One secure - Tools - Google Hacking Google Dorking Go For Open Redirections, SSRF, Parameter Pollution, LFI Select All redir redirect_uri redirect_url return_uri return_url return_to href host next url uri origin referrer callback_url redirect img_url img_uri returnTo checkout_url continue return_path destination rurl image_url newurl file path For File/Page Extentions Select All php jsp asp aspx action do rb xml phtml For Injection Based Attacks - XSS,SQL Injection,SSTI Select All q s search id lang keyword query page keywords year view email type name p month list_type terms categoryid key l begindate enddate list t cat category action firstname lastname uid startTime eventSearch sort positiontitle groupid message tag title orgId text handler id_site city search_query msg sortby mode code location version order term start k ref country from f state phone Itemid lng place expand price address day display error form language u Sensitive Information Disclosure Select All sql phpinfo.php SQL Error Pages yaml txt reg ini ora env inf rdp cnf conf old backup bak bakp log db mdb .htaccess .git webconfig nginxstatus crossdomain Login and Signup Pages Select All login signup register admin Unprotected Files Select All doc/docs odt rtf pdf sxw psw ppt/pptx xls/xlsx/csv pps WordPress Select All WordPress WordPress Login WordPress Admin WordPress Signup Xmlrpc WordPress Configuration WordPress User Enumeration WordPress Cron WordPress File Upload Additional Helpful Information Select All Directory Listing Configuration Files Database Files Pastebin Swagger UI
