separated to files by categories. You could use DB alone, or
    use the tool to analyse your own site by adding site search option
    to all queries.

    This tool will take source file (file with a list of queries) and generate
    website-specific queries (-s option) by adding to each

    run as
    ./ <source file> <options>

    <source file> queries source file from GoogleDB (files in db directory)

    Options are:
    -o output.txt save output to file
    -s generate queries for this site only


    ./ "login_pages.txt" -o file.html -s

    will generate list of queries for finding login pages
    on and save report to "file.html"

    # ## 1.0 initial release

    Google Hack DB Tool is a database tool with almost 8,000 entries. It allows administrators the ability to check their site for vulnerabilities based on data stored in Google. With Google Hack Database tool you can find out if your website has indexed vulnerabilities in Google.

    This can lead to sensitive information disclosure. This way you can find out what Google knows about you. 7974 entries, including 4203 for SQL Injection!
    So be sure to scan your public facing web applications frequently and eliminate all vulnerabilities!

    Features of the Google Hack DB tool:

    • Find information disclosure.
    • Find sensitive files.
    • Find sensitive directories.
    • Find vulnerable software.
    • Find personal information.

    These tool is really fast and will help to eliminate most of the known vulnerabilities that web application developers tend to do easily , simply and most important fast and accurate.

    Download Google Penetration Testing Hack Database Tool v1.0 ( here

  2. #2
    Senior Member
    Join Date
    May 2010

    Default Re: Google Penetration Testing Hack Database v 1.0

    Very cool - Thanks

    In the help output it gives a -q option which is not included in the python script.
    - Usage: <sourcefile> [-s site] [-q] [-t] [-f outfile]
    (i assume its meant to be "quiet"?)

    Is there a way to only parse positive results?

    The -t is also not included - just curious what these would do.
    Last edited by Scamentology; 04-14-2011 at 05:19 PM.
    "Never do anything against conscience -- even if the state demands it."
    -- Albert Einstein

  3. #3
    Join Date
    Sep 2010
    Eastern Island

    Default Re: Google Penetration Testing Hack Database v 1.0

    Thanks! Very interesting!

  4. #4
    Just burned his ISO
    Join Date
    Apr 2011

    Question Re: Google Penetration Testing Hack Database v 1.0

    Could you give me a hint how to interpret the results?

    I get a giant list of addresses that don't really mean much to me .. I used the SQL source on a local site

Similar Threads

  1. New to Penetration Testing
    By darksoul in forum Beginners Forum
    Replies: 7
    Last Post: 06-24-2010, 03:57 PM
  2. Firewall penetration testing
    By tlingitsoldier in forum Beginners Forum
    Replies: 26
    Last Post: 04-28-2010, 11:51 PM
  3. Penetration Testing Environment.
    By chasebadkids in forum OLD Pentesting
    Replies: 8
    Last Post: 01-31-2010, 03:46 AM
  4. Penetration testing
    By jjxoni in forum OLD Newbie Area
    Replies: 6
    Last Post: 01-31-2009, 04:42 PM
  5. Timed out in penetration testing
    By mindf in forum OLD Newbie Area
    Replies: 5
    Last Post: 08-13-2008, 11:11 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts