Banking

Goolag security tool uses Google to scan sites for vulnerabilities

Goolag Scanner is a Web auditing tool released by the hacker group Cult of Dead Cows. The tool uses the prowess of the search engine to surface vulnerabilities on Web sites.

Goolag Scanner is a Web auditing tool released by the hacker group Cult of Dead Cows. The tool uses the prowess of the search engine to surface vulnerabilities on Web sites.

A quote from the cDc Web site:

"It's no big secret that the Web is the platform," said cDc spokesmodel Oxblood Ruffin. "And this platform pretty much sucks from a security perspective. Goolag Scanner provides one more tool for Web site owners to patch up their online properties.

The hacker group has been famous for its Back Orifice (a pun on Microsoft's BackOffice Server) software — a tool that grays the line between legitimate network administration and hacking cracking.

There have been several security and auditing tools in the market, but it is also a fact that the Web as a platform is not the most secure of architectures. Having started its life in research labs focused on document sharing among academics, security may not have been the first thing on the minds of the architects who laid the foundation for networking technologies.

Goolag is open source and comes as a standalone application with GUI. You can read the specifications here.

And tools such as Goolag will be a wake up call to security administrators to take a close look at their own sites — before someone else does. How are you preparing to face (or brace) the security scanner?

More information:

————————————————————————————————————————

Stay on top of the latest tech news

Get this news story and many more by subscribing to our free IT News Digest newsletter, delivered each weekday. Automatically sign up today!

Editor's Picks