Technology News: Security: Dead Cow Cult Releases Google Hacking Kit to the Wild

Dead Cow Cult Releases Google Hacking Kit to the Wild

By Chris Maxcer
LinuxInsider
Part of the ECT News Network
02/25/08 2:26 PM PT

Google hacking -- attempting to find vulnerabilities in Web sites using specially crafted and complex Google searches -- was once the sport of advanced hackers. With Goolag Scanner, a group of hackers known as "The Cult of the Dead Cow" have made the technique more accessible to the masses, for better or for worse.

Success is just a matter of knowing the right "secrets." Download the free eBook, "The Edge of Success: 9 Building Blocks to Double Your Sales." You will discover the fastest, most effective ways to grow your business and still have time to live your life.

The Cult of the Dead Cow (cDc) hacker group -- which claims to be the world's most attractive hacker group -- has released Goolag Scanner, an open source tool that uses Google's (Nasdaq: GOOG) search engines to look for vulnerabilities in Web sites.

Goolag Scanner is either a Web auditing tool that can be used by security professionals to help make their Web sites stronger -- or a hacking tool that provides wicked-easy access to a wealth of information "keys" unwittingly left lying around on Web site servers.

Hacks Galore

Goolag Scanner is based on a technique known as "Google hacking." It's a form of vulnerability research developed by a hacker who goes by the name "Johnny I Hack Stuff" and who's published a database of vulnerabilities and how to scan for them using specially crafted advanced Google searches.

Using individual searches to find flaws works -- it just takes a lot of time. Goolag Scanner is basically an application that rapidly runs lots of flaw-finding searches and quickly returns results more friendly to novices, friend or foe.

"It's no big secret that the Web is the platform, and this platform pretty much sucks from a security perspective," noted Oxblood Ruffin, who described himself as a cDc "spokesmodel."

"Goolag Scanner provides one more tool for Web site owners to patch up their online properties. We've seen some pretty scary holes through random tests with the scanner in North America, Europe and the Middle East. If I were a government, a large corporation, or anyone with a large Web site, I'd be downloading this beast and aiming it at my site yesterday. The vulnerabilities are that serious," he added.

Common Vulnerabilities

"It's difficult to refer to vulnerabilities as common other than from a structural perspective," Ruffin told LinuxInsider. "But having said that, most vulnerabilities that we've seen on the .gov/mil side have involved programming sloppiness. If you're asking how could a black hat exploit a Web site using Goolag Scanner, then I'd say that it would be on the 'point of entry' vector. You find a scab, you pick at it, and sooner or later you'll get blood," Ruffin explained.

Google hacking techniques aren't particularly new, and as cDc's online fact sheet notes, Goolag Scanner has been "bouncing around cDc internally for the past three years." It raises the question: Why release it to the public now?

"In our view, the public is ready to start thinking about Web security now. All kinds of services and conveniences are dragging people out of their homes/offices and onto the Web," Ruffin said.

"Who needs a hard drive when you can store data for free 'out there'? That's how people are beginning to think," Ruffin explained. "So we're just trying to create a moment of pause. Is it really such a good idea?"

Goolag Scanner will be released open source under the GNU Affero General Public license. It is a standalone windows GUI-based (graphical user interface) application that uses one XML-based (extensible markup language) configuration file for its settings.

Next Article in Security

Mozilla Dispatches Firefox Bug Zapper
February 08, 2008

Mozilla rolled out a series of patches for the Firefox browser. "[Vulnerability MFSA 2008-08] is an interesting one," said analyst Chris Rodriguez. "It's rated moderate, and you might think of it by itself as just an annoyance. But it would allow a hacker to pop up something right before you click. Imagine you want to click 'no,' but it pops up right before you click and it says 'yes I want to download this executable.'"

More by Chris Maxcer

Sorry, You Just Can't Pin Down Apple Consumers
February 09, 2010

A recent study seems to suggest that Apple's big iPad reveal was a big disappointment and that the majority of consumers have no interest in the thing. But Apple has a knack for changing peoples' minds and shifting them into "buy" mode. For some consumers, anyway, it's a lot easier to say "no" now, when the product isn't even available, than it will be in a few months when iPads are actually on shelves.

Taking the Good With the Bad in the New iPad
February 02, 2010

When Apple dives head-first into a new category, it usually likes to do so on its own terms, and the iPad launch was no exception. It looks like it has Apple's signature design and build quality, its OS is familiar to millions, and the asking price is a pleasant surprise. On the other hand, there also appear to be some unfortunate omissions in the iPad's design.

Apple's Tablet Is Coming - Get Ready for Disappointment
January 26, 2010

The media have been huffing Apple tablet fumes for months, so get ready for a big hangover when Steve Jobs takes the stage Wednesday and announces the truth about what the company has been working on. When nothing's really known, anything is possible, and the idea of the tablet can be all things to all people. When the big reveal comes, some rumors and hopes will inevitably be shot down.

[Search More...]

Hacker	Activate Alert \| Search Archives

Google	Activate Alert \| Search Archives