RSS Feed

Please wait while my feed loads

See more posts...

Newsletter

Subscribe to either one of our two newsletters for regular updates and information

Downloads newsletter

This is a weekly newsletter with download news, updates and other information

This is a monthly newsletter with software store information, offers and deals

FOCA Free 3.0

Make sure your website documents aren't giving away important information in their metadata

by Mike Williams

Our Rating:
Your Rating:
Login to rate
Based on 0 ratings
License: Freeware
Operating Systems: Windows 7 (32 bit), Windows 7 (64 bit), Windows Server, Windows Vista (32 bit), Windows Vista (64 bit), Windows XP
Requirements:

 

Languages: English
Software Cost: Free
Date Updated: 28 October 2011
Watchlist: Add download to my watchlist
Downloads To Date: 26143
Developer: Informatica 64
RSS News Feed: http://twitter.com/statuses/user_timeline/101166742.rss
HURRY! Buy a lifetime Malwarebytes Anti-Malware Premium v2 license for only $18.95, saving 24% from MSRP, whilst stocks last, only from store.downloadcrew.com
FOCA Free 3.0
Make sure your website documents aren't giving away important information in their metadata

FOCA is an interesting penetration testing tool that allows you to find out more about a website by (amongst other things) analysing the metadata in any documents it makes available.

The process is surprisingly easy. Simply create a new document pointing FOCA at your website, click the Search All button, and FOCA will display all the PDF, Microsoft Office, Open Office and other documents on the site that have been indexed by Google, Bing and Exalead. (Which can be useful in itself, as you might discover you're exposing documents that were never intended for public view.)

Then, in a couple of clicks, you can have FOCA download these documents, extract their metadata, and summarise the results in a simple report. Exactly what might be exposed depends on the documents, what's been used to create them, and how well they've been cleaned, but commonly you'll see user names, network folders, printer names, email addresses, details on the software that's been used to create the files, and more - all very useful for hackers who might be looking to discover more about a particular target.

If you find your documents give away more information than you'd like, then check the creating software for tools that might be useful (search for keywords like Document Inspector or "metadata" in Office 2010, say).

Or, if you run your own IIS-based server, the FOCA authors also produce a program that may be of interest: MetaShield Protector. This cleans documents before they're sent to the client, so there's never any danger of information leaks.

Verdict:

A quick and easy way to analyse the metadata found in any website's documents

Your Comments & Opinion
 
Related Download Articles
 
FileBot 4.1 for Windows

FileBot 4.1

Open Source

An essential tool for renaming digital TV, movies and music
 

BatchPurifier 5.0.2

BatchPurifier LITE 5.0.2

Freeware

Remove metadata from JPEGs with a click

JPEG & PNG Stripper 1.5.7.70

JPEG & PNG Stripper 1.5.7.70

Freeware

Quickly strip metadata from JPGs and PNGs

Exif Pilot 4.7.1

Exif Pilot 4.7.1

Freeware

View and edit image EXIF, IPTC, and XMP tags

Other Download Articles From This Category
Sticky Password 7

Sticky Password 7.0.7.69

Trial Software

Never forget your login details thanks to this password manager

Tor

Tor 3.6.6

Freeware

Preserve your anonymity online with this interesting privacy tool

McAfee Avert Stinger Portable

McAfee Stinger Portable 11.0.0.1107

Freeware

Seek out and destroy the most common malware with a click

PrivaZer 2.23

PrivaZer 2.23

Freeware

Protect your personal privacy with this exceptionally thorough security tool

From Softwarecrew

Please wait while my feed loads

See more posts...

 

Spotlight: Free Full Software

Ashampoo Burning Studio 2013 (v11.0.6)

Free Full Commercial Software

Ashampoo Burning Studio 2013 is a compact, simple, but surprisingly feature-packed disc burning suite.

The program makes it easy to create simple data discs and audio CDs, for instance: just drag and drop your files onto the list area and you'll be burning the finished disc in a couple of clicks.

That's just the start, though. Burning Studio 2013 can also create data discs with customised, interactive multi-page menus, perfect if you'd like a more professional way to share and present the disc contents.

A built-in backup tool allows you to create backups which may be encrypted, compressed, and span several CDs, DVDs and Blu-rays.

And there are modules to create VCD or SVCD video projects; burn video DVDs or Blu-ray discs from prepared folders; create, browse or burn disc images (ISO, CUE/ BIN and Ashdisc formats are supported); copy discs, erase them, design and print disc covers, labels and booklets, and more.

The focus throughout is on ease of use, though, and so Ashampoo Burning Studio 2013 remains very straightforward, whatever you're doing. Most disc projects are created via the same simple interface, and for the most part all you have to do is drag and drop the necessary files. But experts will find more advanced options are only a click away, and if you need to then you can set ISO and UDF version, enable Joliet, make a disc bootable and more.

Note the download here will take you to the Downloadcrew Software Store where you can download Burning Studio 2013.

[...]
Value:
Free
Rating: