{"id":1185,"date":"2008-11-03T15:40:44","date_gmt":"2008-11-03T15:40:44","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=1185"},"modified":"2015-09-09T19:39:12","modified_gmt":"2015-09-09T11:39:12","slug":"gooscan-automated-google-hacking-tool","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2008\/11\/gooscan-automated-google-hacking-tool\/","title":{"rendered":"Gooscan – Automated Google Hacking Tool"},"content":{"rendered":"
[ad]<\/p>\n
Whilst reading an article the other day I saw this mentioned and realised I haven’t written about this yet either, although I have written about the similar tool Goolag<\/a>.<\/p>\n What is Gooscan?<\/strong><\/p>\n Gooscan is a tool that automates queries against Google search appliances, but with a twist. These particular queries are designed to find potential vulnerabilities on web pages. Think “cgi scanner” that never communicates directly with the target web server, since all queries are answered by a Google appliance, not by the target itself.<\/p>\n Who is it written for?<\/strong><\/p>\n Security professionals: This tool serves as a front-end for an external web server assessment and aids in the “information gathering” phase of a vulnerability assessment.<\/p>\n Web server administrators: This tool helps to discover what the web community may already know about you thanks to Google.<\/p>\n