GHDB « Hackers For Charity

GHDB

GHDB

Google Search: filetype:cfg ks intext:rootpw -sample -test -howto

l0om rates this entry 10 out of 10.
Submitted: 2004-06-14 00:00:00
Added by: l0om
Hits: 27547
Score: 10

Anaconda is a linux configuration tool like yast on suse linux. The root password is often encrypted – like md5 or read from the shadow. Sometimes an attacker can also get a cleartext password.There are more ks configs then you might expect and with a bit of searching through the result list an attacker can find the root password and own that system.

Comments:

2004-07-07 15:54:02 (sET_Coo): once u get teh pass, how do u login remotely?

2004-12-28 02:42:38 (GuidoZ): I love the “how do I use this” comments. lol

Something to add to this search that will weed out the encrypted passwords: -iscrypted

Search becomes:
filetype:cfg ks intext:rootpw -sample -test -howto -iscrypted

2004-12-30 00:25:34 (siress): Even I used this one affectively.


5 Responses to “GHDB”

  1. Jack says:
    October 26, 2011 at 9:12 pm

    Does GHDB still updates for now?

  2. Johnny says:
    October 27, 2011 at 3:31 am

    The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.

  3. The Artist says:
    April 20, 2013 at 7:10 am

    Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???

  4. Johnny says:
    April 27, 2013 at 5:10 am

    The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!

  5. Velmurugan says:
    May 7, 2013 at 7:38 am

    Is any offline view-able resources is available of this product ?

Leave a Reply