Simple way to find all login pages on website

hpprinter100 · Post by **hpprinter100** » 12 Mar 2010, 12:59

By using google you can find the login page with googles site:

just use

site:thesiteuwantlogin.com login

Prob old but meh i found it cool xD

Post by **bad_brain** » 12 Mar 2010, 14:11

search the downloads for "goolag", you will surely like it...^^

Radar_mX · Post by **Radar_mX** » 17 Mar 2010, 20:59

there are a lot perl scripts and a tool called Admin Login Finder and other tools you can find on the internet

hpprinter100 · Post by **hpprinter100** » 19 Mar 2010, 11:59

yeah php ones are good, u can test to see how easy your own admin page is to find =D

Post by **CommonStray** » 19 Mar 2010, 13:21

security through obscurity is not security at all.

Lyecdevf · Post by **Lyecdevf** » 26 Apr 2010, 13:18

A while ago I tried to login to flyninja but could not find the login page. I was not quite sure what to do. It is odd how I have been here learning the script kiddie ways but when I wanted to do some thing simple like find a login page I froze. This was a friend right! We do not do things like that... Any way B_B helped me out and I was like, "man why did not I look up on google the default login page for php sites." Thanks man you are a great help. Thanks for the google dork. I am sure it is going to come in handy one day.

hpprinter100 · Post by **hpprinter100** » 01 May 2010, 15:52

you can also find some interesting bits about a site if it has a robots.txt on it even suck-o has something interesting

Code: Select all

User-agent: *
Disallow: /images/
Disallow: /admin.php


User-agent: BackDoorBot/1.0
Disallow: /

robots.txt tells the search robots like googles crawlers not to vists suck-o admin.php.

But is also tells the hacker that there is an admin.php.

n3rd · Post by **n3rd** » 01 May 2010, 16:06

I have to say though that its the biggest downside of standard CMS's that are out there.

I have no idea on how to hide my login for wordpress for instance.

Post by **ayu** » 01 May 2010, 16:09

n3rd wrote:I have to say though that its the biggest downside of standard CMS's that are out there.

I have no idea on how to hide my login for wordpress for instance.

Well, I think you can use mod_rewrite in Apache for that, and there's most likely some module for it in WP.

Or just remove it : D

hpprinter100 · Post by **hpprinter100** » 01 May 2010, 16:15

If you use opensource software you usally have to honour the owner. You can hide the footer tags but they usally put stuff in the metatag. So just view souce and have a poke around