Mark 'Rizzn' Hopkins
The Cult of the Dead Cow, the world renowned hacking group, today released a tool that utilizes known server exploits as search terms in Google to find vulnerable systems.
The CDC is probably best known for their release of Back Orifice ten years ago. The system demonstrated to a very wide audience the concept of a trojan horse to the masses, but they’ve released a bevy of interesting tools over the year. Most of them serve the purposes of either exposing widespread vulnerabilities in common computing platforms or creating tools used to circumvent governmental restrictions on Internet usage for the purposes of “social activism.”
The new CDC tool is called Goolag Scan, and is just as incendiary as any of the other tools they’ve released. The installable utility makes it easy for users of any skill level to track down vulnerabilities and sensitive information on “a specific website or broad web domains.”
“It’s no big secret that the Web is the platform, and this platform pretty much sucks from a security perspective,” said CDC spokesperson Oxblood Ruffin told Techworld today. “We’ve seen some pretty scary holes through random tests with the scanner in North America, Europe, and the Middle East. If I were a government, a large corporation, or anyone with a large website, I’d be downloading this beast and aiming it at my site yesterday.”
Results of vulnerability searches are displayed as link lists in your browser, and come complete with error messages indicating the nature of the vulnerability and exploit.
You can download the software at Goolag.org.
Short URL:
Cult of the Dead Cow Releases Exploit Search Engine GoolagPosted on Tuesday, March 18, 2008 @ 19:31:33 EDT in Hacking Associated Topics
  |
Related
)
