Finding Links on Google

By protesto
in Essential Guides

 Share

Recommended Posts

Explorer

protesto

Posted
Posted (edited)

Introduction

Google is world?s most popular and powerful search engine which has the ability to accept pre-defined commands as input and produce unbelievable results. This enables malicious users like hackers, crackers, and script kiddies etc to use Google search engine extensively to gather confidential or sensitive information which is not visible through common searches.

In this paper I shall cover the below given points that an administrators or security professionals must take into account to prevent such information disclosures:

- Google?s Advance Search Query Syntaxes

- Querying for vulnerable sites or servers using Google?s advance syntaxes

- Securing servers or sites from Google?s invasGoogle?s Advance Search Query Syntaxesntaxes

Below discussed are various Google?s special commands and I shall be explaining each command in brief and will show how it can be used for critical information[ intitle: ]title: ]

The ?intitle:? syntax helps Google restrict the search results to pages containing that word in the title. For example, ?intitle: login password? (without quotes) will return links to those pages that has the word "login" in their title, and the word "password" anywhere in the page.

Similarly, if one has to query for more than one word in the page title then in that case ?allintitle:? can be used instead of ?intitle? to get the list of pages containing all those words in its title. For example using ?intitle: login intitle: password? is same as querying ??[ inurl: ]n password?.

[ inurl: ]

The ?inurl:? syntax restricts the search results to those URLs containing the search keyword. For example: ?inurl: passwd? (without quotes) will return only links to those pages that have "passwd" in the URL.

Similarly, if one has to query for more than one word in an URL then in that case ?allinurl:? can be used instead of ?inurl? to get the list of URLs containing all those search keywords in it. For example: ?allinurl: etc/passwd? will look for the URLs containing ?etc? and ?passwd?. T[ site: ]?) between the words will be ignored by Google.

[ site: ]

The ?site:? syntax restricts Google to query for certain keywords in a particular site or domain. For example: ?exploits site:hackingspirits.com? (without quotes) will look for the keyword ?exploits? in those pages present in all the links of the domain ?hackingspirit>

[ filetype: d not be any space between ?site:? and the ?domain name?.

[ filetype: ]

This ?filetype:? syntax restricts Google search for files on internet with particular extensions (i.e. doc, pdf or ppt etc). For example: ?filetype:doc site:gov confidential? (without quotes) will look for files with ?.doc? extension in all government domains with ?.gov? extension and containing the word ?confidential? either in the pages or in the ?.doc? fil>[ link: lt will contain the links to all confidential word document files on the government sites.

[ link: ]

?link:? syntax will list down webpages that have links to the specified webpage. For Example: ?link:www.securityfocus.com? will list webpages that have links pointi>[ related: ocus homepage. Note there can be no space between the "link:" and the web page url.

[ related: ]

The ?related:? will list web pages that are "similar" to a specified web page. For Example: ?related:www.securityfocus.com? will list web pages that ar>[ cache: Securityfocus homepage. Note there can be no space between the "related:" and the web page url.

[ cache: ]

The query ?cache:? will show the version of the web page that Google has in its cache. For Example: ?cache:www.hackingspirits.com? will show Google's cache of the Google homepage. Note there can be no space between the "cache:" and the web page url.

If you include other words in the query, Google will highlight those words within the cached doc>[ intext: : ?cache:www.hackingspirits.com guest? will show the cached content with the word "guest" highlighted.

[ intext: ]

The ?intext:? syntax searches for words in a particular website. It ignores links or URLs and page titles. For example: ?>[ phonebook: ithout quotes) will return only links to those web pages that has the search keyword "exploits" in its webpage.

[ phonebook: ]

?phonebook? searches for U.S. street address and phone number information. For Example: ?phonebook:Lisa+CA? will list down all names of person having ?Lisa? in their names a>Querying for vulnerable sites or servers using Google?s advance syntaxers incase someone want to do dig personal information for social engineering.

Querying for vulnerable sites or servers using Google?s advance syntaxes

Well, the Google?s query syntaxes discussed above can really help people to precise their search and get what they are exactly looking for.

Now Google being so intelligent search engine, malicious users don?t mind exploiting its ability to dig confidential and secret information from in>Using ?Index of ? syntax to find sites enabled with Index browsinues in details how malicious user dig information from internet using Google as a tool.

Using ?Index of ? syntax to find sites enabled with Index browsing

A webserver with Index browsing enabled means anyone can browse the webserver directories like ordinary local directories. Here I shall discuss how one can use ?index of? syntax to get a list links to webserver which has got directory browsing enabled. This becomes an easy source for information gathering for a hacker. Imagine if the get hold of password files or others sensitive files which are not normally visible to the internet. Below given are few examples using which one can get access to many sensitive information much easily.

Index of /admin

Index of /passwd

Index of /password

Index of /mail

"Index of /" +passwd

"Index of /" +password.txt

"Index of /" +.htaccess

"Index of /secret"

"Ind>Looking for vulnerable sites or servers using ?inurl:? or ?allinurl:?quot;

"Index of /credit-card"

"Index of /logs"

"Index of /config"

Looking for vulnerable sites or servers using ?inurl:? or ?allinurl:?

a. Using ?allinurl:winnt/system32/? (without quotes) will list down all the links to the server which gives access to restricted directories like ?system32? through web. If you are lucky enough then you might get access to the cmd.exe in the ?system32? directory. Once you have the access to ?cmd.exe? and are able to execute it then you can go ahead in further escalating your privileges over the server and compromise it.

b. Using ?allinurl:wwwboard/passwd.txt?(without quotes) in the Google search will list down all the links to the server which are vulnerable to ?WWWBoard Password vulnerability?. To know more about this vulnerability you can have a look at the following link:

http://www.securiteam.com/exploits/2BUQ4S0SAW.html

c. Using ?inurl:.bash_history? (without quotes) will list down all the links to the server which gives access to ?.bash_history? file through web. This is a command history file. This file includes the list of command executed by the administrator, and sometimes includes sensitive information such as password typed in by the administrator. If this file is compromised and if contains the encrypted unix (or *nix) password then it can be easily cracked using ?John The Ripper?.

d. Using ?inurl:config.txt? (without quotes) will list down all the links to the servers which gives access to ?config.txt? file through web. This file contains sensitive information, including the hash value of the administrative password and database authentication credentials. For Example: Ingenium Learning Management System is a Web-based application for Windows based systems developed by Click2learn, Inc. Ingen>Other similar search using ?inurl:? or ?allinurl:? combined with other syntaxcurely in the config.txt file. For more information refer the following links:

http://www.securiteam.com/securitynews/6M00H2K5PG.html

Other similar search using ?inurl:? or ?allinurl:? combined with other syntaxs

inurl:admin filetype:txt

inurl:admin filetype:db

inurl:admin filetype:cfg

inurl:mysql filetype:cfg

inurl:passwd filet>Looking for vulnerable sites or servers using ?intitle:? or ?allintitle:?oot/*."

inurl:adpassword.txt

inurl:webeditor.php

inurl:file_upload.php

inurl:gov filetype:xls "restricted"

index of ftp +.mdb allinurl:/cgi-bin/ +mailto

Looking for vulnerable sites or servers using ?intitle:? or ?allintitle:?

a. Using [allintitle: "index of /root?] (without brackets) will list down the links to the web server which gives access to restricted directories like ?root? through web. This directory sometimes contains sensitive information which can be easily retrieved through simple web requests.

b. Using [allintitle: "index of /admin?] (without brackets) will list down the links to the websites which has got index browsing e>Other similar search using ?intitle:? or ?allintitle:? combined with other syntaxon sometimes uses names like ?admin? to store admin credentials in it. This directory sometimes contains sensitive information which can be easily retrieved through simple web requests.

Other similar search using ?intitle:? or ?allintitle:? combined with other syntaxs

intitle:"Index of" .sh_history

intitle:"Index of" .bash_history

intitle:"index of" passwd

intitle:"index of" people.lst

intitle:"index of" pwd.db

intitle:"index of" etc/shadow

intitle:"index of" spwd

intitle:&q>Other interesting Search Queriee:"index of" htpasswd

intitle:"index of" members OR accounts

intitle:"index of" user_carts OR user_cart

allintitle: sensitive filetype>To search for sites vulnerable to SQL Injection attacksed filetype:doc site:gov

Other interesting>Securing servers or sites from Google?s invasio Cross-Sites Scripting (XSS) attacks:

allinurl:/scripts/cart32.exe

allinurl:/CuteNews/show_archives.php

allinurl:/phpinfo.php

To search for sites vulnerable to SQL Injection attacks:

allinurl:/privmsg.php

allinurl:/privmsg.php

Securing servers or sites from Google?s invasion

Below given are the security measures which system administrators and security professionals must take into account to secure critical information available online, falling into wrong hands:

- Install latest security patches available till date for the applications and as well as the operating system running on the servers.

- Don?t put critical and sensitive information on servers without any proper authentication system which can be directly accessible to anyone on internet.

- Disable directory browsing on the webserver. Directory browsing should be enabled for those web-folders for which you want to give access to anyone on internet.

- If you find any links to your restricted server or sites in Google search result then it should be removed. Visit the following link for more details:

http://www.google.com/remove.html

- Disable anonymous access in the webserver through internet to restricted systems directory.

- Install filtering tools like URLScan for servers running IIS as webserver.

Edited by protesto
Link to comment
https://www.neowin.net/forum/topic/243326-finding-links-on-google/
Share on other sites
Grand Master

Code.Red

Posted
Posted (edited)

This is great info, the phonebook one, i was amazed! I searched for me and my State, so many other people! I searched for my friend and he was in there! i told him about it and he got all mad :p

Also, so many references to hackers... was this from a hackers guide or something? :blink:

Edit: *coughcough*

Edited by whcodered
  • 4 years later...
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Windows 11 gets better widgets, new Screen Tint feature, and more in the latest build

      By TarasBuria · Posted

      Windows 11 gets better widgets, new Screen Tint feature, and more in the latest build by Taras Buria While we usually cover Experimental and Beta builds together, this week's Beta updates are worth a separate article, as they offer more changes and new features than the other build. If you are a Windows Insider with a computer enrolled in the Beta Channel, you can download build 26220.8680 or build 28020.2298 (26H1). Today's release introduces long-anticipated improvements to Windows Widgets, a new display accessibility feature, File Explorer, and more. [Widgets] We're working to make Widgets feel less distracting and overwhelming by making the experience quiet by default. To do this, we're releasing a new set of default settings designed to reduce unexpected alerts and visual interruptions. These changes include: Disabling Open on hover by default Turning off Taskbar badging by default Opening to widgets experience on first launch Placing Weather as the only default widget on the lockscreen Restricting the number of Taskbar alerts that can be sent daily Limiting Taskbar alerts until you choose to open and engage with the Widgets experience As we continue to make Widgets feel less distracting, we've also made a small but meaningful visual update to taskbar badging. For those that have taskbar badging on, the badge color will now match your Windows accent color instead of always appearing red, reducing the sense of urgency that something needs your immediate attention. However, we still want it to be easy to find missed information so we now support badges on the icons in the Widget navigation bar that can show you the number of missed alerts from that specific dashboard; and badges clear automatically when you leave a dashboard, making it easy to track what's new. And if you don't want badges at all in your navigation bar, there's a setting to turn them off. We're also quieting down a user's experience based on their level of engagement, so that existing users also have a less distracting experience. For example, a user who barely engages with Widgets and would benefit from having the experience quieted down with taskbar badging turned off as it is for new users who experience it as quiet by default, as compared to a user who highly engages with Widgets and likely has their settings set to a state that works best for them and don't need some adjustments. You can also easily turn features like Taskbar badging on or off through Widgets settings, which is now a full screen experience that's easier to read. In pursuit of memory savings across the system, Widgets also now leverages device characteristics and user behavior patterns to optimize memory use. This includes things like a smaller default memory footprint, giving back memory faster when not in use, and limiting pre-launch on devices with lower memory capacity. Please share your feedback to let us know how these changes are working for you or if you encounter any issues with your quieter Widgets experience. Feedback: Share your thoughts in Feedback Hub (WIN + F) under Widgets. [Accessibility] New accessibility setting: Screen tint (also available in the 26H1 build) We're introducing screen tint, a new accessibility setting that applies a color overlay across your entire display, softening its intensity so it's easier on your eyes throughout the day. If bright, saturated screens leave you with tired or sensitive eyes by the end of a long session, screen tint can help. To get started, open Settings > Accessibility (or press Win + U) and look for screen tint under the Vision section. From there you can: Pick from six preset colors or choose a custom color of your own. Adjust the tint strength slider from a subtle wash to full intensity. Night light warms your display to reduce blue light that can interfere with sleep. Screen tint reduces overall screen intensity to ease eye fatigue and light sensitivity during the day. They tackle different problems and you can use both at the same time, one working on warmth and the other on intensity. Note that turning on screen tint will disable color filters, and vice versa. If you currently rely on color filters, you may need to keep screen tint turned off. [Windows Magnifier] Magnifier now gives you more control over how you zoom. You can type an exact zoom percentage directly in the magnifier toolbar to land on precisely the level you need. We've also added preset step increments (5%, 10%, 25%, 50%, 100%, 150%, 200%, and 400%) to the Settings dropdown, so you can jump to common levels in a single click. Whether you need a subtle boost or a dramatic close-up, Magnifier adapts to how you want to zoom. Feedback: Share your thoughts in Feedback Hub (WIN + F) under Accessibility > Magnifier [Input] Update: The emoji panel (Windows key + period (.)) now uses GIPHY as the GIF provider, delivering a smoother GIF browsing and sharing experience following the deprecation of Tenor. [Remote Recovery Management] Adding recovery remote management plug-in for extending WinRE management capabilities for MDM providers [File Explorer] The address bar now supports paths containing double backslashes and quotation marks (for example, C:\Users\user or "C:\Users\user"), improving compatibility with a wider range of inputs. Improved performance when mounting large ISO files by preventing File Explorer from becoming unresponsive during SmartScreen checks. The address bar suggestion dropdown is more reliable and now consistently closes after an item is selected. This update addresses an issue on File Explorer Home where OneDrive files could appear duplicated in the Favorites section. This update includes several refinements to the Rename experience: Addresses an issue where text was repeatedly selected when renaming items in folder views. Addresses an issue where case-only name changes were not immediately reflected in folder views for items stored locally or in the cloud. [Windows Update] If you were seeing error 0x800f0843 when attempting to install the previous update, that should be resolved now. [Other] - 26H1-only Task Scheduler will now persist column width adjustments in task list view across sessions. You can find the release notes for build 26220.8680 here and build 28020.2298 here.
    • Microsoft releases big Windows 11 25H2, 24H2 Release Preview with Recovery, Update features

      By hellowalkman · Posted

      Microsoft releases big Windows 11 25H2, 24H2 Release Preview with Recovery, Update features by Sayan Sen Microsoft has released today new Release Preview channel builds for Windows 11 Insiders. The new builds, 26100.8728 and 26200.8728, are for Windows 11 24H2 and 25H2 flighters, respectively. Meanwhile 26H1 flighters get 28000.2333. The new builds include new features related to Windows Update, Recovery, and more. The full changelogs, which are quite long today, are given below. First up we have for Builds 26200.8728 and 26100.8728: Gradual rollout This section highlights some new features and enhancements for Windows 11 PCs, including AI-powered capabilities, continuous innovation, and performance improvements. [Point-in-time restore for Windows] New! This flexible recovery feature helps you quickly roll back your PC, including apps, settings, and personal files, to a recent automatic restore point. It helps reduce downtime and simplifies troubleshooting when issues occur. To learn more, see Point-in-time restore for Windows. [Windows Update] New! A calendar experience in Windows Update settings (Settings > Windows Update) lets you pause updates by choosing an end date, for up to 35 days. You can extend the pause by selecting a different end date and re-pause updates as needed. For more information, see Pause updates in Windows. [Widgets] New! A quieter, more focused Widgets experience helps reduce interruptions and improves default settings and notification controls: Reduce distractions: Widgets no longer open on hover. Notifications and taskbar badges are minimized by default, and badges use colors that match your Windows accent. Simpler: Open to the Widgets dashboard by default on first use. New users see a simplified experience on lock screen with Weather as the only default widget. Customize: Configure Widgets the way you want by selecting Settings in the navigation bar, then changing any default settings. Stay informed: Dashboard icons show the number of alerts, and badges clear automatically when you leave a dashboard. Adjusted defaults: Some default settings are preserved based on usage, while others adjust to reduce interruptions. Performance improvements: This update provides improved reliability, responsiveness, and visual quality across the Widgets experience. [Accessibility] New! This update makes your screen easier to see and helps you customize your zoom experience: Screen tint: Apply a full-screen color overlay to help reduce eye strain and improve readability. Choose from preset tint options, adjust intensity, or turn it on automatically. Find this feature in Settings > Accessibility. Magnifier: Enter a zoom percentage directly and change it in increments in the Magnifier window for more precise, flexible control. Magnifier settings menu: Modify zoom increments directly from the Magnifier bar instead of navigating to Windows Settings each time. [File Explorer] When you hover over a file in File Explorer Home, commands such as Open file location and Ask Copilot appear as quick actions. This experience is now supported for work and school accounts (Entra ID). This feature isn't available in the European Economic Area. The address bar now supports paths containing double backslashes and quotation marks (for example, C:\Users\user or "C:\Users\user"), improving compatibility with a wider range of inputs. The address bar suggestion dropdown is more reliable and now consistently closes after an item is selected. This update addresses an issue on File Explorer Home where OneDrive files could appear duplicated in the Favorites section. This update includes several refinements to the Rename experience: Addresses an issue where text was repeatedly selected when renaming items in folder views. Addresses an issue where case-only name changes were not immediately reflected in folder views for items stored locally or in the cloud. [Bluetooth] This update improves reliability and performance when connecting to and using Bluetooth devices: New! Windows now keeps the microphone mute state in sync between the audio mixer and the Hands-Free Profile (HFP) for a more consistent experience with Bluetooth headphones with mute buttons or indicators. Device compatibility: Improves compatibility with certain Bluetooth audio devices, helping AirPods appear faster in pairing mode and improving microphone reliability on Beats Studio Pro headphones. Bluetooth audio stability and quality: Improves Bluetooth audio stability with certain PC manufacturer drivers (error code 0x9F). Improves Bluetooth audio quality and reliability for voice calls when using classic audio devices with the Hands-Free Profile (HFP). Improves reliability of LE Audio streaming after a connection is lost and restored. Reduces time for LE Audio accessories to start playing audio while using the microphone. Device management: Bluetooth device removal is now more reliable when the Bluetooth radio is disabled or changed after pairing, reducing occurrences of the "Remove failed" message. Settings experience: Improves stability when using the Bluetooth & devices settings page for a smoother, more consistent experience. Connection reliability and responsiveness: Reduces the time it takes for classic Bluetooth audio devices to reconnect after Windows resumes from hibernation. Improves reliability when LE Audio accessories disconnect, such as when another device (for example, a phone) connects. [Bluetooth and Phone Link] This update improves audio routing for calls made through a connected phone: When an outgoing call is dialed from a paired phone, audio remains on the phone while ringing and transfers to the PC only when the call is answered from the PC. When Do Not Disturb is enabled on Windows, incoming call audio from a paired phone no longer rings on the PC. [Voice access and voice typing] New! You can now use voice access and voice typing in French, German, and Spanish. As you speak, your PC improves your text in real time. It corrects grammar, punctuation, and recognition errors, and helps improve clarity, even in the presence of background noise. This makes dictation smoother and reduces the need for manual edits. Available on Copilot+ PCs. [Audio] This update improves the reliability of the inbox HD Audio driver. [Taskbar] This update improves the reliability of invoking the Start menu when clicking the left edge of the taskbar when icons in the taskbar are left-aligned. [Emoji panel] The emoji panel (Windows key + period (.)) now uses GIPHY as the GIF provider, delivering a smoother GIF browsing and sharing experience following the deprecation of Tenor. [Networking] This update includes networking improvements for virtualized environments. Confidential Virtual Machines (CVMs) now use SR-IOV hardware acceleration by default for improved network throughput, and a configuration issue in nested Hyper-V virtualization network setup has been corrected to ensure reliable VM network provisioning. This update improves the reliability of the Windows networking stack. It reduces bug checks (blue screen errors) related to Wi-Fi power and improves cellular (WWAN) connectivity, including support for IPv6 VPNs. Compatibility with third-party VPN software and SR-IOV configurations on server hardware is also improved. Network adapter settings and bindings are now preserved across OS upgrades. [Printing] New! New printer installations use Internet Printing Protocol (IPP) by default when supported, simplifying setup and improving reliability. For details about third-party driver deprecation, see End of Servicing Plan for Third-Party Printer Drivers on Windows. To control this behavior, use the toggle in Settings > Bluetooth & devices > Printers & scanners > Default install printers using Windows Ready Print. For more information, see Introducing Windows Ready Print and modernized driver selection. [Windows Subsystem for Linux (WSL)] This update improves usage of WSL in mirrored networking mode with VPNs. [Display and graphics] Improves reliability of rendering content while scrolling for certain apps spanning across multiple monitors. Improves reliability and persistence of applying color profiles. [Location services] This update changes how some location settings are displayed in Settings > Privacy & Security > Location to help with clarity. When location services are turned off, settings like Default location and Allow location override do not immediately apply, since location information is not given to apps or services. These settings are now greyed out when location services are off to reduce confusion over when they take effect. [Search] This update improves the reliability of setting Search-related group policies. [Input] New! You can now customize the size of the right-click zone in Settings > Bluetooth & devices > Touchpad. Choose from default, small, medium, or large to control how much of the bottom-right corner responds to a single-finger right-click. This setting is only available on touchpads with a pressable surface. If your device manufacturer provides customization through their app, a Custom option appears to reflect those settings. This update also improves recognition of English characters when using Japanese handwriting. [General Reliability] This update makes underlying changes to help improve explorer.exe reliability, including addressing reliability issues on the login and lock screens related to the use of third-party credential providers, reducing the probability of taskbar icons appearing as blank gray placeholders, improving reliability of navigating to File Explorer Home during OneDrive sync, improving explorer.exe reliability when switching between multiple desktops, improving app launch reliability when shell extensions are installed, and addressing reliability issues related to acrylic blur effects in Start menu, Settings, and the lock screen. Normal rollout This non-security update includes quality improvements. The following summary outlines key issues addressed by the KB update after you install it. Also, included are available new features. The bold text within the brackets indicates the item or area of the change. [Secure Boot] With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. Devices receive the new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout. [Authentication] This update improves Netlogon secure channel connections between domain controllers, enabling successful connections from member servers to domain controllers set up before 2025. [Networking] This update improves how your device connects to shared network resources. Connections used by apps and system features, such as the NetUseAdd function, now work more reliably, including unauthenticated (null session) connections. [Start Menu] This update improves the Start menu experience, allowing newly installed or removed apps to appear without requiring sign-out or restart. This mainly affects apps that create a Start menu folder with multiple shortcuts. [Taskbar] This update improves notification badge display across your apps. Notification counts and badge visuals now update correctly, helping you stay up to date with new activity. Up next we have build 28000.2333: Gradual rollout Windows 11 PC experiences This section highlights some new features and enhancements for Windows 11 PCs, including AI-powered capabilities, continuous innovation, and performance improvements. [Magnifier in Windows] New! Magnifier now provides clearer and more consistent announcements when working with a screen reader. You'll hear helpful announcements when you zoom in or out, switch views, turn color inversion on or off, or turn Magnifier On or Off. This makes it easy to stay oriented while you work. New! Magnifier now supports magnification of permitted protected content. This update improves smoothness when moving Magnifier in lens mode. [Task Manager] New! Task Manager now offers improved visibility into NPU usage on PCs with an NPU. New optional NPU and NPU Engine columns are available on the Processes, Users, and Details pages, along with NPU Dedicated Memory and NPU Shared Memory optional columns on the Details page. Neural engines that are part of a GPU now appear on the Performance page, providing a more complete view of AI-related activity. A new optional Isolation column on the Processes and Details pages shows which apps are running in an AppContainer. You can add any of the new columns by right-clicking a column header in Task Manager and selecting them from the menu. This update improves CPU speed display on the Performance page of Task Manager for VMs, so it doesn't show higher than unexpected numbers after resuming from hibernate. [Camera] New! Windows 11's Multi-App Camera feature allows multiple applications to access your camera stream at the same time. Basic Camera mode in Windows 11 enables simplified camera functionality, useful for troubleshooting or improving stability when your camera is not working correctly. Enterprise admin can now set Multi-App Camera mode or Basic Camera mode through Group Policy, under Computer Configuration > Administrative Templates > Windows Components > Camera > Configure Camera Options. [Windows Setup] New! You can now choose a custom name for your user folder on the Device Name page during Windows setup. The updated experience makes it easier to select a custom name during setup only. If this step is skipped, Windows uses the default folder name and continues setup as usual. User folder names must follow standard Windows naming requirements. [General Performance] This update accelerates app launch and core shell experiences such as Start menu, Search, and Action Center. [Personalization] This update improves: Color selection accuracy when adjusting your accent color to match your wallpaper when the automatic accent color selection is enabled in Personalization settings. Wallpaper persistence reliability across restarts and upgrades, including better support for large-resolution wallpapers and other scenarios to prevent solid color wallpaper fallback. [Windows Hello] This update improves: This update optimizes the Windows Biometric service (WinBio) to help improve performance when your device resumes from Modern Standby. This update reduces unexpected authentication blocks in Windows Hello Enhanced Sign-in Security by resolving missing secure enrollment metadata. This update improves sign-in behavior on the lock screen and sign-in screen. When Windows Hello face or fingerprint is set up and available, it is now the default sign-in method every time you sign in, even if you used a different method previously. If you need to use your Windows PIN instead and use it three times in a row, Windows will stay with PIN until you switch to another sign-in method. [Windows Search Box] Windows Search will now find and prioritize files with as few as two characters. [Storage] The dialog box for creating a Dev Drive now supports specifying the size in gigabytes (GB) instead of only megabytes (MB). This option is also available when resizing volumes in Settings > System > Storage. In Settings > System > Storage, you now see a User Account Control (UAC) prompt only when you choose to view temporary files, instead of immediately when opening the page. [USB] This update improves reliability for displays attached to USB4 docks and hubs. These displays now light up more consistently, particularly when coming out of standby. The USB3 stack is updated to have additional resiliency and recovery measures in place against certain unexpected hardware faults and conditions. Users will experience higher reliability with USB devices. [Sensors] This update improves resiliency against apps that could keep the sensor hub powered on and drain power, impacting battery life. [Human Interface Device (HID)] This update improves battery life related to the HID and Input stack for failed HID devices. Power hygiene is also improved against applications that might initiate HID transfers during standby. [Input] The update improves: Reliability of the touch keyboard on the sign-in screen, including when entering or changing a password. Reliability of explorer.exe when closing the input switcher. Performance when opening or navigating to clipboard history. [Fonts] The Times New Roman font family is updated to improve the rendering of combining diacritical marks across Greek and Cyrillic scripts. This update provides more accurate and visually consistent text by addressing mark positioning issues. These changes improve readability, reduce rendering inconsistencies, and better support global language users working with Greek and Cyrillic content. [Task Scheduler] Task Scheduler now saves column width adjustments in task list view across sessions. [Desktop icons] This update improves reliability of loading desktop app shortcuts. [Microsoft Store] This update includes underlying changes that improve download performance and bandwidth usage. This update improves error reporting when downloads fail due to Windows Update group policy settings being enabled. [Reliability] This update improves Windows reliability on the sign-in and lock screens, in File Explorer, when using touch gestures on touchscreen devices, and when changing themes in Settings. Normal rollout This non-security update includes quality improvements. The following summary outlines key issues addressed by the KB update after you install it. Also, included are available new features. The bold text within the brackets indicates the item or area of the change. [Authentication] This update improves Netlogon secure channel connections between domain controllers, enabling successful connections from member servers to domain controllers set up before 2025. [BitLocker] This update improves BitLocker testing reliability by ensuring the required files are available for the BitLocker Drive Encryption USB BIOS Logo Test.
    • Google Gemini Outage Tops Six Hours, Errors 1076 and 1099 Worldwide:

      By +Thom Vee · Posted

      Maybe it became sentient and realized how useless it is, and thus shut itself down.
    • Can't access the forum on mobile

      By RaidenX · Posted

      I don't get the cookie consent dialog on the main page. I would have accepted that a couple of years ago when I first got the phone.
    • Microsoft releases new Windows 11 Media Creation Tool with the latest updates

      By xillibit · Posted

      They have rushed to made a fix which is in 26200.8655, the 8653 contains an issue : https://learn.microsoft.com/en...8653-has-the-same-problem-a

  • Recent Achievements

    • One Month Later
      Clizby earned a badge
      One Month Later
    • One Month Later
      Timaximus earned a badge
      One Month Later
    • Week One Done
      Timaximus earned a badge
      Week One Done
    • Rookie
      FBSPL went up a rank
      Rookie
    • First Post
      davidbazooked earned a badge
      First Post

  • Popular Contributors

    1. 1
      +primortal
      491
    2. 2
      PsYcHoKiLLa
      168
    3. 3
      +Edouard
      163
    4. 4
      Steven P.
      86
    5. 5
      ATLien_0
      76
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!