Free Preparation Discussions
MENU
The SecOps Group Exam CAP Topic 24 Question 93 Discussion
Topic #: 24
Which of the following Google Dorks can be used for finding directory listing on victim-app.com?
Google Dorks are advanced search operators used to find specific information or vulnerabilities on the web. Directory listing vulnerabilities occur when a web server exposes the contents of a directory (e.g., file names, paths) due to misconfiguration. The operators intitle: and intext: are used to search for specific terms in the title or body of web pages, respectively, combined with site: to limit the search to a specific domain.
Option A ('intitle:'Index of' site:victim-app.com'): Correct, as intitle:'Index of' targets pages with 'Index of' in the title, a common indicator of directory listings, and site:victim-app.com restricts the search to that domain.
Option B ('intext:'Index of' site:victim-app.com'): Correct, as intext:'Index of' searches for 'Index of' within the page content, another reliable indicator of directory listings, combined with the domain restriction.
Option C ('Both A and B'): Correct, as both intitle: and intext: can effectively identify directory listings, making this the most comprehensive answer.
Option D ('None of the above'): Incorrect, as both A and B are valid Google Dorks for this purpose.
The correct answer is C, aligning with the CAP syllabus under 'Reconnaissance Techniques' and 'Google Dorking.'
Antonio
2 months agoDesmond
17 days agoRoy
24 days agoMarsha
25 days agoAlton
2 months agoBernardine
9 days agoTambra
18 days agoRonnie
1 months agoVincenza
2 months agoMose
2 months agoMaryann
2 months agoKirk
2 days agoBulah
4 days agoTamesha
5 days agoGary
13 days agoNan
17 days agoHaydee
26 days agoWilbert
1 months agoAsha
2 months agoTrina
2 months agoPrincess
2 months agoBonita
19 days agoKristel
20 days agoTamra
23 days agoViola
25 days agoTheola
2 months agoLettie
2 months ago