« Home

Hacking Gallery v2.4, Zoomblog, XMB and ibProArcade »Wireless Theft »Efficient and Optimized C code »Wrinting Secure PHP »Gary McKinnon »Shameless plug: Tor »Javascript Injection »Creating a Visual Basic worm »VIDEO: Bill Gates smashes into camera »The Mob at Defcon » 

Owning A Continent, Penetrating Testing with Google

Published 11.15.2005 by jm | E-mail this post

E-mail this post



Remember me (?)



All personal information that you provide here will be governed by the Privacy Policy of Blogger.com. More...


I would like to strongly recommend two very good books. The first is "Google Hacking for Penetration Testing." This not only outlines how Google's web crawler can be utilized to find known security flaws in your network, but also delves into some rather well thought up techniques than can help you further than Google's microcosm of computing.

Next, is a book called "Owning A Continent" which is almost a Black Hat book, which every network security manager should read thoroughly. If an attacker is planning on destroying global commerce, you will need to have forethought to keep your organization, and ideally other organizations, safe.

I choose both of these books to highlight, because they will be timeless; by this I imply that even when Google dies, and even when all the exploits listed in Owning a Continent are patched, the theories will still hold strong so long as computers exist. For instnace, web crawling will always sniff out links, and denial of service attacks will always be the key distructive force in the computer world.

In past posts, I have discussed several issues outlined in these two books. For instance, Google Hacks, Search Engines as Annonymous Proxies and Hacking Web Based Applications and Scripts





    If the human body was never exposed to ailments, it would be impressivly vulnerable to the slightest cold. If our country was never exposed to hacking, it would be oppressivly vulnerable to cyber terrorism. With out the creation of a malicious hacking, Afganistan could have destroyed America's economy with a ping flood. This is why I encourange maclicious hacking, as an ethical practice. Without strengthening our defenses, we are weak. This site is focused on security through knowledge. I detest the fact that so many companies are being exploited because malicious hackers know their security holes before they do. For that reason, I hope to educate where the exploits lay. This isn't a 100% information base, as I only publish things I have been able to implement on myself. No credit is needed anywhere . However if you are a publisher, I would appriciate credit. I am an advocate of open source, so copy and paste and call it your own if you like. If my work is good enough for you to plagerize then that is my biggest compliment . If my work is good enough, I will be approached and asked to write more ... this is natural selection of the digital age .

Previous hacks

Previous Hacks



    This link kills spam


    spam IP addresses


    These are sites I block at my firewall.

    cdn2.gms1.net
    gms1.net
    servedby.advertising.com
    advertising.com
    a.tribalfusion.com
    tribalfusion.com
    pimpslord.com
    altfarm.mediaplex.com
    mediaplex.com
    ad.yeildmanager.com
    yeildmanager.com
    doubleclick.net
    isg32.casalemedia.com
    casalemedia.com

    Cost of the War in Iraq
    (JavaScript Error)

Two very recommended books:


. . The only hacking forum I have found worth mentioning here