Ok so just for shits I thought I would do some querys on Google Code Search to see what kind of exploits I could find. Now keep in mind this probably will not show your site but it will show code and versions that you might be running… so once someone locates a exploitable version of code they then could just search for “Powered By X” or whatever fingerprint you could put on the exploitable program/version.

Hmm I wonder If we could find some xss exploits…

lang:php (ECHO|PRINT) .*\$_(GET|POST|COOKIE|REQUEST|FILES)

100,000+ results

How About some SQL Injection exploits?

lang:php query\(.*\$_(GET|POST|COOKIE|REQUEST|FILES).*\)

3000 results

hrmm I wonder how easy it is to find host,user,pass for mysql databases…. Lets try:

lang:php mysql_connect\((”|’)[a-zA-Z0-9_.]+(”|’),(”|’)[a-zA-Z0-9]+(”|’) -localhost -127.0.0.1 -192.168

100 results found.

This query might be a little puzzling for those that are not Google ninjas like me so.. I will explain. Basically we are checking for anything that ends in .php extension. Then we search the file for mysql_connect. If it contains Mysql we look for the pattern of a connection string. lastly we use the minus sign to get rid of all localhost databases (cause we cant access them).

So did we find anything interesting? Well…

Lets just look at the first 10 results:

www.ubio.org/downloads/XID.TAR.gz – Unknown License – PHP
connect.php

$connection = mysql_connect(”RANSOM”,”GlobalWebUser”,”goober8″) or die(”Couldn’t connect.”);
$db_name = “dwf”;

Now in this case RANSOM is probably a local box…

ohh whats this:

$f = mysql_connect(”zeus.mbl.edu”,”tns”,””);
if (empty($limit)) $limit=50;

hrmm intersting….

more?

$db=mysql_connect(”62.149.150.11″,”Sql43254″,”M9dKTz3M”);
$selezione=mysql_select_db(”Sql43254_4″, $db);

I can post tons of other examples but I think I have made my point. Watch your logs for people coming from google code search and always make sure your running the latest version of your software.

Sursa

Cum poti fi vulnerabil? Daca esti inscris in sitemaps si esti pe setarile default.

Specifically using Google code search. Now while this was interesting it still did not explain how the page was even indexed…. ohh wait I use Google Sitemaps and I had it on to index everything (the default setting) OUPS!!

Scurt si la obiect ideea articolului:

So, for example, we determine that Mike is a Linux geek (connoisseur). Let’s say Mike
1. Makes a specific query related to Linux
2. Clicks on 4 results
3. Spends less than 30 seconds on the first 3 results
4. Spends more time on the 4th result
5. Bookmarks the 4th result
5. Browses more pages on the 4th result site.
6. Returns to that site at a later time.We could say that Mike found the answer to his query and that the 4th result should be given more trust in future rankings. Over time we could develop metrics or filters to determine how much to trust a given behavior or behavioral pattern – mostly by trial and error, but eventually we would have it.

Google, Yahoo and Microsoft are already incorporating this data into their search algorithms. They just need to work out the kinks and get past the trial and error phase. Analysis of user behavior through monitoring and profiling will be one of the most important Search developments in the years to come.

Mai mult aici

Aaron Wall si Bob Massa

 Concluzii:

- nu exista spam ci doar marketing

- investe banii in marketing si nu seo

- mai usor este sa influentezi oamenii decat motoarele de cautare

- motoarele de cautare ii vor urma pe oameni

- investeste in relatii publice

- totul este pentru bani