{"id":11200,"date":"2017-02-14T23:30:43","date_gmt":"2017-02-14T23:30:43","guid":{"rendered":"https:\/\/evosec.eu\/?p=11200"},"modified":"2017-02-15T03:41:53","modified_gmt":"2017-02-15T03:41:53","slug":"google-dork-hacking-use-awesome-search-tool-find-right-candidates","status":"publish","type":"post","link":"https:\/\/evosec.eu\/de\/google-dork-hacking-use-awesome-search-tool-find-right-candidates\/","title":{"rendered":"Google Dork Hacking: &#8222;use our awesome search tool&#8230;&#8220;"},"content":{"rendered":"<p>&#8222;&#8230; to find the right candidates&#8220;<\/p>\n<p>Why would anyone (or anything &#8211; as in a software or a web-bot) search for a string like &#8222;site:.eu &#8222;use our awesome search tool to find the right candidates&#8220;&#8220; on Google?<\/p>\n<p>Well, probably to extract some information. Personal Identifiable Information \/ Sensitive Personal Information? Maybe.<br \/>\nFor what use? One we can think of: phishing. Interesting, don&#8217;t you think?<\/p>\n<p>A quick explanation:<br \/>\n&#8222;site:.eu&#8220; &#8211; searches for sites that have European (.eu) TLD (top level domains)<br \/>\n&#8222;&#8220;use our awesome search tool to find the right candidates&#8220;&#8220; &#8211; pay attention to the quotes &#8211; searches for sites that have this exact string in their pages.<br \/>\nSo &#8222;somebody&#8220; is looking for European websites that provide candidates. <\/p>\n<p>Of course, it might also be a signature of an exploitable script. Or just a WordPress Premium Theme (with a security hole?) &#8211; as in the one located here: <a href=\"http:\/\/alexgurghis.com\/themes\/wpjobus\/resumes\/\">http:\/\/alexgurghis.com\/themes\/wpjobus\/resumes\/<\/a>. Keep your eyes open &#8211; you can never be too careful about the plugins\/themes you use on your website(s).<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8222;&#8230; to find the right candidates&#8220; Why would anyone (or anything &#8211; as in a software or a web-bot) search for a string like &#8222;site:.eu &#8222;use our awesome search tool to find the right candidates&#8220;&#8220; on Google? Well, probably to extract some information. Personal Identifiable Information \/ Sensitive Personal Information? &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[947],"tags":[346,986],"class_list":["post-11200","post","type-post","status-publish","format-standard","hentry","category-it-security","tag-phishing","tag-pii"],"translation":{"provider":"WPGlobus","version":"3.0.2","language":"de","enabled_languages":["en","da","de","es","fi","fr","it","hu","nl","no","pl","pt","ru","sv"],"languages":{"en":{"title":true,"content":true,"excerpt":false},"da":{"title":false,"content":false,"excerpt":false},"de":{"title":false,"content":false,"excerpt":false},"es":{"title":false,"content":false,"excerpt":false},"fi":{"title":false,"content":false,"excerpt":false},"fr":{"title":false,"content":false,"excerpt":false},"it":{"title":false,"content":false,"excerpt":false},"hu":{"title":false,"content":false,"excerpt":false},"nl":{"title":false,"content":false,"excerpt":false},"no":{"title":false,"content":false,"excerpt":false},"pl":{"title":false,"content":false,"excerpt":false},"pt":{"title":false,"content":false,"excerpt":false},"ru":{"title":false,"content":false,"excerpt":false},"sv":{"title":false,"content":false,"excerpt":false}}},"_links":{"self":[{"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/posts\/11200","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/comments?post=11200"}],"version-history":[{"count":3,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/posts\/11200\/revisions"}],"predecessor-version":[{"id":11202,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/posts\/11200\/revisions\/11202"}],"wp:attachment":[{"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/media?parent=11200"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/categories?post=11200"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/evosec.eu\/de\/wp-json\/wp\/v2\/tags?post=11200"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}