Secure purchasing using these cards
Categories
Shopping Cart
0 items
Quick Find
 
Use keywords to find the product you are looking for.
Advanced Search
Information
Privacy Notice
Contact Us
Site Map

Firewall & E-security News

Google hacking book review - are your passwords on Google?

I've just been made aware of a new book which every person who has an interest either professionally or personally in e-security would be well advised to read. The Google search engine bots scan your entire web servers and generously unlock a plethora of security flaws for an malicious hacker or 'script kiddie' who cares to look. This book aims to provide those with responsibility for securing web servers with the tools to identify the potential flaws that might be exploited and ways in which to fix them.

I've taken the opportunity to blatently copy the review from Amazon to give you a more in depth look at what it contains, link directly to the book and the website of John Long the author of this book.

Book Description
Google, the most popular search engine worldwide, provides web surfers with an easy-to-use guide to the Internet, with web and image searches, language translation, and a range of features that make web navigation simple enough for even the novice user. What many users don't realize is that the deceptively simple components that make Google so easy to use are the same features that generously unlock security flaws for the malicious hacker. Vulnerabilities in website security can be discovered through Google hacking, techniques applied to the search engine by computer criminals, identity thieves, and even terrorists to uncover secure information. This book beats Google hackers to the punch, equipping web administrators with penetration testing applications to ensure their site is invulnerable to a hacker's search.

Penetration Testing with Google Hacks explores the explosive growth of a technique known as "Google Hacking." When the modern security landscape includes such heady topics as "blind SQL injection" and "integer overflows," it's refreshing to see such a deceptively simple tool bent to achieve such amazing results; this is hacking in the purest sense of the word. Readers will learn how to torque Google to detect SQL injection points and login portals, execute port scans and CGI scans, fingerprint web servers, locate incredible information caches such as firewall and IDS logs, password databases, SQL dumps and much more - all without sending a single packet to the target! Borrowing the techniques pioneered by malicious "Google hackers," this talk aims to show security practitioners how to properly protect clients from this often overlooked and dangerous form of information leakage.

Synopsis
Google, the most popular search engine worldwide, provides web surfers with an easy-to-use guide to the Internet, with web and image searches, language translation, and a range of features that make web navigation simple enough for even the novice user. What many users dont realize is that the deceptively simple components that make Google so easy to use are the same features that generously unlock security flaws for the malicious hacker. Vulnerabilities in website security can be discovered through Google hacking, techniques applied to the search engine by computer criminals, identity thieves, and even terrorists to uncover secure information. This book beats Google hackers to the punch, equipping web administrators with penetration testing applications to ensure their site is invulnerable to a hackers search. Penetration Testing with Google Hacks explores the explosive growth of a technique known as Google Hacking. When the modern security landscape includes such heady topics as blind SQL injection and integer overflows, it's refreshing to see such a deceptively simple tool bent to achieve such amazing results; this is hacking in the purest sense of the word. Readers will learn how to torque Google to detect SQL injection points and login portals, execute port scans and CGI scans, fingerprint web servers, locate incredible information caches such as firewall and IDS logs, password databases, SQL dumps and much more - all without sending a single packet to the target! Borrowing the techniques pioneered by malicious Google hackers, this talk aims to show security practitioners how to properly protect clients from this often overlooked and dangerous form of information leakage.