Government Security
Network Security Resources

Jump to content

Photo

Hackers Dream come true

- - - - -
  • Please log in to reply
144 replies to this topic

#121 phatty

phatty

    Private First Class

  • Members
  • 27 posts

Posted 21 August 2006 - 12:27 PM

this is one HUGE topic.. good info though even though it seems old :)

#122 l0ph0nis

l0ph0nis

    Corporal

  • Members
  • 166 posts

Posted 22 August 2006 - 05:26 AM

maybe this might belong here, too..
So there are also specific search strings to find private webcams...some are even root privileged and you could fully control the cam.

Here a list of search strings:

Axis:

inurl:"view/indexFrame.shtml"
inurl:"view/index.shtml"
intitle:axis camera
intitle:"axis #Cameramodel#"

Canon:

inurl:sample/LvAppl/

MOBOTIX:

inurl:/control/userimage.html

JVC:


intitle:"V.Networks [Motion Picture(Java)"

FlexWatch:

inurl:toolam.html
inurl:viewash.html

Panasonic:

inurl:/ViewerFrame?Mode=Motion

Toshiba:

intitle:"TOSHIBA Network Camera - User Login"

Sony:
inurl:/home/homeJ.html

WebcamXP:

intitle:"my webcamXP server!"



Here are some examples:
http://209.113.157.2...l?newstyle=Quad Car Repair
http://209.115.3.116...l?newstyle=Quad an office
love is like the l33t trojan....comes in unnoticable....waiting for the best moment....and destroys you more and more from the inside....robs your identity...kills your life....
l0ph0nis

#123 Tyler

Tyler

    Master Sergeant

  • Members
  • 838 posts

Posted 22 August 2006 - 07:36 AM

haha, thats a pretty cool find. :) interesting

#124 Fred

Fred

    Private First Class

  • Members
  • 24 posts

Posted 22 August 2006 - 11:42 PM

Could also be usefull! :D

VoIP Google Hacking

# Asterisk Management Portal:
intitle:asterisk.management.portal web-access
# Cisco Phones:
inurl:"NetworkConfiguration" cisco
# Cisco CallManager:
inurl:"ccmuser/logon.asp"
# D-Link Phones:
intitle:"D-Link DPH" "web login setting"
# Grandstream Phones:
intitle:"Grandstream Device Configuration" password
# Linksys (Sipura) Phones:
intitle:" SPA Configuration"
# Polycom Soundpoint Phones:
intitle:"SoundPoint IP Configuration"
# Snom Phones:
"(e.g. 0114930398330)" snom

#125 Fred

Fred

    Private First Class

  • Members
  • 24 posts

Posted 28 August 2006 - 07:21 AM

I think u should have a look at this!
The Google Hacking Database - Googledorks!
Very nice one!
GHDB

Enjoy & have fun!


cheers

#126 raif

raif

    Staff Sergeant

  • Sergeant Major
  • 275 posts

Posted 02 September 2006 - 04:23 PM

this is one HUGE topic.. good info though even though it seems old :)


you'd be surprised at how often this stuff still works. it's pretty easy to go out to, say, milw0rm, find some web app vuln and throw together a quick google search to find easy targets using these techniques. for example, to find versions of phpBB that are vulnerable to a sql injection attack, you use this search query in google:

intext:"powered by phpbb 2.0.21"

for me that returns about 371,000 search results, a lot of which i am sure are false positives, but many are real and viable targets. and you can use other google search operators to refine your results even more to get rid of most of the false positives.

a book i can recommend on this subject is Google Hacking for Penetration Testers by Johnny Long, Ed Skoudis, and Alrik van Eijkelenborg.

#127 Kenny

Kenny

    Former Commander In Chief

  • Retired Admin
  • 6,747 posts

Posted 03 September 2006 - 05:25 AM

a book i can recommend on this subject is Google Hacking for Penetration Testers by Johnny Long, Ed Skoudis, and Alrik van Eijkelenborg.


even i get a mention in this book in the credits :P
Kenny aka ComSec

Please read the Forum Rules !!!

______________________

#128 raif

raif

    Staff Sergeant

  • Sergeant Major
  • 275 posts

Posted 03 September 2006 - 12:54 PM

a book i can recommend on this subject is Google Hacking for Penetration Testers by Johnny Long, Ed Skoudis, and Alrik van Eijkelenborg.


even i get a mention in this book in the credits :P


haha, nice. there it is, ComSec, right there on page xii in the "Google Masters" section :ph34r:

#129 Nua

Nua

    Private

  • Members
  • 14 posts

Posted 21 September 2006 - 02:23 PM

great info, thaks for sharing it !

#130 noid

noid

    Private

  • Members
  • 2 posts

Posted 27 September 2006 - 07:07 PM

A really nice and useful article. Not just for security but for daily use of Google.

#131 spyguy99

spyguy99

    Private

  • Members
  • 3 posts

Posted 23 April 2007 - 02:52 PM

There are cool cameras you can find with google i once found a camera frome Melborne, Austraila.

#132 Tito

Tito

    Private

  • Members
  • 2 posts

Posted 28 April 2007 - 02:42 AM

Thanks for the nice post.

#133 Ryan M

Ryan M

    Global Moderator

  • Colonel
  • 1,740 posts

Posted 28 April 2007 - 07:36 AM

Thanks Posts ARE NOT allowed. Read the rules. Warned.
There is no security on this earth. Only opportunity.
-Douglas MacArthur

GSO Compiled Exploit Database
----------------------------------------
[b]Mod at GovernmentSecurity

#134 dantdubai

dantdubai

    Private

  • Members
  • 1 posts

Posted 30 April 2007 - 11:46 AM

Thanks for the nice post

#135 Ryan M

Ryan M

    Global Moderator

  • Colonel
  • 1,740 posts

Posted 30 April 2007 - 06:44 PM

dantdubai, please read the above post. Warned. Posting suspended for 2 days as well, READ THE RULES.


THANKS POSTS ARE NOT ALLOWED
There is no security on this earth. Only opportunity.
-Douglas MacArthur

GSO Compiled Exploit Database
----------------------------------------
[b]Mod at GovernmentSecurity