[GPC] OWASP "Google Hacking" Project - Status - June 2010
paulo.coimbra at owasp.org
Fri Jun 25 21:13:48 EDT 2010
Hope you are well.
I've been following this thread carefully and, to be honest, the fact that
this project has been launched so long ago and its source code is not
released still is of concern to me as I doubt the situation is compatible
with OWASP mission and values.
I've been back to your previous email to understand what you are intending
to do and got a bit confused as you previously said "(...) Hence, I agreed
that if interested parties couldn't provide a valid SOAP Search API Key
(which had been discontinued by Google well before I had started to present
this project) - then the source code was prohibited from being distributed
to them as it was against Google's TOS. (...)" and now, as far as I
understand, you say that is only matter of locating some URLs. Could you
I thank you in advance, best regards,
<https://www.owasp.org/index.php/Main_Page> OWASP Project Manager
From: global-projects-committee-bounces at lists.owasp.org
[mailto:global-projects-committee-bounces at lists.owasp.org] On Behalf Of
Sent: domingo, 20 de Junho de 2010 12:44
To: Jeff Williams
Cc: owasp-google-hacking at lists.owasp.org; Global Projects Committee
Subject: Re: [GPC] OWASP "Google Hacking" Project - Status - June 2010
This OWASP Project was presented when it was not possible to be issued a
Google SOAP Search API Key (i.e. post December 2006) and Google removed
http://api.google.com/GoogleSearch.wsdl at the beginning of September 2009.
I am still trying to locate some of the URLs associated with the timeline
which I hope to have by the time of the OWASP NL Meeting in ten days :)
I will be in the USA next weekend - maybe we can do a Skype Conference Call?
On Sun, Jun 20, 2010 at 12:29 PM, Jeff Williams
<jeff.williams at aspectsecurity.com> wrote:
> Thanks for the update. Could you explain exactly what is preventing
> you from releasing the source? I wasn't at the June 30 OWASP NL
> meeting so I don't know the reasons.
> I've reviewed the API terms at
> (http://code.google.com/apis/soapsearch/api_terms.html) and I see
> nothing that would prevent you from releasing your code. Of course
> that doesn't include releasing your search key.
> I do understand that the API has been deprecated, but that shouldn't
> restrict anyone with a valid search key from using the code.
> Researchers may also learn from the code to build new versions that
> don't require the soap API.
> -----Original Message-----
> From: global-projects-committee-bounces at lists.owasp.org
> [mailto:global-projects-committee-bounces at lists.owasp.org] On Behalf
> Of Christian Heinrich
> Sent: Saturday, June 19, 2010 9:33 PM
> To: Global Projects Committee
> Cc: owasp-google-hacking at lists.owasp.org
> Subject: [GPC] OWASP "Google Hacking" Project - Status - June 2010
> Just to follow on from the recent discussion related to the status of
> the OWASP "Google Hacking" Project.
> I have committed to delivering a workshop at OWASP NL Meeting 30 June
> i.e. http://www.owasp.org/index.php/Netherlands which will include an
> update on the status of the Project and why the release isn't widely
> Furthermore, I have received a "copy" of the release presented at
> RUXCON 2K8 which I will inspect (to the best of my ability considering
> I can no longer execute the test harness due to
> http://code.google.com/apis/soapsearch/api_faq.html#tech15 being taken
> off line) and then commit to SVN on Google Code (again) provided the
> GPC are wiling for this to proceed after consideration of the reasons
> provided at OWASP NL Chapter Meeting.
> This commit to SVN will occur shortly after my return to Australia
> from 11 July i.e. http://www.dopplr.com/traveller/cmlh
> I will also update the project page on Wiki shortly after 11 July.
> Please let me know your thoughts?
> Christian Heinrich - http://www.owasp.org/index.php/user:cmlh
> OWASP "Google Hacking" Project Lead -
> Global-projects-committee mailing list
> Global-projects-committee at lists.owasp.org
Christian Heinrich - http://www.owasp.org/index.php/user:cmlh
OWASP "Google Hacking" Project Lead - http://sn.im/owasp_google_hacking
Global-projects-committee mailing list
Global-projects-committee at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Global-projects-committee