Google Hacking for Penetration Testers, Vol. 2
Search in google:
This guide describes techniques the bad guys use to locate sensitive information about an individual or company, particularly the specific ways Google searches can discover forgotten network systems and devices that have fallen off the radar of overworked administrators. The author, who maintains johnny.ihackstuff.com, recommends writing a sound security policy, securing a web site from Google's crawlers, and checking Google exposure with automated tools. Distributed in the U.S. by O'Reilly. Annotation ©2004 Book News, Inc., Portland, OR Slashdot.org Whether you're a penetration tester wanting to exploit Google, a Web administrator wanting to protect yourself from information leaks, or even a newbie wanting to harness Google's full potential, Google Hacking for Penetration Testers makes an excellent resource. If you, too, use Google as a second brain, pick up Johnny Long's book and learn how to exploit this powerful search engine to its full capacity.
Ch. 1Google searching basics1Ch. 2Advanced operators41Ch. 3Google hacking basics87Ch. 4Preassessment121Ch. 5Network mapping151Ch. 6Locating exploits and finding targets181Ch. 7Ten simple security searches that work203Ch. 8Tracking down Web servers, login portals, and network hardware221Ch. 9Usernames, passwords, and secret stuff, oh my!263Ch. 10Document grinding and database digging289Ch. 11Protecting yourself from Google hackers321Ch. 12Automating Google searches363App. AProfessional security testing417App. BAn introduction to Web application security437App. CGoogle hacking database
