While working in my first year as a penetration tester at Bishop Fox (formerly Stach & Liu) one of mentors was invited to speak at a conference on the topic of Google Hacking but asked if I wanted to take this opportunity in their stead. While my first impression was that this topic had already been researched, I learned the previous year that I can always build on any topic and advance the state of the art. So I started studying and during a our first ever team retreat in Sedona β I had an idea to import all of the 1,800+ Google Dorks into Google Alerts and set the output to RSS feeds in Google Reader. This spawned the first version Search Diggity, a suite of search engine hacking tools to collect OSINT en masse from web crawler databases and other major sources of internet data. We were invited to present our research and our tool at BlackHat and Defcon:
It's a long story but we got some free wolf socks πΊ 𧦠out of it:
