Title

Automated Hacking via Google

Description

A look at methods of locating vulnerable sites via google and exploiting them with no user interaction and how to prevent your code being vulnerable.about this event: http://www.ccc.de/congress/2004/fahrplan/event/113.en.html

content

People learn a little about scripting for the web and hardly ever about security. This leaves us with many issues on many sites. The simplest of things get overlooked and can often lead to full system compromise. Technically this talk focuses on PHP since it is extreamly commonplace and people pick it up reasonably quickly and easily. Looking at the largest and smallest of errors in code, explaining how to exploit, how to rectify and how to inform. Many people overlook that, disclose what you find, tell the owner of the site! We will discuss the scripts and programs that have been developed for automating the whole process, even down to logging all the info in a nice little web application.

Date Issued

27 December 2004

Source

https://cdn.media.ccc.de/congress/2004/video/113%20Automated%20Hacking%20via%20Google.mp4

Beteiligte Person

DanBUK

Is Referenced By

21C3 Website

License

Creative Commons Attribution-NonCommercial-NoDerivs 2.0 Generic

Creator

Chaos Computer Club e. V.

Rights Holder

Chaos Computer Club e. V.

Extent

0:17:29

Type

video/mp4

Tag

21c3

Hacking

Identifier

ark:/45490/baCHjn