Back to Library

Find PEM Files

Discovers exposed PEM-encoded private key and certificate files used for SSL/TLS encryption and SSH authentication.

Beginner Friendly
Safe to use
files

Google Dork Query:

filetype:pem intext:private
0
Not verified

What It Does

This dork uses the 'intext:' operator to search for text in page content combined with the 'filetype:' operator to filter by file format combined with the 'ext:' operator to filter by file extension to narrow results to specific pages. Results return specific files indexed by Google that were likely unintentionally exposed on public web servers.

Common Use Cases

  • Sensitive File Detection: Find specific file types inadvertently exposed on public web servers.
  • Data Classification Review: Identify files that should be classified and protected from public access.
  • Information Governance Audit: Discover exposed files during data governance reviews to ensure proper access controls.

How to Use Safely

  1. Run this dork to find specific file types exposed on public web servers.
  2. Review results to identify files containing sensitive information.
  3. Download and examine accessible files to assess data sensitivity.
  4. Report exposed files and recommend removing them or adding authentication.

Responsible Use Required

This dork should only be used on systems you own or have explicit authorization to test. Unauthorized access to computer systems is illegal. Always follow ethical guidelines and obtain proper permission before testing.

TAGS

pem
private

Related Dorks

Find PHP Files

Locates password and credential files containing authentication credentials that have been inadvertently exposed to public indexing.

Find PAC Files

Finds proxy auto-configuration (PAC) files that have been inadvertently exposed on web servers and indexed by search engines.

Find Live View / - AXIS Pages

Finds live view / - axis pages that have been inadvertently exposed on web servers and indexed by search engines.