Skip to Main Content
Google Hacking for Penetration Testers
book

Google Hacking for Penetration Testers

by Johnny Long
December 2004
Intermediate to advanced content levelIntermediate to advanced
448 pages
16h 25m
English
Syngress
Content preview from Google Hacking for Penetration Testers
The simplest way to test for this is to simply enter script into the parameter
and see if it is echoed back to the browser. Figure B.18 shows a request packet
being modified; the legitimate value for the parameter named userid is replaced
with a simple Java script.
Figure B.18 also demonstrates encoding the parameters. When manipulating
packets directly, you must remember that the content-length header has to be
updated to reflect the new length of the post data string. It might also be neces-
sary to encode the input. Web browsers do this for you automatically, and any
packet editor you use should allow you to do this as well.
After you’ve injected the ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Google Hacks

Google Hacks

Tara Calishain, Rael Dornfest
Dissecting the Hack

Dissecting the Hack

Jayson E Street

Publisher Resources

ISBN: 1931836361