Google Hacking for Penetration Testers, Volume 1

author: Johnny Long Ed Skoudis Alrik van Eijkelenborg asin: 1931836361 binding: Paperback list price: $44.95 USD amazon price: $44.95

"Understanding the adversary mindset is an important element in designing and developing effective protective strategies."—Amit Yoran, Former Director of the National Cyber Security Division, Department of Homeland Security Explore the Dark Side of Googling Morph Google from "Directory Assistance Please" into a Rig Mounted Pneumatic Rock Drill   See How Bad Guys Use Portscans, CGI Scans, and Web Server Fingerprinting to Stroll in the Back Door of Your Enterprise Slam the Door on Malicious Google Hacks That Expose Your Organization’s Information Caches, Firewalls, IDS Logs, and Password Databases "...Google Hacking exposes those with their pants down, so the whole Internet can see their skivvies."—Adrian Lamo, Special Project Editor, The American River Current Can you guard against Google Hacking? Google’s advanced search capabilities are being used on an increasing basis by some to harvest information from the Web. Sensitive documents, stolen credit card information, even servers behind corporate firewalls can be found using Google searches. Are you the type of person who needs to know how to torque Google to detect SQL injection points and login portals, execute port scans and CGI scans, fingerprint web servers, locate incredible information caches such as firewall and IDS logs, password databases, SQL dumps and much more – all without sending a single packet to the target! Then Google Hacking for Penetration Testers is for you. By reverse engineering the techniques of malicious "Google hackers," this book shows security practitioners how to properly protect their servers from this often overlooked and dangerous form of information leakage. "You can use Google for something other than hacking? I only use Google for finding vulnerable servers."—Tim Mullen, CIO, AnchorIS.com "This Book Rocks!"—Roelof Temmingh, Technical Director, SensePost (Creators of the Wikto Web Assessment Tool) Are You Safe? Learn the Queries that Hackers Use: filetype:lit lit (books|ebooks) Online unprotected e-books! inurl:root.asp?acs=anon Outlook Web Access Public Folders and the Exchange Address Books! intitle:"Live View / - AXIS" | inurl:view/view.sht Axis Netcams Live View! inurl:"ViewerFrame?Mode=" Live Panasonic Network Cameras! SNC-RZ30 HOME Live Sony NC RZ30 web cameras! intitle:"toshiba network camera - User Login" Live Toshiba network cameras! aboutprinter.shtml Xerox printers on the web! index.of.dcim Digital Camera Photo Dumps! and hundreds more!