Shrey JerryShah3

## http_html.txt
http.html:"Wordpress"
http.html:"Discourse"
http.html:"Grafana"
http.html:"Jenkins"
http.html:"MongoDB"
http.html:"JBoss"
http.html:"Drupal"
http.html:"Joomla"
http.html:"Kibana"
http.html:"Elastic"

## title.txt
http.title:"Grafana"
http.title:"Jenkins"
http.title:"MongoDB"
http.title:"JBoss"
http.title:"Django"
http.title:"Drupal"
http.title:"Joomla"
http.title:"Discourse"
http.title:"Wordpress"
http.title:"Kibana"

## status_codes.txt
http.status:"101"  --------------------------------------------------------------  Switching Protocols (For finding web socket hijacking)
http.status:"102"  --------------------------------------------------------------  WebDAV (For checking enabled webdav)
http.status:"200"  --------------------------------------------------------------  OK
http.status:"301"  --------------------------------------------------------------  Moved Permanently
http.status:"302"  --------------------------------------------------------------  Moved Temporarily
http.status:"307"  --------------------------------------------------------------  Temporary Redirect
http.status:"308"  --------------------------------------------------------------  Permanent Redirect
http.status:"401"  --------------------------------------------------------------  Unauthorized (For checking authorization bypass)
http.status:"403"  --------------------------------------------------------------  Forbidden (For checking forbidden bypass)
http.status:"404"

## ports.txt
port:21 "proftpd"
port:21 "220" "230 Login successful."
port:27017 "MongoDB Server Information"
port:22 OpenSSH
port:25 "exim"
port:80 "Apache httpd"
port:3389 "remote desktop"


NOTE 1 : You need to enumerate and look for the sensitive information. This dorks will not give you the direct hit to vulnerabilities.

## favicon_hashes.txt
http.favicon.hash:"81586312"      -------------------------------------------------------   Jenkins
http.favicon.hash:"743365239"     -------------------------------------------------------   Atlassian
http.favicon.hash:"628535358"     -------------------------------------------------------   Atlassian
http.favicon.hash:"705143395"     -------------------------------------------------------   Atlassian
http.favicon.hash:"855273746"     -------------------------------------------------------   JIRA
http.favicon.hash:"981867722"     -------------------------------------------------------   Atlassian – JIRA
http.favicon.hash:"552727997"     -------------------------------------------------------   Atlassian – JIRA
http.favicon.hash:"-1581907337"   -------------------------------------------------------   Atlassian – JIRA
http.favicon.hash:"-305179312"    -------------------------------------------------------   Atlassian – Confluence
http.favicon.hash:"-1642532491"   -------------------------------------------

## component.txt
"For finding template injection"

http.component:"AngularJS"
http.component:"Ruby"
http.component:"Ruby on Rails"
http.component:"Python"
-------------------------------

"For finding php vulnerabilites"

## component_category.txt
http.component_category:"Programming languages"
http.component_category:"Databases"
http.component_category:"CDN"
http.component_category:"Caching"
http.component_category:"Javascript libraries"
http.component_category:"Javascript frameworks"
http.component_category:"Security"
http.component_category:"Miscellaneous"
http.component_category:"Maps"
http.component_category:"CMS"

## waf.txt
http.waf:"Cloudflare"
http.waf:"Cloudfront"
http.waf:"Akamai"
http.waf:"AWS"
http.waf:"Azure"
http.waf:"Imperva"
http.waf:"Nginx"
http.waf:"Barracuda"
http.waf:"F5"
http.waf:"Sucuri"

## ssl_alpn.txt
ssl.alpn:"http/1.0"
ssl.alpn:"http/1.1"
ssl.alpn:"http/2"
ssl.alpn:"http/2.0"
ssl.alpn:"h2"
ssl.alpn:"spdy/1"
ssl.alpn:"spdy/2"
ssl.alpn:"spdy/3"
ssl.alpn:"http/0.9"
ssl.alpn:"acme-tls/1"

## products.txt
product:"Apache httpd"
product:"OpenSSH"
product:"ciscoSystems"
product:"nginx"
product:"BigIP"
product:"Microsoft HTTPAPI httpd"
product:"Apache Tomcat/Coyote JSP engine"
product:"OpenResty"
product:"Postfix smtpd"
product:"MySQL"
	http.html:"Wordpress"
	http.html:"Discourse"
	http.html:"Grafana"
	http.html:"Jenkins"
	http.html:"MongoDB"
	http.html:"JBoss"
	http.html:"Drupal"
	http.html:"Joomla"
	http.html:"Kibana"
	http.html:"Elastic"
	http.title:"Grafana"
	http.title:"Jenkins"
	http.title:"MongoDB"
	http.title:"JBoss"
	http.title:"Django"
	http.title:"Drupal"
	http.title:"Joomla"
	http.title:"Discourse"
	http.title:"Wordpress"
	http.title:"Kibana"
	http.status:"101" -------------------------------------------------------------- Switching Protocols (For finding web socket hijacking)
	http.status:"102" -------------------------------------------------------------- WebDAV (For checking enabled webdav)
	http.status:"200" -------------------------------------------------------------- OK
	http.status:"301" -------------------------------------------------------------- Moved Permanently
	http.status:"302" -------------------------------------------------------------- Moved Temporarily
	http.status:"307" -------------------------------------------------------------- Temporary Redirect
	http.status:"308" -------------------------------------------------------------- Permanent Redirect
	http.status:"401" -------------------------------------------------------------- Unauthorized (For checking authorization bypass)
	http.status:"403" -------------------------------------------------------------- Forbidden (For checking forbidden bypass)
	http.status:"404"
	port:21 "proftpd"
	port:21 "220" "230 Login successful."
	port:27017 "MongoDB Server Information"
	port:22 OpenSSH
	port:25 "exim"
	port:80 "Apache httpd"
	port:3389 "remote desktop"


	NOTE 1 : You need to enumerate and look for the sensitive information. This dorks will not give you the direct hit to vulnerabilities.
	http.favicon.hash:"81586312" ------------------------------------------------------- Jenkins
	http.favicon.hash:"743365239" ------------------------------------------------------- Atlassian
	http.favicon.hash:"628535358" ------------------------------------------------------- Atlassian
	http.favicon.hash:"705143395" ------------------------------------------------------- Atlassian
	http.favicon.hash:"855273746" ------------------------------------------------------- JIRA
	http.favicon.hash:"981867722" ------------------------------------------------------- Atlassian – JIRA
	http.favicon.hash:"552727997" ------------------------------------------------------- Atlassian – JIRA
	http.favicon.hash:"-1581907337" ------------------------------------------------------- Atlassian – JIRA
	http.favicon.hash:"-305179312" ------------------------------------------------------- Atlassian – Confluence
	http.favicon.hash:"-1642532491" -------------------------------------------
	"For finding template injection"

	http.component:"AngularJS"
	http.component:"Ruby"
	http.component:"Ruby on Rails"
	http.component:"Python"
	-------------------------------

	"For finding php vulnerabilites"
	http.component_category:"Programming languages"
	http.component_category:"Databases"
	http.component_category:"CDN"
	http.component_category:"Caching"
	http.component_category:"Javascript libraries"
	http.component_category:"Javascript frameworks"
	http.component_category:"Security"
	http.component_category:"Miscellaneous"
	http.component_category:"Maps"
	http.component_category:"CMS"
	http.waf:"Cloudflare"
	http.waf:"Cloudfront"
	http.waf:"Akamai"
	http.waf:"AWS"
	http.waf:"Azure"
	http.waf:"Imperva"
	http.waf:"Nginx"
	http.waf:"Barracuda"
	http.waf:"F5"
	http.waf:"Sucuri"
	ssl.alpn:"http/1.0"
	ssl.alpn:"http/1.1"
	ssl.alpn:"http/2"
	ssl.alpn:"http/2.0"
	ssl.alpn:"h2"
	ssl.alpn:"spdy/1"
	ssl.alpn:"spdy/2"
	ssl.alpn:"spdy/3"
	ssl.alpn:"http/0.9"
	ssl.alpn:"acme-tls/1"
	product:"Apache httpd"
	product:"OpenSSH"
	product:"ciscoSystems"
	product:"nginx"
	product:"BigIP"
	product:"Microsoft HTTPAPI httpd"
	product:"Apache Tomcat/Coyote JSP engine"
	product:"OpenResty"
	product:"Postfix smtpd"
	product:"MySQL"