Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking Borhan Kazimi pour. Agenda How to hack How to hack using How to prevent hack using.

Published byAmelia Page Modified over 9 years ago

Similar presentations

Presentation on theme: "Hacking Borhan Kazimi pour. Agenda How to hack How to hack using How to prevent hack using."— Presentation transcript:

1 Hacking Borhan Kazimi pour

2 Agenda How to hack How to hack using How to prevent hack using

3 How to hack

4 Huge White

5 How works?

6 How find us? Crawlers Add URL (site submission) Opera !

7 What give us?

8 . calculator

9 Math operators

10 Math constants

11 Units:

12 Physical constants

13 limitations Query length limit to 32. Noise word almost ignored. –A, an, or, the, for, me, any, to … Logic operators must be in uppercase. –OR, AND, NOT

14 Search result

15 …Search result

16 Special notation

17 …Special notation

18 Key words

19 … Key words

20 How to hack using

21 Directory listing

22 …Directory listing intitle:index.of "parent directory“ intitle:index.of name size intitle:index.of.etc Intitle:index.of "parent directory "Xvid -html -htm -php -shtml

23 Versioning

24 …Versioning intitle:index.of server.at intitle:index.of server.at site:aol.com …then Search for exploit and …

25 Server test page

26 …Server test page intitle:welcome.to intitle:internet IIS Intitle:test.page "Hey, it worked !" "SSL/TLS- aware" allintitle:Welcome to Windows 2000 Internet Services allintitle:Welcome to Windows XP Server Internet Services …

27 Finding ID/Pass "# -FrontPage-" inurl:service.pwd inurl:admin inurl:userlist "AutoCreate=TRUE password=*" allinurl: admin mdb allinurl:auth_user_file.txt intitle:"Index of" config.php filetype:bak inurl:"htaccess|passwd|shadow|htusers"

28

29 CGI Scanning allinurl:/random_banner/index.cgi Visit http://johnny.ihackstuff.com and see tons of golden queryhttp://johnny.ihackstuff.com

30 Auto tools Gooscan Googledorks GooPot Write yourself using API

31 How to prevent hack using

32 Protect yourself Don’t use Opera ! Keep your sensitive data off the web! –SSH/SFTP/SSL… –Encrypted email (PPG,…) Removing your site from Use a robots.txt file

33 … Protect yourself Googledork –Try hack yourself ! Change error and test pages Disable directory listing Update and patch Setup Honey Pot

34 Thanks to And You

Download ppt "Hacking Borhan Kazimi pour. Agenda How to hack How to hack using How to prevent hack using."

Similar presentations

Getting Your Web Site Found. Meta Tags Description Tag This allows you to influence the description of your page with the web crawlers.

Getting Your Web Site Found. Meta Tags Description Tag This allows you to influence the description of your page with the web crawlers.
IMS & Web IEP IMS Web IEP. Security Issues User Names and Passwords “Permissions” allow users different levels of accessibility 2 hour Time-Out The system.

IMS & Web IEP IMS Web IEP. Security Issues User Names and Passwords “Permissions” allow users different levels of accessibility 2 hour Time-Out The system.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
For Removal Info: visit

For Removal Info: visit
CPSC 203 Introduction to Computers Tutorial 59 & 64 By Jie (Jeff) Gao.

CPSC 203 Introduction to Computers Tutorial 59 & 64 By Jie (Jeff) Gao.
Ahmad Radaideh.  Abstract  Introduction  Google Cached Content  GOOGLE HACKING Procedures  Google Advance Operators  Google hacking Result Categories.

Ahmad Radaideh.  Abstract  Introduction  Google Cached Content  GOOGLE HACKING Procedures  Google Advance Operators  Google hacking Result Categories.
Introduction The Basic Google Hacking Techniques How to Protect your Websites.

Introduction The Basic Google Hacking Techniques How to Protect your Websites.
DT211/3 Internet Application Development Active Server Pages & IIS Web server.

DT211/3 Internet Application Development Active Server Pages & IIS Web server.
OAAIS Enterprise Information Security Security Awareness, Training & Education (SATE) Program or 415.514-3333 UCSF Campus VPN.

OAAIS Enterprise Information Security Security Awareness, Training & Education (SATE) Program or UCSF Campus VPN.
SLAC Vulnerability Scanning Cyber Security Working Group - LBL December 5, 2005 Teresa Downey - SLAC.

SLAC Vulnerability Scanning Cyber Security Working Group - LBL December 5, 2005 Teresa Downey - SLAC.
Its easy to be an information provider Tutorial: Web Publishing.

Its easy to be an information provider Tutorial: Web Publishing.
Best Practices for Website Design & Web Content Management.

Best Practices for Website Design & Web Content Management.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
Securing Windows Internet Servers 23.org / Covert Systems Jon Miller Senior Security Engineer Covert Systems, Inc.

Securing Windows Internet Servers 23.org / Covert Systems Jon Miller Senior Security Engineer Covert Systems, Inc.
STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008

STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB

SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
By Raza / Faisal By: Raza Usmani Faisal Khan. What is SEO? It is the process of affecting the visibility of a website or a web page in a search engine's.

By Raza / Faisal By: Raza Usmani Faisal Khan. What is SEO? It is the process of affecting the visibility of a website or a web page in a search engine's.
1 Google Hacking 101 Edited by Matt Payne, CISSP 15 June 2005 Updated 10 August 2006

1 Google Hacking 101 Edited by Matt Payne, CISSP 15 June 2005 Updated 10 August 2006
GONE PHISHING ECE 4112 Final Lab Project Group #19 Enid Brown & Linda Larmore.

GONE PHISHING ECE 4112 Final Lab Project Group #19 Enid Brown & Linda Larmore.
+ Websites Vulnerabilities. + Content Expand of The Internet Use of the Internet Examples Importance of the Internet How to find Security Vulnerabilities.

+ Websites Vulnerabilities. + Content Expand of The Internet Use of the Internet Examples Importance of the Internet How to find Security Vulnerabilities.

Similar presentations

Ads by Google