The Google Hacking Database Tool is an online application that automates Google searches for files and other data associated with Web site vulnerabilities.
GnuCitizen, a computer security consultancy, today released an updated version of its Google Hacking Database Tool (GHDB), an online application that automates Google searches for files and other data associated with Web site vulnerabilities.
SiteDigger 2.0 is a similar application offered by Foundstone. It requires a Google Web services API license key. Other examples of this type of tool include Gooscan and Wikto. Blogger Alessandro Tanasi offers a more complete list of penetration testing software on his Web site.
While Google hasn't actively fought the use of such tools, it will block automated search queries after a detecting a high volume of them. Google didn't immediately respond to a request for comment.
Automated vulnerability scanning tools should be thought of as a necessity in today's security environment. Those disinclined to scan their sites for vulnerabilities should be aware that unethical hackers are doing so.
"I believe that penetration testing and hacking tools like this one will become more and more popular among the community, although not all types of tools are suitable to be made available online," said Petkov.
Building A Mobile Business MindsetAmong 688 respondents, 46% have deployed mobile apps, with an additional 24% planning to in the next year. Soon all apps will look like mobile apps – and it's past time for those with no plans to get cracking.
Join InformationWeek’s Lorna Garey and Mike Healey, president of Yeoman Technology Group, an engineering and research firm focused on maximizing technology investments, to discuss the right way to go digital.