"New" Google Hacking Tool?

Date February 25, 2008

Cult of the Dead Cow have released a “new” tool called Goolag.  Initial thoughts – huh?

This is about 3 years out of date already.  Foundstone released a similar tool in 2005, and even then I considered us “behind” because there were others before it (Wikto, GooScan, etc), and the only thing that I think we added to the field was that it was a little easier to use.  Other than that, SiteDigger and Goolag are (to my eyes anyway – please correct me if I’m wrong) feature identical and on the same platform (one of the “benefits” according to some of the press interviews I’ve read – I though 1337 h4×0rz all use Linux?).

Don’t get me wrong, I’m a fan of CdC, and they certainly pushed the field forward in the early days with BackOrifice and similar tools, but I don’t think this comes nearly up to their usual standard, despite the media, links, and fan comments.

Step it up guys :)

Category Posted in Security

4 Responses to “"New" Google Hacking Tool?”

  1. February 26th, 2008 at 9:37 am

    br0d said:

    I tested this yesterday. I like the interface, but it doesn’t use a Google developer API key nor a local proxy like Sensepost Aura, and it treats blocking/CAPTCHA like it’s a normal and tolerable occurrence for dork scanning. I think if they can build in something like Aura this tool will be a bit more user friendly than Wikto.

    Now if someone can add Aura-like functionality and combine a tool like this with the forced spidering and custom search engine discussed by pdp four days ago, then >:)

  2. February 26th, 2008 at 11:17 am

    jon said:

    Mike, I haven’t run it, so have no idea whether it comes up to their usual standards (bear in mind that it’s a beta) — or how it compares with Site Digger. That’s not the point I was trying to make.

    br0d’scomment captures the important aspect: there’s plenty of room for improvement. It sounds like Site Digger and others haven’t moved forward to include the kinds of things br0d’s talking about, just as commercial Black Orifice equivalents were languishing before cDc’s release. Even if Goolag winds up just as one of many, it may well similarly catalyze this market niche.

    jon

  3. February 27th, 2008 at 12:34 pm

    Mike said:

    Thanks Br0d and jon – I do get both of your comments. Sure, it’s a beta tool and has lots of room for improvement. However, my initial reactions were “why” and “why now”?

    I’m not going to suck up to CdC or anything – as I’ve said above, and many times before, I really like these guys and they certainly know their stuff. I was just surprised in the number of news stories/articles it’s been generating when, to my mind at least, it’s not anything “new”. If it was an “improvement” over existing tech, then I’d be right on it giving praise (as I may do later), but as the features seem to stand right now, I think my initial post was right – it’s a “huh” moment for me – and not (as you might have initially thought) a slight.

    I’ll be giving it a go later next week when I have some time, so if I have anything more to add (or even retract my words – it has been known ;) ), I’ll do it here.

  4. April 16th, 2008 at 6:51 am

    Notes from RSA2008 | Mike Andrews said:

    [...] the pleasure of chatting with on numerous occations (who also I’m a big fan of, even though I linked to one of his posts and [mis]abeled him as a "fan" – once again, apologies if that was taken [...]


Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>