"Google Hacking for Penetration Testers" Released by Syngress

"Google Hacking for Penetration Testers" Shows How Bad Guys Use Portscans,
CGI Scans, and Web Server Fingerprinting to Stroll in the Enterprise's
Back Door

Contact: Amy Pedersen
781-681-5151 x12
amy@syngress.com

Rockland, MA January 25, 2005 -- Syngress Publishing, Inc., today
announced the publication of "Google Hacking for Penetration Testers"
(ISBN: 1-931836-36-1), which shows security specialists how to protect
their servers from malicious Google hacking techniques.

Google's advanced search capabilities are being used on an increasing
basis by some to harvest information from the Web. Sensitive documents,
stolen credit card information, even servers behind corporate firewalls
can be found using Google searches. "Google Hacking" shows how to use
Google to detect SQL injection points and login portals, execute port
scans and CGI scans, fingerprint web servers, locate incredible information
caches such as firewall and IDS logs, password databases, SQL dumps
and much more -- all without sending a single packet to the target! By
reverse engineering the techniques of malicious "Google hackers," this
book shows security practitioners how to properly protect their servers
from this often overlooked and dangerous form of information leakage.

Chapter topics include: Google Searching Basics; Advanced Operators;
Google Hacking Basics; Pre-Assessment; Network Mapping; Locating Exploits
and Finding Targets; Ten Simple Security Searches That Work; Tracking Down
Web Servers, Login Portals, and Network Hardware; Usernames, Passwords,
and Secret Stuff, Oh My!; Document Grinding and Database Digging;
Protecting Yourself from Google Hackers; Automating Google Searches;
Professional Security Testing; An Introduction to Web Application
Security.

BOOK DETAILS
ISBN: 1-931836-36-1
PRICE: $44.95 U.S.
PAGE COUNT: 448 PP

Inside the book coverage:

Are You Safe? Learn the Queries that Hackers Use:

filetype:lit lit (books|ebooks) -- Online unprotected e-books!

inurl:root.asp?acs=anon -- Outlook Web Access Public Folders and the
  Exchange Address Books!

intitle:"Live View / - AXIS" | inurl:view/view.sht -- Axis Netcams Live View!

inurl:"ViewerFrame?Mode=" -- Live Panasonic Network Cameras!

SNC-RZ30 HOME -- Live Sony NC RZ30 web cameras!

intitle:"toshiba network camera - User Login" -- Live Toshiba network
  cameras!

aboutprinter.shtml -- Xerox printers on the web!

index.of.dcim -- Digital Camera Photo Dumps!

and hundreds more!

About the Author
Johnny Long has spoken on network security and Google hacking at several
computer security conferences around the world including SANS, Defcon, and
the Black Hat Briefings. During his recent career with Computer Sciences
Corporation (CSC), a leading global IT services company, he has performed
active network and physical security assessments for hundreds of
government and commercial clients. His website, currently the Internet's
largest repository of Google hacking techniques, can be found at
http://johnny.ihackstuff.com.

Background Information
Syngress Publishing (www.syngress.com), headquartered in Rockland,
Massachusetts, is an independent publisher of print and electronic
reference materials for Information Technology professionals seeking skill
enhancement and career advancement. Distributed throughout Europe, Asia,
and the U.S. and Canada, Syngress titles have been translated into twenty
languages. The Company's pioneering customer support program,
solutions@syngress.com, extends the value of every Syngress title with
regular information updates and customer-driven author forums. For more
information on Syngress products, contact Amy Pedersen at 781-681-5151 or
email amy@syngress.com. Syngress books are distributed in the United
States and Canada by O'Reilly Media, Inc.