[TuT] Advanced Dorking - Introduction and Implementation of Google Search Operators

Advanced Dork Creation Tutorial

Learn how to master Google Dorks!

I.) Introduction
Hello there, and welcome back if you're tuning in for the second issue of my
tutorial suite for Dork Creation. If you're reading this thread for the first time,
I highly recommend that you should check out the initial thread that deals with
basic dork creation.

Within this tutorial we shall discuss creating more advanced dorks utilizing search
techniques and operators. We shall discuss all related terms, the aspects of
situational usage and I'll personally run you through compiling new (higher quality
and country-targeted) dorks with the knowledge you've just obtained.

II.) Google Search Techniques

These aren't exactly relevant to dorks, but it's nice to know these exact functions
exist moving forward as we will be dealing with dorks using special syntaxes in the
future.
Exact match search
Place your keyword within quotes. For example, "Fortnite Game"
Combine searchs
Using the logical operator OR, you can combine two search queries. Place an "OR"
between both queries. For example, Xbox OR PlayStation
Filter results from a specific site.
Use the "site:" prefix before your preferred domain or site. For example,
site:reddit or site:reddit.com. The latter helps when you are dealing with a
website with multiple domains such as MyProtein.
Search for related sites
Use the "related:" prefix before your preferred domain. It shall suggest you
similar websites. For example, related:facebook.com
Exclude words from search results
Use a "-" (minus) prefix in front of the words you wish to leave out, while
searching multiple keywords. For example, apple ipad -fruit
Cached version search
Use the "cache:" prefix before your keyword or website to search for old, cached
versions of your website. Very similar to the Wayback Machine, powered by Google
Cache. For example, cache:hackforums.net
Search social media
Use the "@" prefix before a word to search all known social media platforms for the
keyword. For example, @microsoft
Search hashtags
Use the "#" prefix before your keyword. For example, #birthday
Search specific price
Use the "$" prefix before a number, accompanying your main keyword. For example,
laptop $1000
Exact image size
To search for an exact image size, add the text "imagesize:100x200" where 100
depicts the width/breadth and 200 stands for the height/length.

III.) Google Search Operators

OR or |
The logical operator "OR" is used to merge results between two search queries.
Example: Xbox OR PlayStation, Xbox | PlayStation

AND
The logical operator "AND" is used to exclusively merge two queries and extract
common results. It will only feature results pertaining to both of your search
queries together and not individual results
Example: Xbox AND PlayStation

-
The minus operator "-" excludes results from our search query.
Example: HackForums -TheChief will include all results from HF but removing those
pertaining to the member "TheChief" - that guy's just bad news!

*
The asterisk operator "*" acts as a wild-card that will match any relevant word or
phrase received.
Example: "Fortnite Game *" will include Fortnite game items, Fortnite game guides,
Fortnite game tutorials, Fortnite game hacks, Fortnite game cheats, etc.

/
The forward-slash operator "/" returns search results with common words that may
have been automatically excluded by Google
Example: Apple / iPod

+
The plus operator "+" forces an exact match search on the specified keyword(s)
Example: Apple +iPod

~
The tilde operator "~" includes synonyms to the keyword you're searching. To
exclude synonyms, use the operator with the keyword in double quotes. Google now
suggests synonyms by default, but take a look at the example below as to how this
operator and its inverse works.
Example: ~fortnight or ~"fortnight"

$ or €
The currency operator "$" or "€" returns search results including a price. Very
useful while searching for shopping purposes.
Example: laptop $1000

in
The conversion operator "in" allows us to convert currencies, temperatures,
distances, speeds between different metrics of measurement.
Example: 38C in F, $500 in EUR

()
The parenthesis operators "(" and ")" work in conjuction to group multiple keywords
or search operators to control the search results. This is a rather advanced level
operator.
Example: (macbook OR ipad OR iphone) apple -iPod

define:
The operator "define" allows you to search for the meaning of terms within Google's
Dictionary.
Example: define sardonic

cache:
The operator "cache" allows you to search for the most recent version of an indexed
web page
Example: cache:hackforums.net

site:
The operator "site" allows you to limit your search results to a specific website
only. This operator can be leveraged into providing region-targeted results for our
dorks.
Example: site:hackforums.net
Further Example: site:DE, site:HK, site:UK (general format is site:TLD where TLD
stands for top-level domain, or in simple words: domain name extension)

related:
The operator "related" allows you to find websites related to the provided domain.
This operator can be leveraged into providing region-targeted results.
Example: site:reddit.com

stocks:
The operator "stocks" is used to search for stock-related information for a
specific ticker or company.
Example: stocks:AAPL

location:
The operator "location" allows us to search for relevant news articles by location.
Example: location:New York

map:
The operator "map" forces Google Search to show the map results for a specific
location.
Example: map:New York

weather:
The operator "weather" is used to look up the weather for a particular city
Example: weather:New York

movie:
The operator "movie" allows us to search for results pertaining to a specific movie
and also helps us in finding the latest showtimes if the movie is screening nearby.
Example: movie:Top Gun Maverick

info: or id:
The operator "info" or "id" is used to find information about a specific webpage or
keyword.
Example: info:HackForums or info:hackforums.net

link:
The operator "link" pinpoints webpages linking to the specified URL or domain.
Example: link:hackforums.net

filetype:
One of the most commonly used operators in dorking, the fileType operator allows us
to target a specific file extension.
Example: filetype:php OR filetype:html OR filetype:asp

intitle:
The operator "intitle" finds webpages with specific keyword(s) in the title.
Example: intitle:Omniscient

allintitle:
Similar to the operator above; the operator "allintitle" is used when you are
searching with multiple keywords and wish all of the keywords to be included within
the search results.
Example: allintitle:Omniscient HackForums Admin
intext:
The operator "intext" finds webpages containing the specified keyword(s) somewhere
within the page content.
Example: intext:dorking

allintext:
Similar to the operator above; the operator "allintext" finds webpages containing
ALL specified keywords within the page content.
Example: allintext:dorking Raymond Reddington

inurl:
Another very commonly used operators for dorking, the inURL operator allows us to
filter our search results by requiring the provided keyword/parameter to be within
the url.
Example: inurl:index.php

allinurl:
Similar to the operator above; the operator "allinurl" allows us to filter our
search results on the basis of multiple keywords
Example: allinurl:hackforums misc.php

inanchor:
The operator "inanchor" allows us to find webpages that are being linked to
specific keywords within anchor text.
Example: inanchor:PlayStation games

allinanchor:
Similar to the operator above; the operator "allinanchor" allows us to find
webpages by searching for multiple keywords within the site's anchor text.
Example: allinanchor:PlayStation Xbox PC games

source:
The operator "source" allows us to find webpages from a specific source on Google
News.
Example: Fortnite source:Forbes

#..#
The range operator "#..#" allows us to search for results conclusive within a range
of numbers. This can be used to filter out results in the terms of recent date
range.
Example: Fortnite 2017..2022

AROUND(#)
The "AROUND" operator is a commonly used operator for proximity search. It allows
us to find webpages containing keywords within X phrases of each other. The #
indicates the maximum number of words the keywords should be split apart within the
search results received.
Example: Fortnite AROUND(3) forums

IV.) Advanced Dorks Tutorial

Since we've familiarized ourselves with all of the common Google search techniques
and operators, we will be able to understand how to utilize these operators with
our existing dorks (containing primary/target keyword, secondary keyword, pageType
and pageParameter).

For this visualization, I shall have opened up more possibiltiies to our

permutation strategy of dork creation.
site:UK ?item=game Fortnite.php (Operator + Param + Secondary + Primary + Pagetype)
?item=.php site:US inanchor:game Fortnite (Param + Pagetype + Operator + Operator +
Secondary + Primary)
inurl:Fortnite game.php?item= site:NL (Operator + Primary + Secondary + Pagetype +
Param + Operator)
site:DE .php?item= intext:Fortnite game (Operator + Pagetype + Param + Operator +
Secondary + Primary)
site:IT .php Game ?item= intitle:Fortnite (Operator + Pagetype + Secondary + Param
+ Operator + Primary)
site:ES ?item= related:Fortnite game.php (Operator + Param + Operator + Primary +
Secondary + Pagetype)

With the addition of operators, we have unlocked more potential in dork creation
which will net us better tailored search results upon execution. The possibilities
of breakthroughs while creating dorks are endless, so there's no benchmark for
saturation here.

This should commence the supplementary tutorial that for dork creation within this
tutorial suite. Our next topics we cover shall involve operator selection,
alphanumerics dorks and syntax usage.

As usual, thanks for devoting your time towards this tutorial. This tutorial suite
has been strictly for educational purposes and imparting knowledge to fellow
members and I do not condone any abuse or misuse arising from it.