[spudlyo]

Apparently people now call using Google's advanced search operators Dorking, neat! I guess I've been dorking for a while.

Most of us know about "site:" since it's extremely handy, but there are a lot more. For some reason I had it in my head that many of the documented operators didn't work properly -- or at least I couldn't get them to work properly the last time I tried to experiment. I'll have to try again.

[dfworks]

There was a very recent "bug" in Search where the site: operator stopped working for a little bit and everybody in the OSINT community had a bit of a meltdown - https://www.digitaldigging.org/p/search-alert-google-filetyp...

The date operators from: to: I think have been unsupported for a while and replaced with a dropdown in the UI

filetype: is a fave and has been working for as long as I can remember

AROUND(number) is pretty useful too although I find that might be a bit buggy sometimes

There is a good list here https://www.exploit-db.com/google-hacking-database showing how dorks can be used for pentesting and/or generally finding insecure stuff

[araes]

Thanks, had no idea there were that many specific operators and combinations of operators.

At least in the last year, looks like "inurl", "intitle", and "intext" have all been getting a lot of use.

Also, a lot of "index of". "db.py", "store", "secret", "ec2 -aws", "mysql inurl:./db/", ect... in combination. Must be a lot of low hanging fruit in the orchard.

[jjwiseman]

Google dorking has been a thing for more than 20 years: https://kit.exposingtheinvisible.org/en/google-dorking.html

(Your comment downplaying someone else's work, while simultaneously showing your lack of historical knowledge on the topic about which you're commenting, based on my specific googling to find the date of coinage, might make you eligible to be "a foolish or inept person as revealed by Google".)