Enjoy this article as well as all of our content, including E-Guides, news, tips and more.
Step 2 of 2:
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
Metagoofil, an information gatherer with the ability to extract metadata from public documents, can be extremely valuable when analyzing a target network.
Peter Giannoulis of The Academy.ca explains how penetration testers can use the tool to assess the security of a website or Web server. Learn how MetaGoofil probes servers for available docs, including PDFs and PowerPoints, and analyzes them for hidden data.
For more information about the tool you've seen here:
About the author: Peter Giannoulis, GSEC, GCIH, GCIA, GCFA, GCFW, GREM, CISSP, is an information security consultant in Toronto, Ontario. He currently maintains www.theacademy.ca, which provides organizations streaming video on how to configure and troubleshoot many of today's top security products. He also serves as a technical director for GIAC.
This was first published in November 2008
Dig Deeper on Security Testing and Ethical Hacking