Back to Library

Claude Code MCP Configs

PRO

Finds exposed Claude Code MCP Configs interfaces and pages that may reveal sensitive configuration details or allow unauthorized access.

Intermediate
Safe to use
ai llm

Google Dork Query:

••••••••••••••••••••••••••••••••••
0
Not verified

What It Does

This dork uses the 'site:' operator to restrict results to specific domains to narrow results to specific pages. Results show configuration files often containing database credentials, API endpoints, and secret keys.

Common Use Cases

  • Configuration Exposure Audit: Find publicly accessible config files that may contain database credentials and API keys.
  • Infrastructure Security Review: Identify misconfigured web servers serving configuration files instead of blocking access.
  • Pre-deployment Security Check: Verify sensitive configuration files are excluded from public web directories before launch.

How to Use Safely

  1. Enter this dork in Google to find exposed configuration files.
  2. Examine results for files containing database credentials or API keys.
  3. Verify the exposure by checking if the file is directly downloadable.
  4. Report the exposure and recommend blocking access via web server rules.

Responsible Use Required

This dork should only be used on systems you own or have explicit authorization to test. Unauthorized access to computer systems is illegal. Always follow ethical guidelines and obtain proper permission before testing.

TAGS

claude
mcp
model-context-protocol
integrations
config

Related Dorks

Google Dork: camera linksys inurl:main.cgi...

Locates exposed Linksys network cameras accessible through their main CGI interface without proper authentication.

Claude Code Hooks

Searches for targeted web resources related to AI, LLM, and automation technologies indexed across public repositories and platforms.

Claude Code Projects

Searches for targeted web resources related to AI, LLM, and automation technologies indexed across public repositories and platforms.