Stages of pentesting
- ====== dorking ======
Dorking is an advanced application of search engine search operators — using a search engine to hunt for specific vulnerable devices, exploitable files, sensitive data and so on through specific search strings.
google - allintext:password filetype:log
google - filetype:env "DB_PASSWORD"
- review & filter
- maintain access
- clean traces