Find "Show/Search Pages

PRO

Finds exposed Show/Search interfaces and pages that may reveal sensitive configuration details or allow unauthorized access.

Advanced

Use with caution

files

Google Dork Query:

••••••••••••••••••••••••••••••••••

Not verified

What It Does

This dork uses the 'intitle:' operator to match specific text in page titles combined with the 'intext:' operator to search for text in page content combined with the 'ext:' operator to filter by file extension to narrow results to specific pages. Results show configuration files often containing database credentials, API endpoints, and secret keys.

Common Use Cases

Configuration Exposure Audit: Find publicly accessible config files that may contain database credentials and API keys.
Infrastructure Security Review: Identify misconfigured web servers serving configuration files instead of blocking access.
Pre-deployment Security Check: Verify sensitive configuration files are excluded from public web directories before launch.

How to Use Safely

Enter this dork in Google to find exposed configuration files.
Examine results for files containing database credentials or API keys.
Verify the exposure by checking if the file is directly downloadable.
Report the exposure and recommend blocking access via web server rules.

Responsible Use Required

This dork should only be used on systems you own or have explicit authorization to test. Unauthorized access to computer systems is illegal. Always follow ethical guidelines and obtain proper permission before testing.

Related Dorks

Find PHP Files

Locates password and credential files containing authentication credentials that have been inadvertently exposed to public indexing.

Find PAC Files

Finds proxy auto-configuration (PAC) files that have been inadvertently exposed on web servers and indexed by search engines.

Find Live View / - AXIS Pages

Finds live view / - axis pages that have been inadvertently exposed on web servers and indexed by search engines.

Back to Library