Professional Documents
Culture Documents
Lab 8.1 - Find String: CCIS2410: Hacker Techniques & Tools
Lab 8.1 - Find String: CCIS2410: Hacker Techniques & Tools
Automated reviews use a tool to quickly search every page of the website.
Although the search can typically be completed much more quickly than a
manual review, the type of data must match specific words or patterns. This
method is often used to review how and where phone numbers, email addresses
and specific words appear on the website.
set _findstr_flags= /s /i /r
2. Open a command prompt window and use the built in help for the Findstr
(findstr /?) command to determine what each of these switches does:
/s =
/i =
/r =
3. Find the section titled “Useful information leak regular expressions” in the
FindCommonWebInfoLeaks.bat script. This section contains the regular
expressions or search strings that will be used to search for information in the
website files. Find the line that reads:
set _REGEX_Email_=".[@]"YourDomain.YourTopLevelDomain
4. Change this line to match the email address you wish to search for within the
target website. You are now ready to come through your “captured” website
for people’s e-mail addresses.
Tip: if the target website also contains PDF files, the output of
FindCommonWebInfoLeaks.bat may produce large blocks of text from the
PDFs that match the search strings, making it more difficult to review the
output from the rest of the web pages. You may want to delete the PDFs
prior to analyzing the website to make the remaining output easier to review.
7. Was any interesting or useful information found in the target website? If yes,
describe that information here.
Analysis
How often do you think an organization should review its own websites to make
sure inappropriate content is not being released to outsiders?
Can you think of additional search strings or keywords that might be useful to
add to the FindCommonWebInfoLeaks.bat script?
Write your thoughts below, and try changing the script to also look for your new
keywords.