Archive for the ‘Trackback’ Category

CSS History Stealing Applied to Black Hat SEO

CGI security has an interesting write up on how to use Jeremiah Grossmans CSS History Stealing Trick. For those of you who haven’t already read, there is a way to check where your users have been by checking their CSS history. So, in answer to his August ponderism:

I wonder how long until the marketers start using this for additional visitor profiling. Feel free to view-source and find the trick.

Less than 2 months!

You run www.sitea.com and www.siteb.com and www.sitec.com are competitors of yours. Now you know these companies use www.ad1.com and www.ad2.com to serve up ads on. What you don’t know is how effective these ads are, simply put without direct access to the web server logs you can’t tell really. Well this isn’t entirely true!

Lets say VisitorA visits your site www.sitea.com. You can use the CSS history stealing trick to see if they have visited www.siteb.com and/or www.sitec.com. If they’ve visited a competitor you’ll know that this person is semi serious about whatever reason they’re visiting your site for. Using the same CSS trick you could also enumerate a list of links (only enumerated if the link was visited) against each competitor website to see what they viewed on this site. This could include seeing which products/services they are interested in, if they visited the ‘contact us’ page and possibly if they also visited the ‘thank you for submitting your data’ (Letting you know they submitted a form). Now that you know where your visitor has been you can utilize the same trick on websites advertising your competitors to see where they came from. Why bother? Well now you know which ads are in fact paying off for them and can advertise with the same company.

A more elaborate example would be dynamically generating a discount if the current visitor has visited a competitor potentially winning a deal.

So now you can map out all of your competitors and if a visitor has visited one of them and you know the price on that site to be X, you can sell for X-5 (for example). The possiable applications are endless . . . but are they legal? Donno. I doubt there are any laws written about grabbing someones CSS history. Any lawyers care to chime in?

How could SEO blackhats use this? Off the top of my head for manipulative “link trading”. To automate the process, you set up a script that grabs the URLs of all the places you send this email:

Hi,

I really like your site (sitename.com). In fact, I have put a link to your site from my site (as you can see here). Don’t feel obligated, but I would really appreciate a link back when you get the chance.

Thanks much!

-Fakename

Then the link is only served when thier site’s CSS is in thier history (which will be about 99% of the time).

Or, you could use the same application with trackback spam . . . or Referral Spam. Trackback someone and only serve a link if they have their own CSS in their history. That’s some dirty pool, but you can bet that people are going to be doing it because of how Google dramatically discounts reciprocal links.

The Most Cutting Edge SEO Exploits No One is Publishing

You know that the best SEO Black Hats are doing something more than scraping, using a site generator, comment spamming, and pinging to be raking in more than $100k per month.

But what is it?

Right now, there is way too much good stuff that I simply can’t publish on the SEO Black Hat blog. If I posted these tactics and exploits they would immediately get all the wrong kind of attention. The detailed conversations about how exactly to abuse search engine algorithms, generate massive traffic, and what other Black Hats are doing must remain underground to retain their effectiveness.

But what if I told you that you could discuss these exploits with me without paying my $500 an hour consulting fee? What if I told you there was a way to join in on the private, cutting edge discussions with some of the best Black Hats and web entrepreneurs in the world?

Would you be interested?

Because now you can . . .

Today is the official launch of the resource you’ve looked everywhere for but never found:

The Private SEO Black Hat Forum

Normally what you get on forums are people who don’t know anything talking with people who don’t want to say anything. You can occasionally find amazing tips on some forums: but you have to dig through 400 crappy posts just to find one post that is useful. That becomes a huge time sink.

How are the SEO Black Hat forums different?

Quality: We’re not going to have any contests to see who can make the most posts. That just creates tons of crap that no one wants to read. Our focus is on quality over quantity. Our primary concern is with succinctly answering one question: “What works?”

Sophisticated: Many of the topics we discuss are very advanced and require a high level of technical or business acumen to appreciate.

Expert Discussions: The SEO Black Hat forums are not for everyone and they may not be right for you. If you are relatively new to SEO or building websites, then do not join the SEO Black Hat Forums: you will be in way over your head. There are plenty of newbie forums out there for you – this is not one of them. Our forums are for successful web entrepreneurs to develop strategies that drive more traffic and generate more revenues.

Forum Membership Benefits

Access to Expert Advice and Discussions
We have both White Hat and Black Hat Experts that are already benefiting from new tool development, techniques, scripts and the sharing of ideas.
Some members you may already be familiar with include:

* CountZero from blackhat-seo.com (Black Hat)

* RSnake from ha.ckers.org (Web Security Expert)

* Dan Kramer from Kloakit (Cloaking Expert)

* Jaimie Sirovich from seoegghead.com (Token White Hat / SEO Geek)

There are several other members that you are certainly familiar with who are using handles for anonymity. We have others who are more focused on security, vulnerabilities, and coding. There are still more that you are likely unfamiliar with but are nevertheless web millionaires.

Databases – Large Datasets
If you want your sites to have massive amounts of unique content you need large data sets. The trading, discussion and posting of large data sets is going on right now on our forums.

Expired / Deleted Domain Tools
Want to use to use the same domain Tool that I used to get a Page Rank 6 site in the Gambling Space for just $8? This domain tool is available for members to use for free.

50% off on Kloakit – The Professional Cloaking Software

Scripts – Several useful scripts have already been posted – interesting thing you may not have thought of before are being discussed and developed.

Exploits and Case Studies: The really good stuff I can’t talk about on the SEO Blackhat Blog is being discussed on the SEO Black Hat Forums. Right now, some of the conversations include beating captchas, domain kiting, data mining, hoax marketing, XSS vulnerabilities as they relate to SEO, and much more.

Pricing: $100 per month.

The price will soon be rising significantly as more databases, hosted tools, scripts and exploits are added. However, once you lock in a membership rate it will never go up and you will continue to have access to everything.

So, if you think you’re ready for the most intense Black Hat SEO discussions anywhere, then here’s what you need to do:

1. Register at the SEO Black Hat Forums.

2. Go to the User CP and select Paid Subscription.

I’ll see you on the inside!

One Trackback Mistake You Can’t Afford to Make

Trackback is arguably the most important reason for the rapid rise of the “blog” over other content management systems. With trackback, when you link to someone’s post and your blog software does a trackback ping, a link will appear back to your post in either the comment section or just above it.

But there is a critical trackback mistake that bloggers make millions of times a week that I’m gong to teach you how to avoid.

To illustrate the importance of not making this mistake, let me tell you the story of Breana:

Breana had $20k saved up before she quit her job to become a full time web entrepreneur. She was right on the cusp of being a successful blogger – one that could make a living by the written word. But she made one very costly, very critical mistake . . .

You see, Breana used the most popular blogging software, WordPress. Since she had past SEO 101, she had enabled the “Search Engine Friendly URLs” feature that rewrites the URLs to include the title of the post. Every week she did a roundup of posts she liked and Titled it: “This Week’s Best Posts.” She linked to all the top posts and WordPress pinged the other posts for a trackback.

Unfortunately for her, WordPress rewrote her URLs as:

http://breanacatblog.com/this-week%e2%80%99s-top-posts/8/7/2006

You see, %e2%80%99 is how wordpress encodes the apostrophe. The bigger problem than that being an ugly URL is that other WordPress blogs strip out some special characters (like %) on trackback.

The other very powerful and influential bloggers who received that trackback saw the link as:

http://breanacatblog.com/thie-weeke28099s-best-links/8/7/2006

When they clicked the link to see who was linking to them, all they got was a 404 Error Page. Man! Were these bloggers Pissed. They thought:

“Wonderful. Another Goddamn Spammer.”

So, instead of adding her feed to their RSS Readers, reading her blog, linking to her regularly and vaulting her to “A List Blogger” status where she could have made a six figure income, Breana was blacklisted.

All those juicy trackback links went right down the toilet. The Influencial Bloggers added her IP to the list of trackback spammers and blocked her IP address with the .htaccess file.

Readers trickled in, but it wasn’t enough to pay her bills. As time went by, Breana ran through her life savings, piled up huge debt, and was evicted from her apartment. The depression of her failure as a blogger was more than she could handle. She turned to crack to just make the demons of her failure subside – even if just for a few hours.

Breana is now turning tricks on the corner of 4th and Grand for $10 a pop. Instead of blogging for a living, she now works for this guy 6 times a week:

”Homeless

All because she didn’t fix the post slug before publishing.

Don’t end up like Breana.

There is a tab on the “post slug” section of “write posts” that allows you to change what the URL of your post will appear as. In Breana’s Case, all she had to do was write:

this-weeks-best-posts

in that section and she would have been successful and famous instead of having to whore herself out on the street for crack money.

Any time you use a special character like a quote or an apostrophe in you post title, make sure you also manually create a post slug.

Otherwise, you might just end up like Breana.