google as a hacking tool james lee 2005-03-28. 2 advanced searching
TRANSCRIPT
![Page 1: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/1.jpg)
Google as a Hacking Tool
James Lee
2005-03-28
![Page 2: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/2.jpg)
2
Advanced Searching
![Page 3: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/3.jpg)
3
Operators
• filetype
• site
• “”
• +, -, OR
• wildcards * and .
![Page 4: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/4.jpg)
4
Operators
http://slashdot.org/article.pl?sid=05/03/02/201216
site:
filetype:
![Page 5: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/5.jpg)
5
Operators
• inurl
• intext
• intitle
• numrange
![Page 6: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/6.jpg)
6
site:slashdot.org
intext:LG3D
numrange:2-7
intitle:livecd
![Page 7: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/7.jpg)
7
Site Mapping
• site:
nmt.edu!!wow!
![Page 8: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/8.jpg)
8
Site Mapping
• site:nmt.edu
• -site:infohost.nmt.edu
• -site:www.nmt.edu
• ...
![Page 9: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/9.jpg)
9
Web Administration
• phpMyAdmin– intitle:phpMyAdmin "Welcome to
phpMyAdmin" "running on * as root@*"
• phpNuke– inurl:admin.php “There are no Administrators”
![Page 10: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/10.jpg)
10
If you’re an administrator...
![Page 11: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/11.jpg)
11
Please don’t do this
![Page 12: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/12.jpg)
12
Or this.
![Page 13: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/13.jpg)
13
If you’re a developer...
![Page 14: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/14.jpg)
14
Please don’t do this
![Page 15: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/15.jpg)
15
Using the Google cache
• Everything so far had to request a page from the target’s web server
• Using Google’s cache, we can avoid this
![Page 16: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/16.jpg)
16
Using the Google cache
What exactly happens when we click on “Cached” pages?
![Page 17: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/17.jpg)
17
• That didn’t work...
This line
gives a
clue:
![Page 18: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/18.jpg)
18
Using the Google cache
• Now the conversation is strictly between us and Google.
![Page 19: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/19.jpg)
19
Using the Google cache
• The difference is “&strip=1”
• No images are requested, only the text that Google keeps on their servers
• Now we can query anonymously– This means fewer entries in IDS logs
![Page 20: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/20.jpg)
20
Conclusions
• Patches probably won’t help
• Pay attention to your configuration
• If it’s not supposed to be public, protect it– put it on an internal development host– htaccess
![Page 21: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/21.jpg)
21
References
• http://johnny.ihackstuff.com/• http://www.google.com/advanced_search• http://www.google.com/help/refinesearch.html• http://www.phpmyadmin.net• http://www.phpnuke.org• http://www.mysql.com
![Page 22: Google as a Hacking Tool James Lee 2005-03-28. 2 Advanced Searching](https://reader035.vdocument.in/reader035/viewer/2022062417/55168e15550346f0208b459a/html5/thumbnails/22.jpg)
Questions?
Google as a Hacking Tool
James Lee
2005-03-28