XSS, Getting Nasty
XSS stands for cross site scripting. I long debated whether to leave this out or include it in this blog , but for your informational purpose i 've exploited it here.
Use this with caution or not at all depending on where you are. It may not be perfectly lawful. If you’ve ever wondered what “hacking” is about, XSS is the basis for it.
XSS refers to finding vulnerabilities in other people’s websites and exploiting these vulnerabilities to further your own means. Black hatters use this for 2 purposes: building unique high PR links and also effecting 301 redirects,
something we will have a better look at momentarily.
XSS can also be used for much nastier activities such as fraud and other plainly illegal activities. Do not go there, it’s just plain nasty and could land you in trouble.
For XSS links to work, they need to be posted thusly:
< href="www.spam.com">spam keyword
for .gov and .edu Links
Although there is some debate about the higher worth of .gov and .edu links and Matt Cutts has even stated that they are the same as any other tld, I still apply my own version of common sense: never believe the government, never believe Matt Cutts, and unless something is extremely clear cut, find out for yourself whether it’s true or not.
I must admit that I am biased already in favor of these links as I’ve seen what they can do firsthand and I’m quite convinced that they convey link juice one way or another, be it pure trust or trust with a certain measure of PR.
But enough talk and a little more action.
Using basic XSS, anybody can very easily get as many .gov or .edu links as they want.
Here’s how it’s done.
To do this, you will need a script that changes form methods from post to get. This one uses the Firefox webmaster toolbar to convert the form from get to post. Don’t worry, this isn’t going to get overly technical.
Download the latest version of Firefox here:
http://www.mozilla.com/firefox/
And then add the webmaster toolbar by downloading it here:
http://chrispederick.com/work/webdeveloper/
This exploit revolves around the faulty forms that often outdated government and other similarly prehistoric organizations use on their sites. The first step is to find .gov sites that use these search forms. Easy enough using
good old Yahoo!.
Try this for starters:
http://search.yahoo.com/search?p=site%3A.gov+search&fr=FP-tab-
webt500&toggle=1&cop=&ei=UTF-8 .
The next step is to use the Firefox extension mentioned above, or your own version of it to convert the form you choose from post to get. This will make the search results linkable.Enter < href="www.spam.com">spam keyword in the search box and Hit search and voila, you have a link .
Only two issues remain. First of all, the page you just created is floating out there in the middle of web page dumpage , so unless you do something, it won’t get indexed. Secondly, although it took me all of 23 seconds to make that link, it’s still a lot less efficient than automatic link spamming applications.
Fortunately, there are solutions to all of life’s more delicate dilemmas. To get the page indexed, you could ping it repetitively, or link to it from one of your other sites or blogs or just create some throw away bloggers, post links to your .gov pages and ping away. This should get the page indexed in no time, considering its extension and the trust associated to the domain itself.
As for the question of time, I’m going to have to provide only a middle of the run solution. Very advanced spammers will use scripts to automate the whole process, from finding the sites to converting the form to posting links and anchor text, pinging and what not. There are presently no applications available on the market that do this.
So how do you benefit from these links? If you have medium competition keywords that have high revenue potential, a couple dozen .gov links should get you into the business end of the serps.
TRY THIS AT YOUR OWN RISK.
Are you interested to this type of 'black hat seo' . If i get response from you i can post about these regularly. Best of this is that i can give you almost all s/w and tools to do these for free. I need atleast 10 comments supporting about my writing. Thank you.
7 comments:
Thank you for sharing your ideas. I have read quite a bit about this but never done it. I suppose a great example would be a Google search for "buy viagra," seeing as how nearly all of them are .edu and .gov links.
Thanks a lot!
I tried to do it but i guess i misunderstood :(
Hey,
Earlier I posted a comment on your "Open a US account" post. I think that the information you provided on that was "great", and it would certainly help a lot of people.
However, speaking on "Black Hat SEO technique", I would request you to remove this post, because as this gentleman "amer" got the idea of attempting to do it, many people would.
Not only its highly unethical, it is illegal at the same time. Also, genuine websites suffer due to these techniques as "Spam" websites acquire their place.
That should be highly unacceptable to any ethical "netizen". Therefore, I request you to kindly remove this post.
And, thumbs up for the rest of great work.
Thanks for th post! I've subscribed to your RSS - it's pretty hard to find a good blog describing more efficient teqniques that white SEO. 3 months of hard white seo work got me almost nothing - traffic to my site remained as low as 15-30 visitors.
PR grew up - traffic hasn't - no income and just disappointment!
Thanks this is quite the find! I would love to hear more about this stuff! I need everybit of help getting my arcade some traffic
http://www.oxidearcade.com
http://www.ebreaktime.com
Great tip, please share more of these. I found your blog looking for this kind of exploits. Keep up the good work.
Thanks for your tips. I hope you keep posting often in this blog. Greetings
Post a Comment