Du kanske gillar
Google Hacking for Penetration Testers (e-bok)329Laddas ned direkt
Läs i vår app för iPhone, iPad och AndroidThis book helps people find sensitive information on the Web.Google is one of the 5 most popular sites on the internet with more than 380 million unique users per month (Nielsen/NetRatings 8/05). But, Google's search capabilities are so powerful, they sometimes discover content that no one ever intended to be publicly available on the Web including: social security numbers, credit card numbers, trade secrets, and federally classified documents. Google Hacking for Penetration Testers Volume 2 shows the art of manipulating Google used by security professionals and system administrators to find this sensitive information and "e;self-police their own organizations.Readers will learn how Google Maps and Google Earth provide pinpoint military accuracy, see how bad guys can manipulate Google to create super worms, and see how they can "e;mash up"e; Google with MySpace, LinkedIn, and more for passive reconaissance.* Learn Google Searching BasicsExplore Google's Web-based Interface, build Google queries, and work with Google URLs.* Use Advanced Operators to Perform Advanced QueriesCombine advanced operators and learn about colliding operators and bad search-fu.* Learn the Ways of the Google HackerSee how to use caches for anonymity and review directory listings and traversal techniques.* Review Document Grinding and Database DiggingSee the ways to use Google to locate documents and then search within the documents to locate information. * Understand Google's Part in an Information Collection FrameworkLearn the principles of automating searches and the applications of data mining.* Locate Exploits and Finding TargetsLocate exploit code and then vulnerable targets.* See Ten Simple Security SearchesLearn a few searches that give good results just about every time and are good for a security assessment.* Track Down Web ServersLocate and profile web servers, login portals, network hardware and utilities.* See How Bad Guys Troll for DataFind ways to search for usernames, passwords, credit card numbers, social security numbers, and other juicy information.* Hack Google ServicesLearn more about the AJAX Search API, Calendar, Blogger, Blog Search, and more.
KundrecensionerHar du läst boken? Sätt ditt betyg »
Johnny Long is a Christian by grace, a professional hacker by trade, a pirate by blood, a ninja in training, a security researcher and author. He can be found lurking at his website (http://johnny.ihackstuff.com). He is the founder of Hackers For Charity(http://ihackcharities.org), an organization that provides hackers with job experience while leveraging their skills for charities that need those skills. Bill Gardner is an Assistant Professor at Marshall University, where he teaches information security and foundational technology courses in the Department of Integrated Science and Technology. He is also President and Principal Security Consultant at BlackRock Consulting. In addition, Bill is Vice President and Information Security Chair at the Appalachian Institute of Digital Evidence. AIDE is a non-profit organization that provides research and training for digital evidence professionals including attorneys, judges, law enforcement officers and information security practitioners in the private sector. Prior to joining the faculty at Marshall, Bill co-founded the Hack3rCon convention, and co-founded 304blogs, and he continues to serve as Vice President of 304Geeks. In addition, Bill is a founding member of the Security Awareness Training Framework, which will be a prime target audience for this book. Justin Brown is an Information Security professional who works at One World Labs where he focuses on reconnaissance and Open Source Intelligence. In particular, Justin spends his time crafting advanced Google searches for identifying the digital footprint of his clients and assisting his company's penetration testers to be successful in their engagements.