Previous Thread
Next Thread
Print Thread
Rate Thread
Joined: Sep 2002
Posts: 553
UGN Super Poster
OP Offline
UGN Super Poster
Joined: Sep 2002
Posts: 553
Foundstone, a division of McAfee, released SiteDigger v2.0 which is a free tool that searches Google�s cache to look for vulnerabilities, errors, configuration issues, proprietary information, and interesting security nuggets on web sites.

What you need:

1. A copy of SiteDigger v2.0 .

2. You need the Microsoft .NET Framework Version 1.1

3. Your very own Google API Key which can be obtainted by going to http://www.google.com/apis . You can skip step one, and just create an account and after you validate it, you receive an e-mail with the key.

SiteDigger v2.0 comes with two databases. The Foundstone SignatureDatabase (175 signatures) that contains easy to understand signature descriptions and the signatures are broken into categories and the Google Hacking Database (784 signatures) which contains the latest signatures which are not categorized. You can also submit a new signature with your descriptions and comments.

Now, I know that a similar program can be written by anyone with some decent coding skills so this program it's not something amazing and neither is the concept of google hacking and I also know that this tool was designed with security in mind and that is designed to let one know if his website is secure or not and it's for personal use only and can't be used for illegal pourposes, and all that crap that comes in the disclaimer, BUT releasing a free tool that can test in a minute or two any website against almost 1000 possible vulnerabilities can be used to do a lot of damage if it falls in the hands of some lame [censored] scriptkiddie.

So if you have a website, you'd better get this tool, before they do !

Joined: Jun 2003
Posts: 807
Likes: 2
G
UGN Super Poster
Offline
UGN Super Poster
G
Joined: Jun 2003
Posts: 807
Likes: 2
Sweet. I'm checking this tool out. Nice find DG.

Joined: Sep 2002
Posts: 553
UGN Super Poster
OP Offline
UGN Super Poster
Joined: Sep 2002
Posts: 553
When you use it, if the scan suddenly stops you need to remove the signature that made it stop from the sig list since google is now blocking some of the queries.

Joined: Mar 2002
Posts: 1,136
P
UGN Elite Poster
Offline
UGN Elite Poster
P
Joined: Mar 2002
Posts: 1,136
It probably won't be long before most/all of those get blocked, or Google sets a maximum number of queries in a specified amount of time. They don't want tons of people taking advantage of this.

/me has never even heard of Google hacking

Joined: Apr 2005
Posts: 1
Y
Junior Member
Offline
Junior Member
Y
Joined: Apr 2005
Posts: 1
Hey! Thanks! I'm gonna have to check that out!

Joined: Mar 2002
Posts: 384
Member
Offline
Member
Joined: Mar 2002
Posts: 384
Um, talk about bringing up old topics. I don't really see how that contributed to the overall conversation. All-in-all exceptionally bad form.

Since this is your first post, I'd let you slide with a warning.... but then I see that you've basically chosen a nice that screams "flamebait". For those readers not familiar with my brand of ranting, I'll give you a second to think about my point...
.
.
.
Quote:
The word Yaoi (pronounced /jaoi/, sound like "Yah-Oh-ee" rather than "Yow-ee" or "Ya-oy", all three vowels are pronounced) was originally used to refer to fan manga (such as doujinshi) that focused on homosexual relationships between male characters, especially two bishōnen - the manga equivalent of slash.
Compliments of Wikipedia.

Get a life man, jeez
Someone seal up this [censored] up repugnant [censored]


"Remember how much fun you had shooting spitwads at the teacher in seventh grade? Imagine applying that kind of attitude to actually [censored] with Mitsubishi!"
- Jello Biafra

Link Copied to Clipboard
Member Spotlight
Posts: 43
Joined: November 2002
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
unreal 1
Crime 1
Ice 1
Dartur 1
Powered by UBB.threads™ PHP Forum Software 7.7.5