Learn, hack!

Hacking and security documentation: slides, papers, video and audio recordings. All in high-quality, daily updated, avoiding security crap documents. Spreading hacking knowledge, for free, enjoy. Follow on .

Automated Hacking via Google

Daniel Bartlett
Chaos Communication Congress 21th (21C3) 2004
Indexed on
Mar 27, 2013
File name
File size
78.4 KB

A look at methods of locating vulnerable sites via google and exploiting them with no user interaction and how to prevent your code being vulnerable. People learn a little about scripting for the web and hardly ever about security. This leaves us with many issues on many sites. The simplest of things get overlooked and can often lead to full system compromise. Technically this talk focuses on PHP since it is extreamly commonplace and people pick it up reasonably quickly and easily. Looking at the largest and smallest of errors in code, explaining how to exploit, how to rectify and how to inform. Many people overlook that, disclose what you find, tell the owner of the site! We will discuss the scripts and programs that have been developed for automating the whole process, even down to logging all the info in a nice little web application.

About us

Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.


Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.


To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.

Flattr this Click here to lend your support to: Keep live SecDocs for an year and make a donation at www.pledgie.com !