Hackers Launch Goolag: A Google Vulnerability Scanner

Hackers turn Google into vulnerability scanner from Techworld reports a group of hackers named Cult of the Dead Cow (CDC) launched a search tool powered by Google to help see if your sites are vulnerable to a hacking attempt. The tool is named Goolag, and by typing in a domain name it may return site […]

Chat with SearchBot

GoolagHackers turn Google into vulnerability scanner from Techworld reports a group of hackers named Cult of the Dead Cow (CDC) launched a search tool powered by Google to help see if your sites are vulnerable to a hacking attempt. The tool is named Goolag, and by typing in a domain name it may return site vulnerabilities.

Techworld reports the tool makes “it easy for unskilled users to track down vulnerabilities and sensitive information on specific Web sites or broad Web domains.” The tool uses the Google Custom Search engine and has a detailed specification on how it works.


“It’s no big secret that the Web is the platform,” said cDc spokesmodel Oxblood Ruffin. “And this platform pretty much sucks from a security perspective. Goolag Scanner provides one more tool for web site owners to patch up their online properties. We’ve seen some pretty scary holes through random tests with the scanner in North America, Europe, and the Middle East. If I were a government, a large corporation, or anyone with a large web site, I’d be downloading this beast and aiming it at my site yesterday. The vulnerabilities are that serious.”


About the author

Barry Schwartz
Staff
Barry Schwartz is a Contributing Editor to Search Engine Land and a member of the programming team for SMX events. He owns RustyBrick, a NY based web consulting firm. He also runs Search Engine Roundtable, a popular search blog on very advanced SEM topics. Barry can be followed on Twitter here.

Get the must-read newsletter for search marketers.