In case y'all missed it, they released 2.0 version (http://www.foundstone.com/index.htm?subnav=resources/navigation.htm&subcontent=/resources/proddesc/sitedigger.htm) in January.
SiteDigger 2.0 searches Google’s cache to look for vulnerabilities, errors, configuration issues, proprietary information, and interesting security nuggets on web sites.

Need an API license, anyone tried this?

I am testing it again on a few sites. Can't anyone get a Google API? I mean I have one, so I thought they would give one to anyone

http://www.google.com/apis

Yea they can, I'm just a bit busy at the moment ;)

OK cool. I thought maybe I accidentally got it LOL

:lol: Let us know if it's any good!

It seems to be - it basically will find any vulnerabilty on your site. A list can actually be found here:
http://johnny.ihackstuff.com/index.php?module=prodreviews
(just did not really want to link it)

*Wonders why these sites are still hosted / not shut down*

*wonders why people use phpnuke, postnuke, etc, etc. and wonders the same thing as pmoduk2*

The site that isn't actually linked, seems like they just used that product above. Someone once said to me - 'You're not a hacker if you don't know how to code', so wouldn't that make Johnny a phony(sp?)?

He refers to hackers that can code as malicious hackers and people who use tools to find information as hackers. Hmm not just the terminology wrong in our industry then? :lol:

It basically helps to see if you have things on your site that most hackers look for - or crackers - whatever they are called in this day and age.

The guy - Johnny - from Ihackstuff was actually on the morning news show here this morning :) - thought that was pretty interesting

Oh yea? What was said?

He was just talking about how he was trying to help people learn about how bad search engines can be. With the right phrase in Google - you can find out a lot of information possibly on yourself. He wanted the people to know how they can actually find holes in their systems and websites.

He also wrote Google Hacking for Penetration Testers (http://www.amazon.com/exec/obidos/ASIN/1931836361/104-4450755-4368715) as well. He is a hacker - but one of the good ones actually. He is a security expert.

I had more time to actually look thru the site - it is actually a neat site if you just want to make sure you are not making some of the mistakes other people might be making.

For example, ever use the Belarc (http://www.belarc.com/) program? With a few searches, you can find out what the UT had

I see - Hmmm *Checks site*

LOL - I have actually been going thru some of mine - just to make sure. So far - everything looks good with no reported problems.

That's good to hear, think I might use this regularly ;)