https://www.exploit-db.com/google-hacking-database Google Hacking Database (GHDB)

https://github.com/m3n0sd0n4ld/GooFuzz GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

https://github.com/opsdisk/pagodo pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching

Finding the hidden login page of target websites

https://sguru.org/files/4500_gdork_sguru.org.txt 4500+ Google Dorks List

Types of Vulnerabilities Google Dorks Can Reveal

Footholds into a web server Web Server Detection - web servers profiling Files containing usernames and passwords and some juicy info Sensitive Directories Vulnerable Files Vulnerable Servers Sensitive Online Shopping Info (customer data, suppliers, orders, credit card numbers, credit card info, etc.) Error Messages Network or vulnerability data (firewall logs, honeypot logs, network information, IDS logs etc.) Pages containing login portals Various Online Devices (printers, video cameras etc.) Advisories and Vulnerabilities (various security advisory posts, and in many cases are product or version-specific)