Howto: Hack a web server using a Google Search

The "Cult of the Dead Cow" hacker group – cDc for short – has published a tool that searches for vulnerabilities and private information across the web. Using well-chosen Google search queries, Goolag Scan discovers links to vulnerable web applications, back doors, or documents inadvertently put on the internet that contain sensitive information.

This kind of "Google hacking" is already well known: a hacker using the pseudonym Johnny has already published quite a collection of these "Google Hacks" or "Google Dorks" on his web site ihackstuff. What cDc has done is create an automated tool that allows an unskilled hacker to use these same techniques.

Read about it:
http://.../Cult-of-the-Dead-Cow-Google-into-a-vulnerability-scanner

Some standalone hacks for Google (no application required):
http://johnny.ihackstuff.com/ghdb.php