Archive for phpinfo
How Hackers Use Google to Find Targets
Google hacks often make a glimpse on Slashdot, Digg, or StumbleUpon and some web admins know what to do when some don’t even have a clue. Well, here we quote some of the hacks which are commonly known.
You can try these out to check the security of your website or if you are looking forward to hack a site:
“My SQL error With Query”
This will get you specific query strings with specifics of the site’s database, for instance column, row and table name. Let’s see if some one is dumb enough to put his password and username in the query strings.
“supplied argument is not a valid MySQL result resource”
Another interesting SQL error which, sometimes, even pops out the architecture of server and the locality of sensitive files. For instance if you get this “/users/cwq00/base/web/system/dbwrappers/db.mysql_db.php on line 114″, you know what to do, right?
inurl:awstats file:txt
Webmasters use Awstats as utility for data importing. And some of them are foolish enough to keep a text copy so that you can find out about their traffic more than they would like you to know.
“This summary was generated by wwwstat”
Above is another great example of stat finder. But this one really comes handy on intranet system and associated servers.
buddylist.blt
You certainly don’t want someone to find about your buddy list on AOL, right? It must be very old though and it’s out of imagination why I still find these buddy lists.
