{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,25]],"date-time":"2026-01-25T02:45:21Z","timestamp":1769309121857,"version":"3.49.0"},"publisher-location":"Cham","reference-count":34,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319406664","type":"print"},{"value":"9783319406671","type":"electronic"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-40667-1_13","type":"book-chapter","created":{"date-parts":[[2016,6,11]],"date-time":"2016-06-11T11:19:03Z","timestamp":1465643943000},"page":"255-275","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":11,"title":["Google Dorks: Analysis, Creation, and New Defenses"],"prefix":"10.1007","author":[{"given":"Flavio","family":"Toffalini","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Maurizio","family":"Abb\u00e0","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Damiano","family":"Carra","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Davide","family":"Balzarotti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,6,12]]},"reference":[{"key":"13_CR1","volume-title":"Google Hacking for Penetration Testers","author":"J Long","year":"2005","unstructured":"Long, J., Skoudis, E.: Google Hacking for Penetration Testers. Syngress, Rockland (2005)"},{"key":"13_CR2","doi-asserted-by":"crossref","unstructured":"Provos, N., McClain, J., Wang, K.: Search worms. In: Proceedings of the 4th ACM Workshop on Recurring Malcode, pp. 1\u20138 (2006)","DOI":"10.1145\/1179542.1179544"},{"key":"13_CR3","doi-asserted-by":"publisher","first-page":"117","DOI":"10.1007\/978-1-4614-0977-9_7","volume":"54","author":"M Christodorescu","year":"2011","unstructured":"Christodorescu, M., Fredrikson, M., Jha, S., Giffin, J.: End-to-end software diversification of internet services. Moving Target Defense 54, 117\u2013130 (2011)","journal-title":"Moving Target Defense"},{"key":"13_CR4","series-title":"Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","doi-asserted-by":"publisher","first-page":"602","DOI":"10.1007\/978-3-319-23829-6_46","volume-title":"International Conference on Security and Privacy in Communication Networks","author":"J Zhang","year":"2015","unstructured":"Zhang, J., Notani, J., Gu, G.: Characterizing Google hacking: a first large-scale quantitative study. In: Tian, J., et al. (eds.) SecureComm 2014. LNICST, vol. 152, pp. 602\u2013622. Springer, Heidelberg (2015). doi:10.1007\/978-3-319-23829-6_46"},{"key":"13_CR5","unstructured":"Johnny Google hacking database. http:\/\/johnny.ihackstuff.com\/ghdb\/"},{"key":"13_CR6","unstructured":"Exploit database. https:\/\/www.exploit-db.com\/"},{"key":"13_CR7","unstructured":"Yandex cloacking condition. https:\/\/yandex.com\/support\/webmaster\/yandex-indexing\/webmaster-advice.xml"},{"key":"13_CR8","unstructured":"Baidu cloacking condition. http:\/\/baike.baidu.com\/item\/Cloaking"},{"key":"13_CR9","unstructured":"Google cloacking condition. https:\/\/support.google.com\/webmasters\/answer\/66355?hl=en"},{"key":"13_CR10","unstructured":"Wappalyzer-python. https:\/\/github.com\/scrapinghub\/wappalyzer-python"},{"key":"13_CR11","unstructured":"meanpath. https:\/\/meanpath.com\/"},{"key":"13_CR12","unstructured":"Blind elephant. https:\/\/community.qualys.com\/community\/blindelephant"},{"key":"13_CR13","unstructured":"Whatweb. http:\/\/www.morningstarsecurity.com\/research\/whatweb"},{"key":"13_CR14","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"256","DOI":"10.1007\/978-3-642-03549-4_16","volume-title":"Financial Cryptography and Data Security","author":"T Moore","year":"2009","unstructured":"Moore, T., Clayton, R.: Evil searching: compromise and recompromise of internet hosts for phishing. In: Dingledine, R., Golle, P. (eds.) FC 2009. LNCS, vol. 5628, pp. 256\u2013272. Springer, Heidelberg (2009)"},{"key":"13_CR15","unstructured":"John, J.P., Yu, F., Xie, Y., Abadi, M., Krishnamurthy, A.: Searching the searchers with searchaudit. In: Proceedings of the 19th USENIX Conference on Security, Berkeley, CA, USA, p. 9 (2010)"},{"key":"13_CR16","doi-asserted-by":"crossref","unstructured":"John, J.P., Yu, F., Xie, Y., Krishnamurthy, A., Abadi, M.: Heat-seeking honeypots: design and experience. In: Proceedings of WWW, pp. 207\u2013216 (2011)","DOI":"10.1145\/1963405.1963437"},{"key":"13_CR17","volume-title":"Hacking: The Next Generation","author":"K Michael","year":"2012","unstructured":"Michael, K.: Hacking: The Next Generation. Elsevier Advanced Technology, Oxford (2012)"},{"key":"13_CR18","unstructured":"Google advanced operators. https:\/\/support.google.com\/websearch\/answer\/2466433?hl=en"},{"key":"13_CR19","unstructured":"Bing advanced operators. https:\/\/msdn.microsoft.com\/en-us\/library\/ff795667.aspx"},{"key":"13_CR20","doi-asserted-by":"crossref","unstructured":"Lancor, L., Workman, R.: Using Google hacking to enhance defense strategies. In: Proceedings of the 38th SIGCSE Technical Symposium on Computer Science Education, pp. 491\u2013495 (2007)","DOI":"10.1145\/1227310.1227475"},{"key":"13_CR21","unstructured":"Pelizzi, R., Tran, T., Saberi, A.: Large-scale, automatic XSS detection using Google dorks (2011)"},{"key":"13_CR22","doi-asserted-by":"crossref","unstructured":"Invernizzi, L., Comparetti, P.M., Benvenuti, S., Kruegel, C., Cova, M., Vigna, G.: Evilseed: a guided approach to finding malicious web pages. In: IEEE Symposium on Security and Privacy, pp. 428\u2013442 (2012)","DOI":"10.1109\/SP.2012.33"},{"key":"13_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"230","DOI":"10.1007\/978-3-642-33338-5_12","volume-title":"Research in Attacks, Intrusions, and Defenses","author":"J Zhang","year":"2012","unstructured":"Zhang, J., Yang, C., Xu, Z., Gu, G.: PoisonAmplifier: a guided approach of discovering compromised websites through reversing search poisoning attacks. In: Balzarotti, D., Stolfo, S.J., Cova, M. (eds.) RAID 2012. LNCS, vol. 7462, pp. 230\u2013253. Springer, Heidelberg (2012)"},{"key":"13_CR24","doi-asserted-by":"crossref","unstructured":"Billig, J., Danilchenko, Y., Frank, C.E.: Evaluation of Google hacking. In: Proceedings of the 5th Annual Conference on Information Security Curriculum Development, pp. 27\u201332. ACM (2008)","DOI":"10.1145\/1456625.1456634"},{"key":"13_CR25","unstructured":"Gooscan. http:\/\/www.aldeid.com\/wiki\/Gooscan"},{"key":"13_CR26","unstructured":"Ke\u00dfler, M., Lucks, S., Tatl\u0131, E.I.: Tracking dog-a privacy tool against Google hacking. In: CoseC b-it, p. 8 (2007)"},{"key":"13_CR27","unstructured":"Pulp google hacking: the next generation search engine hacking arsenal"},{"key":"13_CR28","unstructured":"Sahito, F., Slany, W., Shahzad, S.: Search engines: the invader to our privacy\u00a0- a survey. In: International Conference on Computer Sciences and Convergence Information Technology, pp. 640\u2013646, November 2011"},{"key":"13_CR29","unstructured":"Tatl\u0131, E.I.: Google hacking against privacy (2007)"},{"key":"13_CR30","unstructured":"Tatl\u0131, E.I.: Google reveals cryptographic secrets. In: Kryptowochenende 2006-Workshop \u00fcber Kryptographie Universit\u00e4t Mannheim, p. 33 (2006)"},{"key":"13_CR31","unstructured":"Soska, K., Christin, N.: Automatically detecting vulnerable websites before they turn malicious. In: Proceedings of USENIX Security, San Diego, CA, pp. 625\u2013640 (2014)"},{"key":"13_CR32","doi-asserted-by":"crossref","first-page":"326","DOI":"10.1007\/978-3-662-45472-5_22","volume-title":"Financial Cryptography and Data Security","author":"Marie Vasek","year":"2014","unstructured":"Vasek, M., Moore, T.: Identifying risk factors for webserver compromise. In: Financial Cryptography and Data Security, pp. 326\u2013345 (2014)"},{"key":"13_CR33","unstructured":"Cho, C.Y., Caballero, J., Grier, C., Paxson, V., Song, D.: Insights from the inside: a view of botnet management from infiltration. In: Proceedings of the USENIX Workshop on Large-Scale Exploits and Emergent Threats, San Jose, CA, April 2010"},{"key":"13_CR34","doi-asserted-by":"crossref","unstructured":"Yu, F., Xie, Y., Ke, Q.: Sbotminer: large scale search bot detection. In: ACM International Conference on Web Search and Data Mining, February 2010","DOI":"10.1145\/1718487.1718540"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-40667-1_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,13]],"date-time":"2024-03-13T10:26:42Z","timestamp":1710325602000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-40667-1_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319406664","9783319406671"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-40667-1_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016]]},"assertion":[{"value":"12 June 2016","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}