WEBVTT

0
00:01.320 --> 00:02.610
Welcome guys!

1
00:02.700 --> 00:05.250
In this lecture we'll talk about hacking

2
00:05.310 --> 00:06.780
Google searches.

3
00:06.930 --> 00:13.070
You'll find out how hackers and security researchers find out information on the Internet.

4
00:14.490 --> 00:21.900
Google hacking, also named Google dorking, is a computer hacking technique that uses Google search to

5
00:21.900 --> 00:27.760
find security holes in the configurations that websites use.

6
00:27.760 --> 00:35.320
This is in fact an information gathering technique that uses advanced Google search queries.

7
00:35.480 --> 00:41.330
This can be used to identify security vulnerabilities in web applications,

8
00:41.330 --> 00:50.030
gather information about arbitrary or individual targets, discover error messages, disclosing sensitive

9
00:50.030 --> 00:55.640
information, discover files containing credentials and other sensitive data.

10
00:56.300 --> 00:59.480
Let's get started with the basics!

11
00:59.840 --> 01:05.710
When you search something on Google it will try to intelligently guess what you are in fact willing

12
01:05.720 --> 01:08.440
to find out.

13
01:08.470 --> 01:11.560
Let's search for web scraping with Python

14
01:18.220 --> 01:26.740
and Google returned a lot of results and each result has something to do with words web, scraping and

15
01:26.770 --> 01:30.750
python.

16
01:30.750 --> 01:38.190
Now if you want to search for an exact string you should enclose the string in double quotes, like this,

17
01:42.150 --> 01:47.740
and it's showing only results that contain these four words, 

18
01:48.090 --> 01:54.380
"web scraping with python" in the exact order written by me.

19
01:54.430 --> 01:59.800
This is very useful sometimes to cut out the noise.

20
01:59.840 --> 02:07.440
Now if you are looking up for a technology related question you do not want to see old or obsolete results.

21
02:08.040 --> 02:09.480
To be more relevant

22
02:09.510 --> 02:13.710
you can narrow the search to the latest results.

23
02:13.710 --> 02:21.840
And one of the favorite ways to do that is to click on tools and then choose a specific time interval

24
02:22.020 --> 02:25.890
for your search. Let's

25
02:25.930 --> 02:28.660
see only the results from the past year.

26
02:32.810 --> 02:33.290
OK.

27
02:33.290 --> 02:36.850
These are the results from the past year.

28
02:36.860 --> 02:45.150
Another thing we can do to make the search even more helpful is to add a particular file type. Let's say

29
02:45.150 --> 02:53.680
I want to find out only pdf files related to Python web scraping written between double quotes. To

30
02:53.680 --> 02:54.290
do that

31
02:54.310 --> 03:03.310
I'll use what is called an operator and for this example the operator will be file type; so file type

32
03:03.430 --> 03:13.460
the name of the operator : and the name of the file pdf. And we see that all results are of

33
03:13.460 --> 03:14.480
type pdf.

34
03:21.660 --> 03:23.850
They are only pdf files.

35
03:33.590 --> 03:35.430
Let's try another one!

36
03:35.570 --> 03:45.790
I'm looking for Apple sales in  2019 and I want to see only excel files! 
so 2019

37
03:46.010 --> 03:58.240
apple sales filetype:xlsx and I want to see all results, not only the results from the past

38
03:58.240 --> 03:58.450
year.

39
03:58.480 --> 03:59.420
So any time!

40
03:59.970 --> 04:00.250
OK!

41
04:06.200 --> 04:06.720
I 've got

42
04:06.740 --> 04:14.230
only Excel files related to Apple's sales in 2019.

43
04:14.230 --> 04:21.090
This is really useful to limit your searches only to what matters to you.

44
04:21.120 --> 04:29.520
I'll go even deeper and I'll say that I want to see results about Apple's sales in 2019 but I don't

45
04:29.520 --> 04:37.520
want to see anything related to iPhone so I'll add - iPhone to the search query.

46
04:39.020 --> 04:48.330
I put a minus sign just before the word or the words that I don't want; iPhone was excluded.

47
04:51.600 --> 04:56.200
These are Apple iPad sales worldwide!

48
04:56.540 --> 05:03.480
And if you want to limit the results to only a website you can use the site operator like this: site :

49
05:03.500 --> 05:10.330
let's say Wikipedia.org intitle

50
05:10.410 --> 05:12.210
(This is another operator)

51
05:12.320 --> 05:13.860
:security

52
05:17.440 --> 05:19.770
all the results are from Wikipedia

53
05:19.770 --> 05:27.700
.org and intitle made Google to restrict their results to web pages containing the word security

54
05:27.940 --> 05:29.610
in the title.

55
05:29.610 --> 05:37.640
There is always the word security in the title. Another useful operator is the logical or.

56
05:37.950 --> 05:42.150
For example I'm searching for bitcoin or Ethereum.

57
05:48.910 --> 05:58.280
This is the OR operator; you can use a pair of parentheses to group multiple terms or search operators

58
05:58.520 --> 06:01.210
to control how the search is executed.

59
06:01.220 --> 06:11.380
For example I'm searching for either (bitcoin | ethereum)  - a pair of parenthesis and then

60
06:11.380 --> 06:12.660
hash algorithm.

61
06:18.990 --> 06:26.050
I'm searching in fact for bitcoin hash algorithm or ethereum hash algorithm.

62
06:26.100 --> 06:34.900
Another thing you can do, if you find this confusing, is to use the advanced search option. Go to Google

63
06:35.020 --> 06:43.960
.com/advanced underline search and you'll see here a lot of useful options that allow you to

64
06:43.960 --> 06:47.020
construct your search with the exact parameters.