Kartier Pohs

Sunday, August 16, 2015

Google Dorks to find websites for XSS.

Cross site scripting is very common vulnerability in websites.So its very important to learn and find xss(cross site scripting) vulnerability on websites.Usually cross site scripting vulnerability is easy to find in normal cases but if websites are using filters or encoding then it is difficult to find xss in website.
But the question arises that "how to find websites for finding xss".The answer is google dorks.Yeah we can use google dorks to find websites for xss vulnerabiltiy.
Here i am going to provide a list of google dorks which is very useful for security researcher to find website for xss.


Google Dorks to  find websites for XSS.

inurl:".php?cmd="
inurl:".php?z="
inurl:".php?q="
inurl:".php?search="
inurl:".php?query="
inurl:".php?searchstring="
inurl:".php?keyword="
inurl:".php?file="
inurl:".php?years="
inurl:".php?txt="
inurl:".php?tag="
inurl:".php?max="
inurl:".php?from="
inurl:".php?author="
inurl:".php?pass="
inurl:".php?feedback="
inurl:".php?mail="
inurl:".php?cat="
inurl:".php?vote="
inurl:search.php?q=
inurl:com_feedpostold/feedpost.php?url=
inurl:scrapbook.php?id=
inurl:headersearch.php?sid=
inurl:/poll/default.asp?catid=
inurl:/search_results.php?search=

These are some basic dorks but you can make your own custom dorks to find websites.

1 comment:

Copyright 2015 @ Yogesh Prasad