Welcome Guest ( Log In | Register)



 
 Reply to this topicStart new topic
> Sitedigger V2.0, Protect against the google hackers
Lyon2
post Jun 24 2005, 01:25 PM
Post #1


The Ethical Hacker
***********

Group: [HOSTED]
Posts: 1,154
Joined: 27-May 05
From: Portugal (Europe)
Member No.: 7,566
SiteDigger v2.0


SiteDigger v2.0 is a excellent, great, awsome tool! And free!
In a few words, this tool has 2 databases that you can update constantly with a click, but what does it do?

Well, this tool uses 2 databases called :

- Google Hacking Database signatures (GHDB signatures) ;
- Foundstone signatures (FSDB signatures) ;


And what they do?

They are used to many things:

Used to Scan the web, namely, url's of:

- Websites
- Domains
- Subdomains
- Links like www.google.com/index.html or just www.google.com


The purpose is to scan web vulnerabilities of websites or entire domains, but only that google has indexed, don't forget that if google hasn't indexed a website, the tool can't produce results of vulnerabilities of that same website.

Note:

You have to get a free license key to insert in a box in the interface of the tool, at:

http://www.google.com/apis



Please, don't use this tool for bad purposes, use this tool to test the security of your websites, web applications, or of your clients, because this is by far one of the best tools for administrators, penetrations testers and ethical hackers (good hackers or white-hats).


Here's the author description:


QUOTE
SiteDigger 2.0 searches Google’s cache to look for vulnerabilities, errors, configuration issues, proprietary information, and interesting security nuggets on web sites.


What's New in SiteDigger 2.0


10 times more results! Now you can use FSDB / GHDB and generate 10 results per signature. 

Improved user interface, help file, signature update and results page. 
 
Decreased false positives.

Latest signatures (open webcams, credit card numbers, etc).
 
Ability to raw search.



How To Use SiteDigger


The tool requires Google web services API license key. Browse to http://www.google.com/apis/ and follow the instructions to get the license key. 


Provide the license key at the bottom-right box on the tool.


Enter the domain / sub-domain information. (.mil, nasa.gov, usc.edu, etc).


Select search categories using signature tab. 


Hit the search button. Use the export results button to view the results in tabular format.


System Requirements


Windows .NET Framework (can be installed using Windows Update)



Homepage:
http://www.foundstone.com

Download link:
http://www.foundstone.com/resources/termso...sitedigger2.zip

(list)

Go to the top of the page
 
+Quote Post
Saint_Michael
post Jun 24 2005, 01:32 PM
Post #2


$p4m 0n j00 $h4m3 m3 0nc3 $p4m 0n m3 $h4m3 m3 7\/\/1c3
*********************

Group: [HOSTED]
Posts: 6,460
Joined: 21-September 04
From: 9r33|\| 399$ 4|\|D 5P4/\/\
Member No.: 1,218
T17 GFX Crew
well this tool is benefitting the hackers so it would be a great tool to use MUHAHAHAHAHA but i don't hack so i won't use it

(list)

Go to the top of the page
 
+Quote Post
Lyon2
post Jun 24 2005, 01:48 PM
Post #3


The Ethical Hacker
***********

Group: [HOSTED]
Posts: 1,154
Joined: 27-May 05
From: Portugal (Europe)
Member No.: 7,566
Hackers can use it, but i'm not a hacker and i use it for:

- Penetration testing (To improve security)
- Test the curity of my websites and/or my clients websites and other web applications.

You don't have to be a hacker to use this tool, and you don't have to be an expert or security expert to use this tool.

But why?

Because this is a very simple tool, really very simple!
After you configure 2 or 3 very simple options and of getting the free license key (if you use gmail maybe you already have generated one, if not go to the url i've provided), then you just click the number of results per google hacking database query, and click search.

After click search, depending on the number of results that you've wanted and the number of google hacking database signatures you have checked to test, you have to wait a few minutes or an our or two.

In the end you just have to click export results and analyse you website or your clients website if they are vulnerable to some of the google hacking database signatures.

Simple, don't you think?
And also very usefull don't you think?

(list)

Go to the top of the page
 
+Quote Post
orionforum
post Jun 24 2005, 02:59 PM
Post #4


Newbie
*

Group: Members
Posts: 7
Joined: 24-June 05
Member No.: 8,602
I download the program thanks, I test the program..

(list)

Go to the top of the page
 
+Quote Post
Lyon2
post Jun 27 2005, 01:46 PM
Post #5


The Ethical Hacker
***********

Group: [HOSTED]
Posts: 1,154
Joined: 27-May 05
From: Portugal (Europe)
Member No.: 7,566
orionforum, do exactly as i have explained in my second reply when you use the tool, because, that's that simple.

(list)

Go to the top of the page
 
+Quote Post
« Next Oldest · Freebie Stuff · Next Newest »
 

Reply to this topicStart new topic

Collapse

> Similar Topics

Topics Topics
  1. Google Submite Site(13)
  2. How Does Google Adsense Work?(6)
  3. Updating Google Earth(10)
  4. Google To Take On Geocities(53)
  5. Google Web Accelerator(37)
  6. Google A Number?(45)
  7. Pay With Google Checkout. Payment Gateway By Google.(9)
  8. One Website = Google Adsense + Adbrite(8)
  9. Google/gmail Problems(15)
  10. Life Before Google(41)
  11. Google Page Creator Updated(4)
  12. Adding Your Website To Google(25)
  13. Google Adsense: Impressions Or Clicks?(4)
  14. How Do I Get Indexed On Google And Msn(3)
  15. Google Has Been Acting Funky For The Last 5 Or So Days!(25)
  1. How Long Does It Take For Google To Index Your Website?(16)
  2. Google Vs Yahoo(15)
  3. Show Google Your Creativity(4)
  4. Programs Similar To Google Adsence(5)
  5. Google Talk Translation Bots(2)
  6. Cuil(5)
  7. Microsoft And Google At War?(4)
  8. Google Banned My Account With Out Reason(3)
  9. Hackers Rob Best Western Hotel Group, Steal 8m Guest Records(1)
  10. Google Chrome Real Bug(10)
  11. Search Engine That Pays U 4 Searching(8)
  12. Google Chrome Installer Fails(3)
  13. Cool Google Chrome Tips And Tweaks And Easter Eggs(1)


 

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

- Lo-Fi Version Time is now: 7th September 2008 - 11:42 AM
Powered By IP.Board © 2008  IPS, Inc.
Licensed to: Xisto Corporation