also @ TechSpot: Customize Your Windows 7 Start Menu Button

Most Popular

Top Stories Commented  Featured 

Weekend Open Forum: Your next hardware upgrade will be...?  featured

4-Way Intel H55 Motherboard Shootout  featured

Tech Tip of the Week: Customize Your Windows 7 Start Menu Button  featured

Nvidia GeForce GTX 480 and 470 specs emerge

HP Slate coming with Atom and Flash in June for €400?

Microsoft removes XP Mode hardware requirements

EA laces C&C4 with Ubisoft-like always-on DRM

Stragglers: Windows 7 SP1 is only a minor update

More Top Stories

Downloads & Drivers

Downloads   Drivers  

SiSoftware Sandra Lite 2010c 16.36

Anti Trojan Elite 4.9.0

MSI Afterburner 1.5.1

Google Chrome 5.0.356.0 Beta

ChrisTV Lite 5.51

More Downloads

TS Community

Recent Discussion   User Gallery  

Inspiron 1525 crashes every so often

Bug check at spontaneous reboot

Cant surf internet with IE8 and Opera 9.52

Cloning a hdd in XP new drive gets message Missing Operating System

Calling all experienced hackers I need you! motherboard repair

More at the Forum

Subscribe

Newsletter Our Feeds

Receive weekly updates on new articles, news and contests in your mail!

Email:

Industry News

Hackers turn Google into vulnerability scanner

By Jose Vilches, TechSpot.com
Published: February 22, 2008, 5:59 PM EST
Infamous hacking group the Cult of the Dead Cow (cDc), probably best known for their release of Back Orifice ten years ago, today released a tool that utilizes known server exploits as search terms in Google to scan websites for vulnerabilities and private data.

The new tool, dubbed Goolag Scan, presents the results as a list of links containing information regarding the nature of each vulnerability and exploit. It’s just as provoking as any of the other tools the group has released, making it easy for unskilled users to track down sensitive information on specific websites. Though according to the cDc, their intention is to provide an easy and legitimate tool for security professionals to test their own websites for vulnerabilities.

Indeed Goolag Scan does give IT administrators a handier way to look for flaws and leaks that could be exposed via Google searches. Of course, by performing large-scale automated searches, there’s always the risk of getting your IP address blocked by Google.

Related Stories

2 comments
RSS

User Comments (2)

Post a comment
phantasm66
on February 23, 2008
5:28 AM		I just downloaded it and gave it a go, looks very powerful but you quickly get locked out doing so many queries so quickly.

yairba
on March 11, 2008
5:16 AM		I checked this tool and I think it is great. I think that having this tool for small personal sites is great but it can't replace a real vulnerability scanner for this simple reason that most organizations that need real security can not trust an open source software developed by hackers. If you are running a business and need to your site scanned daily, you can't trust hackers to wake up in the morning and update their database for Vulnerabilities...

Browse more commented news