WebApp Sec mailing list archives
Re: PHP based defacing tool usage continue to rise
From: Zapotek <zapotekzsp () gmail com>
Date: Mon, 30 Jan 2006 23:07:31 +0200
That's quite interesting. I have never heard of this tool before nor been it's target, for all I know. Mr.Kunz I'd appreciate it if you could publish the tarball so as to further examine the so called "tool". Thank you for your time. :) On 1/30/06, Zapotek <zapotekzsp () gmail com> wrote:
---------- Forwarded message ---------- From: Christopher Kunz <chrislist () de-punkt de> Date: Jan 30, 2006 2:36 PM Subject: Re: PHP based defacing tool usage continue to rise To: Cc: webappsec () securityfocus com Hi, we're seeing stuff like this too - only that it's "Defacing Tool 2.5" here. I got my fingers on a copy and it's pretty basic yet kinda comfortable. Something like Plesk for Blackhats. If someone needs a phone-home free version of the tool for forensics or IDS purposes, I have a tarball lying around. In the meantime, setting a mod_security filter for "tool25" worked pretty well for us, without any false negatives. Regards, --ck -- http://www.de-punkt.de [ chris () de-punkt de ] http://www.stormix.de PHP-Anwendungen sind gefährdet! SQL-Injection, XSS, Session-Angriffe, CSRF, Commandshells, Response Splitting,... böhmische Dörfer? Dann gleich "PHP-Sicherheit" direkt beim Verlag vorbestellen! http://www.php-sicherheit.de/ ------------------------------------------------------------------------- This List Sponsored by: Watchfire Watchfire's AppScan is the industry's first and leading web application security testing suite, and the only solution to provide comprehensive remediation tasks at every level of the application. See for yourself. Download AppScan 6.0 today. https://www.watchfire.com/securearea/appscansix.aspx?id=701300000003Ssh -------------------------------------------------------------------------- -- __________________________________________________________
-- __________________________________________________________ ------------------------------------------------------------------------- This List Sponsored by: Watchfire Watchfire's AppScan is the industry's first and leading web application security testing suite, and the only solution to provide comprehensive remediation tasks at every level of the application. See for yourself. Download AppScan 6.0 today. https://www.watchfire.com/securearea/appscansix.aspx?id=701300000003Ssh --------------------------------------------------------------------------
Current thread:
- PHP based defacing tool usage continue to rise Mark Ryan del Moral Talabis (Jan 30)
- Re: PHP based defacing tool usage continue to rise Christopher Kunz (Jan 30)
- Message not available
- Re: PHP based defacing tool usage continue to rise Zapotek (Jan 30)
- Re: PHP based defacing tool usage continue to rise Mark Ryan del Moral Talabis (Jan 31)
- Re: PHP based defacing tool usage continue to rise Christopher Kunz (Feb 03)
- Message not available
- Re: PHP based defacing tool usage continue to rise Christopher Kunz (Jan 30)
- <Possible follow-ups>
- Re: Re: PHP based defacing tool usage continue to rise kaskasi (Feb 06)