What are Google Dorks?

Google Dorks (or Google Hacking) are advanced search queries that use special Google operators to find specific information indexed on websites. They are used in cybersecurity, OSINT (Open Source Intelligence) and penetration testing to verify sensitive data exposure.

How does the filetype: Google operator work?

The filetype: operator allows you to search only for files of a specific type. For example, filetype:pdf searches only PDF documents, filetype:sql searches SQL database files, filetype:env searches environment configuration files.

How can I check if my files are indexed on Google?

Use the query site:yourdomain.com filetype:pdf (or other file type) to see all files of that type indexed on your domain. Add keywords like "confidential" or "password" to find potentially sensitive documents.

Is it legal to use Google Dorks?

Using Google Dorks to check your own sites and files is perfectly legal. It is illegal to use them to access other people's data without authorization or for malicious purposes.

> Google Dorks Builder

Free online advanced Google search query generator. Build Google Dorks to check if your sensitive files (PDF, SQL, backup, config) have been indexed by mistake on search engines.

site:yourdomain.com filetype:pdf

Responsible Use

This tool is intended exclusively for checking the exposure of your own files and domains. Using it to access other people's data without authorization is illegal. Use this tool ethically and responsibly.

Build Your Google Dork Query

Your Domain Enter the domain to check (without http://)

Advanced Options

inurl: Search in URL

intitle: Search in title

intext: Search in content

cache: Cached version

Specific Path (optional)

Generated Query

query.sh


                                    Fill in the fields to generate the query...

Search on Google

Quick Queries

> Google Search Operators Guide

Google advanced search operators allow you to refine queries to find exactly what you're looking for. Here are the main operators used in Google Hacking.

site: Operator

Limits search to a specific domain. Useful for finding all indexed files on a site.

site:example.com

filetype: Operator

Search only for files of a specific type like PDF, DOC, XLS, SQL, ENV, BAK and others.

filetype:pdf

inurl: Operator

Search for a specific word in the page URL. Ideal for finding admin pages or directories.

inurl:admin

intitle: Operator

Search in the HTML page title. Useful for finding directory listings or panels.

intitle:"index of"

intext: Operator

Search in page text content. Find documents containing specific keywords.

intext:"password"

"exact phrase" Search

Use quotes to search for an exact phrase. Essential for finding specific text.

"confidential file"

> Frequently Asked Questions about Google Dorks

Google Dorks (or Google Hacking) are advanced search queries that use special Google operators to find specific information indexed on websites. These operators allow you to filter results by file type, domain, title content, URL and much more. They are commonly used in cybersecurity, OSINT (Open Source Intelligence) and penetration testing to verify sensitive data exposure.

The filetype: operator allows you to search only for files of a specific type. For example:

filetype:pdf - search PDF documents
filetype:sql - search SQL database files
filetype:env - search environment configuration files
filetype:xls - search Excel spreadsheets
filetype:bak - search backup files

Combine with site: to search these files on a specific domain.

To check which files from your site are indexed on Google, use this query:

site:yourdomain.com filetype:pdf

Replace yourdomain.com with your domain and pdf with the file type you want to search. Add keywords like "confidential" or "password" to find potentially sensitive documents.

Yes, using Google Dorks to check your own sites and files is perfectly legal. It's a legitimate tool for:

Checking your own data exposure
Security audit of your site
Authorized penetration testing
Bug bounty on authorized programs

Warning: It is illegal to use Google Dorks to access other people's data without authorization or for malicious purposes.