Presentation is loading. Please wait.

Presentation is loading. Please wait.

Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching.

Published byHaylie Cassell Modified over 10 years ago

Similar presentations

Presentation on theme: "Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching."— Presentation transcript:

1 Google as a Hacking Tool James Lee 2005-03-28

2 2 Advanced Searching

3 3 Operators filetype site +, -, OR wildcards * and.

4 4 Operators http://slashdot.org/article.pl?sid=05/03/02/201216 site: filetype:

5 5 Operators inurl intext intitle numrange

6 6 site:slashdot.org intext:LG3D numrange:2-7 intitle:livecd

7 7 Site Mapping site: nmt.edu !! wow!

8 8 Site Mapping site:nmt.edu -site:infohost.nmt.edu -site:www.nmt.edu...

9 9 Web Administration phpMyAdmin –intitle:phpMyAdmin "Welcome to phpMyAdmin" "running on * as root@*" phpNuke –inurl:admin.php There are no Administrators

10 10 If youre an administrator...

11 11 Please dont do this

12 12 Or this.

13 13 If youre a developer...

14 14 Please dont do this

15 15 Using the Google cache Everything so far had to request a page from the targets web server Using Googles cache, we can avoid this

16 16 Using the Google cache What exactly happens when we click on Cached pages?

17 17 That didnt work... This line gives a clue:

18 18 Using the Google cache Now the conversation is strictly between us and Google.

19 19 Using the Google cache The difference is &strip=1 No images are requested, only the text that Google keeps on their servers Now we can query anonymously –This means fewer entries in IDS logs

20 20 Conclusions Patches probably wont help Pay attention to your configuration If its not supposed to be public, protect it –put it on an internal development host –htaccess

21 21 References http://johnny.ihackstuff.com/ http://www.google.com/advanced_search http://www.google.com/help/refinesearch.html http://www.phpmyadmin.net http://www.phpnuke.org http://www.mysql.com

22 Questions? Google as a Hacking Tool James Lee 2005-03-28

Download ppt "Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching."

Similar presentations

TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST

TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST
LEUCEMIA MIELOIDE AGUDA TIPO 0

LEUCEMIA MIELOIDE AGUDA TIPO 0
You have been given a mission and a code. Use the code to complete the mission and you will save the world from obliteration…

You have been given a mission and a code. Use the code to complete the mission and you will save the world from obliteration…
Bellwork If you roll a die, what is the probability that you roll a 2 or an odd number? P(2 or odd) 2. Is this an example of mutually exclusive, overlapping,

Bellwork If you roll a die, what is the probability that you roll a 2 or an odd number? P(2 or odd) 2. Is this an example of mutually exclusive, overlapping,
Advanced Piloting Cruise Plot.

Advanced Piloting Cruise Plot.
Chapter 1 The Study of Body Function Image PowerPoint

Chapter 1 The Study of Body Function Image PowerPoint
1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.

1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.
1 Copyright © 2010, Elsevier Inc. All rights Reserved Fig 2.1 Chapter 2.

1 Copyright © 2010, Elsevier Inc. All rights Reserved Fig 2.1 Chapter 2.
1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 28.

1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 28.
1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 38.

1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 38.
1 Chapter 40 - Physiology and Pathophysiology of Diuretic Action Copyright © 2013 Elsevier Inc. All rights reserved.

1 Chapter 40 - Physiology and Pathophysiology of Diuretic Action Copyright © 2013 Elsevier Inc. All rights reserved.
By D. Fisher Geometric Transformations. Reflection, Rotation, or Translation 1.

By D. Fisher Geometric Transformations. Reflection, Rotation, or Translation 1.
Chapter 1 Image Slides Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

Chapter 1 Image Slides Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Business Transaction Management Software for Application Coordination 1 www.choreology.com Business Processes and Coordination.

Business Transaction Management Software for Application Coordination 1 Business Processes and Coordination.
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Title Subtitle.

Title Subtitle.
January 27, 2012 Webinar An Introduction to: Submissions State Student IDs Online Resources 1.

January 27, 2012 Webinar An Introduction to: Submissions State Student IDs Online Resources 1.
Multiplying binomials You will have 20 seconds to answer each of the following multiplication problems. If you get hung up, go to the next problem when.

Multiplying binomials You will have 20 seconds to answer each of the following multiplication problems. If you get hung up, go to the next problem when.
Coordinate Plane Practice The following presentation provides practice in two skillsThe following presentation provides practice in two skills –Graphing.

Coordinate Plane Practice The following presentation provides practice in two skillsThe following presentation provides practice in two skills –Graphing.

Similar presentations

Ads by Google