How To: Use Google Code Search To Find Exploit Code and Open Vulnerabilities

12 10 2006

Recently I saw this article on security focus:

Google Code Search peers into programs’ flaws

What they had to say intrigued me:

“Want to know which programs have security issues that need to be fixed? Using Google Code Search, finding likely candidates is a snap.”

I figured that this has even further implications than one might think, for intarweb naughtiness of course. Lets say you need the code for the next latest and greatest exploit…

FYI – This is where the how to part starts.

Lets say that you were looking for the code to “jpegofdeath”. I know its old and patched, but that’s the point, trying to keep the script kiddies at bay for at least a couple of hours. Well here’s what you do:

Got to code search logo

Now type in

jpegofdeath

For those that are as lazy as me out there, here are the results you’ll get.

CLICKY CLIKCY or you can see the screen shot below.
With screenshot:

jpegofdeath search image Click for the larger image.

So that’s one way to find the code for an exploit. Of course the real 1337 mofo’s out there can get hardcore and search for snippets of code that are common coder mistakes that leave a program vulnerable to attack. Then WHAM new exploit all over the web, maybe even a virus or four. This is starting to get a little too easy, nah nothing can ever be too easy, yeah I went there.

Passivemode has a great article up on what error’s to look for:

STATIC CODE ANALYSIS USING GOOGLE CODE SEARCH

I’m not sure if this is a warning to coders out there or just really really kewl. I’m gonna go with really really kewl.

Hack on fellow bored people. Let me know if you find anything kewl.

(I’m going to give myself a 10 yard penalty for overuse of the word “kewl”. How friggin lame is that!!!)


Actions

Information

2 responses

13 10 2006
TMBBITW

[…] How To: Use Google Code Search To Find Exploit Code and Open Vulnerabilities […]

15 06 2012
Ronaldinho

Fantastic website. Lots of useful information here. I’m sending it to several pals ans also sharing in delicious. And naturally, thanks to your effort!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s




%d bloggers like this: