«
Expand/Collapse
39 items tagged "bing"
Related tags:
search [+],
engine [+],
brown rob ragan [+],
authors [+],
site [+],
ragan [+],
microsoft [+],
input validation [+],
flash editor [+],
editor [+],
cross site scripting [+],
bing flash [+],
google [+],
read [+],
intelligence [+],
hacking [+],
dorkmaster [+],
Tools [+],
Software [+],
python script [+],
subdomain names [+],
script [+],
quickrecon [+],
python [+],
world war ii [+],
video [+],
usa [+],
tar gz [+],
tar [+],
slides [+],
searchdiggity [+],
search parameter [+],
reverse ip [+],
recursive algorithm [+],
paris [+],
network infrastructure [+],
lord [+],
ip search [+],
infrastructure [+],
information intelligence [+],
information [+],
hosts [+],
hostnames [+],
gui application [+],
gui [+],
googlediggity [+],
foca [+],
engine crawler [+],
development initiative [+],
darknet [+],
com [+],
audio [+],
algorithm [+]
-
-
![Permalink for '[Slides] Lord of the Bing: Taking back search engine hacking from Google and Bing'](/themes/lilina/web//media/mark_off.gif)
12:03
»
SecDocs
Authors:
Francis Brown Rob Ragan Tags:
intelligence Event:
Black Hat USA 2010 Abstract: During World War II the CIA created a special information intelligence unit to exploit information gathered from openly available sources. One classic example of the team’s resourcefulness was the ability to determine whether Allied forces had successfully bombed bridges leading into Paris based on increasing orange prices. Since then OSINT sources have surged in number and diversity, but none can compare to the wealth of information provided by the Internet. Attackers have been clever enough in the past to take advantage of search engines to filter this information to identify vulnerabilities. However, current search hacking techniques have been stymied by search provider efforts to curb this type of behavior. Not anymore - our demonstration-heavy presentation picks up the subtle art of search engine hacking at the current state and discusses why these techniques fail. We will then reveal several new search engine hacking techniques that have resulted in remarkable breakthroughs against both Google and Bing. Come ready to engage with us as we release two new tools, GoogleDiggity and BingDiggity, which take full advantage of the new hacking techniques. We’ll also be releasing the first ever “live vulnerability feed”, which will quickly become the new standard on how to detect and protect yourself against these types of attacks. This presentation will change the way you've previously thought about search engine hacking, so put on your helmets. We don't want a mess when we blow your minds.
-
-
7:43
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:43
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:43
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
8:01
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
8:01
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
8:01
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
7:19
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:19
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:19
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
9:05
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
9:05
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
9:05
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
15:36
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
15:36
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
15:36
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
13:21
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
13:21
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
13:21
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
7:35
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:35
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
7:35
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
4:01
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
4:01
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
4:01
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
14:22
»
Packet Storm Security Recent Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
14:22
»
Packet Storm Security Tools
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
14:22
»
Packet Storm Security Misc. Files
QuickRecon is a python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing.
-
-
21:01
»
Packet Storm Security Tools
Dorkmaster is a python script that crawls Google and Bing results looking for various pieces of software that has historically had vulnerabilities. This is useful for verifying that your company is in compliance with software run on a given site.
-
19:51
»
Packet Storm Security Tools
Dorkmaster is a python script that crawls Google and Bing results looking for various pieces of software that has historically had vulnerabilities. This is useful for verifying that your company is in compliance with software run on a given site.
-
-
21:00
»
Packet Storm Security Tools
This tool enumerates hostnames from Bing.com for an IP address. Bing.com is Microsoft's search engine which has an IP: search parameter. Written in Bash for Linux. Requires wget.
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Hack a Day
Wirevolution