Difference between revisions of "OWASP NYC AppSec 2008 Conference-SPEAKER-cmlh"

Revision as of 12:26, 11 June 2008

Biography

Christian Heinrich is a Published Offensive Security Researcher from Sydney, Australia who advanced the state of the art of "Google Hacking" at the recent OWASP Conference in Australia and more recently contributed "Search Engine Reconnaissance" to the OWASP Testing Guide v3.

Christian Heinrich has been promoted several times within the Australian Federal Government based on his performance within web application security projects for the Australian Defense and Intelligence Services and other Critical Infrastructure within the NSW State Government. By reputation, this lead to several more web application security projects within the Four Major Banks of Australia and News Limited (part of News Corporation).

Christian Heinrich actively contributes to the security community by leading the Australian Snort User Group (SUG) and EurekaStockadeSEC, the Australian Chapter of CitySEC. He has presented at RUXCON 2K5 and RUXCON 2K6.

Christian Heinrich has a Profile on LinkedIn at http://www.linkedin.com/in/ChristianHeinrich

Abstract

The methodology of "Search Engine Reconnaissance" specified in the OWASP Testing Guide v3.

Demonstration of the Google SOAP Search API to "mine" the following from Google Search Results: 1. E-mail Addresses 2. TCP Ports 3. Hostnames 4. To/From Relationship of a Hyperlink to other Hyperlinks.