README.md

Netlas dorks

About

In this document, you will find dorks for the Netlas.io search engine. They are divided into several categories, each dork also has a link by which you can immediately go to the query results. The dork list from RedTeamGuide was taken as a basis, and processed in accordance with our syntax. If you find any inaccuracies, please feel free to send pull requests or write Issues.

Note: In some places, you will see two dorks. As a rule, this is done in order to duplicate the request made using the tag. In Netlas, the use of tags is possible starting with a Business subscription, so users of the Community, Community II, and Freelancer levels should take a closer look at the duplicate dorks.

---

Contents

• 2023 CVEs
• General Searches
• Iot, Routers and Security
• Web cameras
• Communication
• Remote Access
• VoIP
• Storages and Databases
• Web Services
• Developing and Monitoring
• Other

---

Dorks

2023 Interesting CVEs

• CVE-2023-20159, -20160, -20161, -20189 (Cisco Small Business Switches) [Search]
  http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
• CVE-2023-22620 (SecurePoiunt) [Search]
  http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
• CVE-2023-24411 (WordPress plugin) [Search]
  (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/bne-testimonials")
• CVE-2023-25135 (vBulletin) [Search]
  tag.vbulletin.version:<=5.6.9
• CVE-2023-25157 (GeoServer) [Search]
  http.title:"geoserver"
• CVE-2023-25690 (Apache HTTP Server) [Search] [Search]
  tag.name:"apache" AND (tag.apache.version:>=2.4.0 AND tag.apache.version:<=2.4.55)
• CVE-2023-25717 (Ruckus Wireless Admin) [Search]
  http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
• CVE-2023-26359 (Adobe ColdFusion) [Search]
  tag.name:"adobe_coldfusion"
• CVE-2023-2732 (Barracuda Email Security Gateway) [Search]
  http.headers.server:"BarracudaHTTP"
• CVE-2023-27350 (PaperCut MF/NG) [Search]
  (http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)
• CVE-2023-27524 (Apache Superset) [Search]
  (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
• CVE-2023-27997 (Fortigate VPN) [Search] [Search]
  http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
tag.name:"fortigate_vpn"
• CVE-2023-28375 (Osprey Pumps) [Search]
  http.title:(Osprey Controller)
• CVE-2023-2868 (Wordpress, MStore API) [Search]
  (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/mstore")
• CVE-2023-33778 (Vigor Routers) [Search] http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
• CVE-2023-3128 (Grafana) [Search] http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
• CVE-2023-34192 (Zimbraq Collaboration Suite) [Search]
  http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
• CVE-2023-3460 (WordPress plugin, UltimateMember) [Search]
  http.body:"wp-content/plugins/ultimate-member"
• CVE-2023-36630 (CloudPanel) [Search]
  http.title:"cloudpanel" NOT http.body:"2.3.1"

---

General Searches

• AMQP [Search]
  amqp:*
• ASN [Search] [Search]
  In IP Whois Search:
  asn.name:"asnName"
asn.number:asnNumber
• City [Search]
  geo.city:cityName
• Country [Search]
  geo.country:countryName
• Directory Listings [Search]
  http.title:"/index of/"
• DNS [Search]
  In Domain Search tool:
  domain:domainName
• FTP [Search]
  prot7:ftp
• FTP Banner [Search]
  ftp.banner:"bannerText"
• Modbus [Search]
  protocol:modbus
• Netbios [Search]
  protocol:netbios
• Redis [Search]
  protocol:redis
• SMB [Search]
  prot7:smb
• SMTP [Search]
  prot7:smtp
• SOCKS [Search]
  prot7:socks
• SSH [Search]
  protocol:ssh

---

IoT, Routers and Security

• All IoT [Search]
  tag.category:"IoT"
• Barracuda [Search]
  http.headers.server:"BarracudaHTTP"
• Canon [Search]
  http.headers.server:"Canon HTTP Server"
• Cisco [Search] [Search]
  tag.name:"Cisco"
http.favicon.hash_sha256:62a8461e328d5bace3780ff738d0b58f6502592c04afa564e0a8a792583a7bfb
• Cisco Small Business Switches [Search]
  http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
• Controllers with Windows CE OS [Search]
  http.headers.server:"Microsoft-WinCE"
• DefectDojo [Search]
  http.title:"DefectDojo"
• DLink [Search] [Search]
  tag.name:"dlink"
http.favicon.hash_sha256:81adccffbd70a76e9662977e7b55938e7eec597ac8b58e5a564959e6d465deec
• Draytek Routers [Search]
  http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
• Epson HTTP [Search]
  http.headers.server:"EPSON-HTTP"
• Epson Linux [Search]
  http.headers.server:"EPSON_Linux UpnP" http.status_code:200
• FortiNet [Search] [Search]
  tag.name:"fortinet"
http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
• Home Assistant [Search]
  http.favicon.hash_sha256:892d336ba0b3ce7f94ebbcbe2fa5c3fcfdc79f25efcdc7a7e17918e85daaf9f0
• HP iLO [Search] [Search]
  tag.name:"hp_ilo"
http.favicon.hash_sha256:0c16db2ccec266761010fa53ad69e2f6aafbf6b3134730e1fa72f19daf93ed04
• HP Printers [Search]
• http.headers.server:("HP HTTP" "Serial Number" "Built")
• Huawei Routers [Search] [Search]
  tag.name:"huawei_router"
http.favicon.hash_sha256:e64086f94c7013d92ca6d7e05933f4fb90cf8966aeff1efc583a92d1827093db
• IPSec [Search]
  port:500 OR port:4500 OR port:1701
• Lexmark printers - [Search]
  http.headers.server:"Lexmark"
• Media servers [Search]
  tag.category:"Media servers"
• Mitsubishi Air Conditioning Control System [Search]
  http.favicon.hash_sha256:055c1bfeac57280906a11333c72430893014329296751f398939987e11d7df5c
• Netgear [Search] [Search]
  tag.name:"netgear"
http.favicon.hash_sha256:3bfc11a176b9c8a39870478951fc177a3bc53c9fb689cdf5f80bff6a0c4c3c6b
• Nexus [Search]
  http.favicon.hash_sha256:9337dace49934010c4fdbb5c2c778c16f9e42bdb3da2ac476744dcc8705025c2
• OpenCTI [Search]
  http.title:"OpenCTI"
• PaperCut MF/NG [Search]
  http.meta:"PaperCut MF" OR http.meta:"PaperCut NG"
• PRTG [Search]
  (http.body:"PRTG Network Monitor") AND (http.headers.server:"prtg")
• Ruckus [Search]
  http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
• Ruijie [Search]
  http.favicon.hash_sha256:8be4899f8cbc8a9d6283d101ef5b9afa95f83bef8ba676b1e5b8cfb375d2391d
• Samsung old printers [Search]
  http.title:"syncthru web service"
• SecurePoint [Search] [Search]
  tag.name:"securepoint"
http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
• Siemens [Search]
  http.favicon.hash_sha256:4f81d8e8df852d2ef27c4b1d9f211a505346ae12840a83db033db329750e7fdb
• Tenda [Search]
  http.favicon.hash_sha256:9322e4def463fff36b0e180ddcf67a38853b7b729716aa5ab7a119e3a24841bc
• TPLink [Search] [Search]
  tag.name:"tplink"
http.favicon.hash_sha256:9e803d05d8907cca1f7730f187707c25b0fb60f9e286e2957ab1e21cffdefde2
• Wazuh [Search]
  http.title:"Wazuh"
• XEROX WorkCentre [Search]
  certificate.issuer.common_name:"Xerox Generic Root"
• XZERES Wind [Search]
  http.body:"xzeres wind"
• Zyxel ZyWALL [Search] [Search]
  tag.name:"zyxel_zywall"
http.favicon.hash_sha256:9a02f3cf948f9409c25070f2f057b69dda5d0aaf7fa8d056552e8bda8295ca1f

---

Web cameras

• All cameras [Search] [Search]
  tag.category:"Web cameras"
http.title:"camera"
• Android IP Webcam Server [Search]
  http.headers.server:"IP Webcam Server"
• Avigilion webcams [Search]
  http.title:"Avigilon"
• Blue Iris [Search]
  http.favicon.hash_sha256:6e32c76e9c522baacd1362fdfacc8e47eda0f62937bb226ae38a5b8d2157f7cd
• GeoVision webcams [Search]
  http.headers.server:"GeoHttpServer"
• Hipcam [Search]
  http.headers.server:"Hipcam"
• i-Catcher [Search]
  http.headers.server:"i-Catcher Console"
• IPCam Client [Search]
  http.title:”ipcam″
• Linksys [Search]
  http.title:"tm01"
• SQ-WEBCAM [Search]
  http.headers.server:"SQ-WEBCAM"
• UI3 for Blue Iris [Search]
  http.title:"ui3"
• VB-M600 cameras [Search]
  http.title:”VB-M600″
• Vivotec IP cameras [Search]
  http.headers.server:"VVTK-HTTP-Server"
• Webcam 7 [Search]
  http.headers.server:"webcam 7"
• YawCam [Search]
  http.headers.server:"yawcam" http.unknown_headers.key:"mime_type" http.unknown_headers.value:"text/html"

---

Communication

• Adobe Connect [Search]
  http.favicon.hash_sha256:65576e8c7a144d8f4530ee1f87f6157d3fc680a029409d874f529d05e60b9fa1
• Gitter [Search]
  http.title:"Gitter"
• Mattermost [Search]
  http.title:"mattermost"
• Microsoft Exchange [Search]
  tag.name:"microsoft_exchange"
• Microsoft Teams [Search]
  http.favicon.hash_sha256:397eddf44e1bf7e557b0b4f5173da95d8fd832b6f2f10d6e41c17dc539d5a822
• RabbitMQ [Search] [Search]
  tag.name:"rabbitmq"
http.favicon.hash_sha256:8c08be4e11537f793f06a9e6dd91aba52d43032b66d11f81fa5df7e452e52aa1
• Rocket.Chat [Search]
  http.title:"Rocket.Chat"
• Roundcube [Search] [Search]
  tag.name:"roundcube"
http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
• Skype for Business [Search] [Search]
  tag.name:"skype" AND http.title:"Skype for Business"
http.favicon.hash_sha256:7d188ade5d6bc30a4d55e83a08f4e4bafe8f71ae5af2023fc87ed9767b7dda12 AND http.title:"Skype for Business"
• Zimbra [Search]
  tag.name:"zimbra"

---

Remote Access

• All remote access [Search]
  tag.category:"Remote access"
• NoMachine [Search]
  (port:4000) OR (port:4010) OR (port:4011) OR (port:4022)
• SaltStack [Search]
  http.title:"saltstack"
• TeamViewer [Search]
  port:5938
• VNC [Search]
  prot7:vnc

---

VoIP

• All VoIP [Search]
  tag.category:"VoIP"
• MSOS [Search]
  http.headers.server:"MSOS"
• Polycom [Search]
  http.title:"polycom"
• Siemens Openstage [Search]
  http.title:"openstage"
• Snom devices [Search]
  http.headers.server:"snom"
• Tanderberg [Search] [Search]
  tag.name:"tandberg"
http.favicon.hash_sha256:0ac9e427c00eea6f25562023c84ed961943d13b9d7c7665a747ab536fb9c2a73

---

Storages and Databases

• Apache Tomcat [Search] [Search]
  tag.name:"apache_tomcat"
http.favicon.hash_sha256:64a3170a912786e9eece7e347b58f36471cb9d0bc790697b216c61050e6b1f08
• Ceph [Search]
  http.favicon.hash_sha256:3db088b4089dee70dfd305a4e200dc72c9ad7d78ffd28ffe36608eaf46591bcd
• CouchDB [Search] [Search]
  tag.name:"couchdb"
http.headers.server:"CouchDB"
• InfluxDB [Search]
  http.title:”InfluxDB Admin”
• Kubernetes [Search]
  http.favicon.hash_sha256:a8576f89337c561e1128e490c6f9e074fc4069057acb8d164b62d4cb205248bc
• Memcached [Search]
  prot7:memcached
• MicrosoftSQL [Search]
  prot7:mssql
• Minio [Search]
  http.title:"Minio"
• Nextcloud [Search]
  http.favicon.hash_sha256:bea7d85401905c569359239339770d962854ccda24f134a76f492ab58ecde9f5
• OpenShift [Search]
  http.favicon.hash_sha256:28409a985f1f3322a58dc5d1af0e3f09efa5b7d193341b55b11a72711a55a3dc
• OpenStack [Search]
  http.favicon.hash_sha256:27b7287de853e2ea7d05cf5636d6b7c70b9fb65b2f4ce9e9fded1bb27921d839
• phpmyadmin [Search] [Search]
  tag.name:"phpmyadmin"
http.favicon.hash_sha256:e2905705920b2636309d785c2df3f155d6379b0aa9a44dc7831524505fa2defd
• PostgreSQL [Search]
  prot7:postgres
• Vault [Search]
  http.title:"Vault"

---

Web Services

• Apache [Search]
  http.headers.server:"apache"
• IIS [Search] [Search]
  tag.name:"iis"
http.headers.server:"Microsoft-IIS"
• Nginx [Search]
  http.headers.server:"nginx"
• RDP [Search]
  port:3389
• SolarWinds [Search] [Search]
  tag.name:"solarwinds_ftp"
http.favicon.hash_sha256:2dbf88db1be0f1305a415b0455fe258627f56aa4b6b334130707a3b1adc6dba7
• WordPress [Search] [Search]
  tag.name:"wordpress"
http.favicon.path:"/wp-content/"

---

Developing and Monitoring

• Apache Superset [Search]
  (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
• Bamboo [Search] [Search]
  tag.name:"atlassian_bamboo"
http.favicon.hash_sha256:9fac9dadbd379126f3f81ba14e4e8d911362ec766e09226504121ee2758d0f64
• Bugzilla [Search] [Search]
  tag.name:"bugzilla"
http.favicon.hash_sha256:92307d57240ad6473bf3aa757f185ee549469bb51363be2ea824fb03c7299bf2
• Citrix Gateway [Search]
  http.title:"citrix gateway"
• Drupal [Search]
  tag.name:"drupal"
• Grafana [Search]
  http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
• Graylog [Search]
  http.favicon.hash_sha256:6d1c0130478d8645c82d039b270e7ca20e912b87489163bd5d9b1c1af95db7f8
• Jenkins [Search] [Search]
  tag.name:"jenkins"
http.favicon.hash_sha256:4fec1ee82f0dc4a8e4e9bb26954cf54cf9bf1e6a009516cb6c49ff16924e8caa
• Jira [Search] [Search]
  tag.name:"atlassian_jira"
http.favicon.hash_sha256:7bd6886a738297cd7bf2113d2cc3d898b9cad4079f336eb03fcd737549aea8a6 OR http.favicon.hash_sha256:84f150bf0c8858f1eb6c1e7ccc86f3208cc5a59b496059892c3aff5e22992d27 OR http.favicon.hash_sha256:181076e8983bc2c9fdff6d0548000cd78d1379e410f55648f2c40d6d893fa9fa
• Joomla [Search]
  tag.name:"joomla"
• Kafka [Search]
  http.title:”kafka” OR http.title:”Apache Kafka” OR http.body:”kafka” OR http.body:”Apache Kafka”
• Laravel [Search]
  tag.name:"laravel"
• ManageEngine ServiceDesk [Search]
  tag.name:"manageengine_servicedesk"
• Nagios [Search]
  (http.favicon.hash_sha256:8b19d77c4a4ee2d846b1918a8c75c66fa1c3285a12b1d28950e1e6b817b237d4) OR (http.favicon.hash_sha256:57ff1068caf7d83d9c252ae26af5f833290b917945051a90cfc4b42e4e72ac13)
• Node.js Express [Search]
  http.headers.x_powered_by:"Express" OR http.headres.set_cookie:"connect.sid"
• PandoraFMS [Search]
  http.favicon.hash_sha256:62d73ef206143e68ac686f08fc770db66aa84b21f320f4953af8bdbb6b9da50e
• Portainer [Search]
  http.favicon.hash_sha256:8170dab248310e6d887a088e75d72116e74ce99e91782e5dc0e3ff2cc4b63c3d
• Prometheus [Search]
  http.favicon.hash_sha256:d72fc7b0bd1a4c1c4a016dfa4bfd594b2fb65a409575ec8f857864d4bdc658be
• Redmine [Search] [Search]
  tag.name:"redmine"
http.favicon.hash_sha256:5210ac65f141394a8540d408a9b56ed64c21c6b212cb28144c874f5715be9ed1
• Sentry [Search]
  tag.name:"sentry"
• SonarQube [Search] [Search]
  tag.name:"sonarqubes"
http.favicon.hash_sha256:f04d7cdd55fe15c50e78457f366afa723587cf267c28b81cbcfe44248934a82b
• Swagger [Search]
  http.favicon.hash_sha256:3ed612f41e050ca5e7000cad6f1cbe7e7da39f65fca99c02e99e6591056e5837
• Symfony [Search]
  tag.name:"symfony"
• Terraform [Search]
  http.title:"Terraform Enterprise"
• Zabbix [Search] [Search] tag.name:"zabbix"
http.favicon.hash_sha256:22b06a141c425c92951056805f46691c4cd8e7547ed90b8836a282950d4b4be2
• Zend Framework [Search]
  http.headers.server:"ZendServer" OR http.headers.set_cookie:"ZDEDebuggerPresent"

---

Other

• Confluence [Search] [Search]
  tag.name:"atlassian_confluence"
http.favicon.hash_sha256:35998ea6b404f48cdaea65529793d93c19135974f6324bf1aabebce850e469bb
• DokuWiki [Search] [Search]
  tag.name:"dokuwiki"
http.favicon.hash_sha256:3ca2c21f1821782f2b2a29b814b7aa240862014a35fdee54d23a72575fc16ec1
• FTP without autorization [Search]
  port:21 AND ftp.banner:"230"
• GeoServer [Search]
  http.title:"geoserver"
• GitLab [Search]
  http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef
• Hadoop [Search]
  http.title:"Hadoop Administration"
• Nordex Control [Search]
  http.favicon.hash_sha256:830a18175634c591efda599c39e280d0a1e98213ffe96e9d637ebff817cbc326
• Splunkd [Search]
  tag.name:"splunkd"
• VSphere [Search]
  http.favicon.hash_sha256:0e3b83492fe3d83d72a60b6fb194adb9afd04466268241f5ccf700278737f74d

---

Follow us

Twitter, Telegram, Medium, Linkedin, Facebook