>It says something about using Google to target servers by searching >paths to vulnerabilities. > >Any thoughts on that?
Hola, i found out that the Google - " allinurl: " - option is optimal for this: like: allinurl: .php file= .txt allinurl: .php parse= Just do this with stupid common words, a good Web-Programmer would never use as a parameter in the URL. Then it�s quite simple to view mostly anything with ../../../ .... - so check your input ! ; ) Ciao Jay -- NEU : GMX Internet.FreeDSL Ab sofort DSL-Tarif ohne Grundgeb�hr: http://www.gmx.net/info _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
