Google Hacking for Penetration Testers by Long Johnny

Author:Long, Johnny [Long, Johnny]
Language: eng
Format: epub, pdf
ISBN: 978-0-08-048426-6
Publisher: Elsevier Science
Published: 2008-08-14T16:00:00+00:00

Figure 5.24 Site That Allows You to Search AOL Search Terms

While this site could keep you busy for a couple of minutes, it contains search terms of people you don’t know and the data is old and static. Is there a way to look at searches in a more real time, live way?

Spying on Your Own

Search Terms

When you search for something, the query goes to Google’s computers. Every time you do a search at Google, they check to see if you are passing along a cookie. If you are not, they instruct your browser to set a cookie. The browser will be instructed to pass along that cookie for every subsequent request to any Google system (e.g., *.google.com), and to keep doing it until 2038. Thus, two searches that were done from the same laptop in two different countries, two years apart, will both still send the same cookie (given that the cookie store was never cleared), and Google will know it’s coming from the same user. The query has to travel over the network, so if I can get it as it travels to them, I can read it. This technique is called “sniffing.” In the previous sections, we’ve seen how to make a request to Google. Let’s see what a cookie-less request looks like, and how Google sets the cookie:

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.