Beware of your Google Desktop
Hansen, a Web application security specialist known who uses the hacker name RSnake, has figured out a way to launch man-in-the-middle attacks against a computer with a fully patched Google Desktop installed.
Read the article HERE.
==============================================
More Google News
White Paper - Preventing Google Hacking
The nature of web sites and applications is to be publicly accessible. When combined with search engine functionality, it makes it easy for regular users and strangers alike to access your site or find out information about your organization. This also comes with a price. When a search engine “indexes” a site, it is also inadvertently providing a treasure trove of information for potential attackers. Directory listings, error pages, hidden login pages…all of these can be indexed, and even cached, via search engines.
The aim of this white paper is to describe how a hacker utilizes search engine information to exploit vulnerabilities within a web application, detail how to test and find such vulnerabilities first, and list what to do if your application has already been indexed by search engines.
Download the article HERE.
==============================================
Welcome to the Google Hacking Database (GHDB)
We call them 'googledorks': Inept or foolish people as revealed by Google. Whatever you call these fools, you've found the center of the Google Hacking Universe! Stop by our forums to see where the magic happens!
For more information click HERE.
==============================================
Google Hacking for Vulnerabilities
Tools like these are a clear indication in the interest of gathering targets through google hacking techniques and SQL injecting them using a single tool. What’s important to note is that, instead of scanning the target's web server in an automated fashion thus, increasing the potential of detecting your malicious requests in this case the attack vectors are already known even cached on a search engines' servers.
Perhaps a good time to set up a google hacking or PHP deception honeypot, make sure google crawls it and either gather first hand statistics, or deceive at your best.
Read more HERE.
==============================================
Google buys RSS company FeedBurner
Google has acquired another medium for its advertising engine by purchasing FeedBurner, a company that distributes syndicated content for blogs and other media Web sites, the companies said on Friday.
Read the article HERE.
Read the article HERE.
==============================================
More Google News
White Paper - Preventing Google Hacking
The nature of web sites and applications is to be publicly accessible. When combined with search engine functionality, it makes it easy for regular users and strangers alike to access your site or find out information about your organization. This also comes with a price. When a search engine “indexes” a site, it is also inadvertently providing a treasure trove of information for potential attackers. Directory listings, error pages, hidden login pages…all of these can be indexed, and even cached, via search engines.
The aim of this white paper is to describe how a hacker utilizes search engine information to exploit vulnerabilities within a web application, detail how to test and find such vulnerabilities first, and list what to do if your application has already been indexed by search engines.
Download the article HERE.
==============================================
Welcome to the Google Hacking Database (GHDB)
We call them 'googledorks': Inept or foolish people as revealed by Google. Whatever you call these fools, you've found the center of the Google Hacking Universe! Stop by our forums to see where the magic happens!
For more information click HERE.
==============================================
Google Hacking for Vulnerabilities
Tools like these are a clear indication in the interest of gathering targets through google hacking techniques and SQL injecting them using a single tool. What’s important to note is that, instead of scanning the target's web server in an automated fashion thus, increasing the potential of detecting your malicious requests in this case the attack vectors are already known even cached on a search engines' servers.
Perhaps a good time to set up a google hacking or PHP deception honeypot, make sure google crawls it and either gather first hand statistics, or deceive at your best.
Read more HERE.
==============================================
Google buys RSS company FeedBurner
Google has acquired another medium for its advertising engine by purchasing FeedBurner, a company that distributes syndicated content for blogs and other media Web sites, the companies said on Friday.
Read the article HERE.
posted by vanish at 9:56 AM
0 Comments:
Post a Comment
<< Home