Google Hacking for Penetration Testers, 3/e (Paperback)

Johnny Long, Bill Gardner, Justin Brown

買這商品的人也買了...

商品描述

Google is the most popular search engine ever created, but Google’s search capabilities are so powerful, they sometimes discover content that no one ever intended to be publicly available on the Web, including social security numbers, credit card numbers, trade secrets, and federally classified documents. Google Hacking for Penetration Testers, Third Edition, shows you how security professionals and system administratord manipulate Google to find this sensitive information and "self-police" their own organizations.

You will learn how Google Maps and Google Earth provide pinpoint military accuracy, see how bad guys can manipulate Google to create super worms, and see how they can "mash up" Google with Facebook, LinkedIn, and more for passive reconnaissance.

This third edition includes completely updated content throughout and all new hacks such as Google scripting and using Google hacking with other search engines and APIs. Noted author Johnny Long, founder of Hackers for Charity, gives you all the tools you need to conduct the ultimate open source reconnaissance and penetration testing.

  • Third edition of the seminal work on Google hacking
  • Google hacking continues to be a critical phase of reconnaissance in penetration testing and Open Source Intelligence (OSINT)
  • Features cool new hacks such as finding reports generated by security scanners and back-up files, finding sensitive info in WordPress and SSH configuration, and all new chapters on scripting Google hacks for better searches as well as using Google hacking with other search engines and APIs

商品描述(中文翻譯)

Google是有史以來最受歡迎的搜索引擎,但Google的搜索功能非常強大,有時會發現一些本來不打算公開在網絡上的內容,包括社會安全號碼、信用卡號碼、商業機密和聯邦機密文件。《Google黑客攻防技巧 第三版》向您展示了安全專業人員和系統管理員如何利用Google找到這些敏感信息,並對自己的組織進行“自我監管”。

您將學習到Google地圖和Google地球提供的精確軍事定位,看到壞人如何利用Google創建超級蠕蟲,以及如何將Google與Facebook、LinkedIn等結合進行被動偵察。

這本第三版全面更新了內容,並新增了諸如Google腳本和使用其他搜索引擎和API進行Google黑客攻擊等全新技巧。知名作者Johnny Long,也是慈善黑客組織Hackers for Charity的創始人,為您提供進行終極開源偵察和滲透測試所需的所有工具。

本書的第三版是關於Google黑客攻擊的重要工作,Google黑客攻擊在滲透測試和開源情報(OSINT)的偵察階段仍然至關重要。本書還介紹了一些很酷的新技巧,例如查找安全掃描器和備份文件生成的報告,查找WordPress和SSH配置中的敏感信息,以及關於使用腳本進行更好搜索以及使用其他搜索引擎和API進行Google黑客攻擊的全新章節。