Dynamic DAST/WAF Integration: Realtime Virtual Patching
June 05, 2012 | Ryan Barnett
At the recent OWASP AppSecDC conference, I presented on this topic. I received ...
Dynamic DAST/WAF Integration: Realtime Virtual Patching
June 05, 2012 | Ryan Barnett
At the recent OWASP AppSecDC conference, I presented on this topic. I received ...
[Honeypot Alert] Inside the Attacker's Toolbox: Botnet Credit Card Validation Scripts
May 31, 2012 | Ryan Barnett
In our previous blog post "Inside the Attacker's Toolbox: Botnet Web Attack ...
[Honeypot Alert] Inside the Attacker's Toolbox: Botnet Web Attack Scripts
May 17, 2012 | Ryan Barnett
Have you ever wondered what script/code/tool was behind the automated web ...
[Honeypot Alert] (UPDATE) Active Exploit Attempts for PHP-CGI Vuln
May 07, 2012 | Ryan Barnett
UPDATE - we have received more exploit attempt details from web hosting ...
Recent Mass SQL Injection Payload Analysis
May 01, 2012 | Ryan Barnett
There have been a number of mass SQL Injection campaigns targeting ...
[Honeypot Alert] Joomla com_s5clanroster Local File Inclusion Attacks
April 16, 2012 | Ryan Barnett
Our web honeypots picked up some increased scanning for the following ...
[Honeypot Alert] Zeroboard now_connect() Remote Code Execution Attacks
April 12, 2012 | Ryan Barnett
Our web honeypots recently identified attacks for CVE-2009-4834 which is a ...
ModSecurity Advanced Topic of the Week: Automated Virtual Patching using OWASP Zed Attack Proxy
March 27, 2012 | Ryan Barnett
Automated Virtual Patching using OWASP Zed Attack Proxy The SpiderLabs Research ...
[Honeypot Alert] Large Scale LFI Attack From Brazillian Domains
March 22, 2012 | Ryan Barnett
Our web sensors picked up a big uptick in Local File Inclusion (LFI) attacks ...
[Honeypot Alert] Zen Cart 'admin/sqlpatch.php' SQL Injection Attacks
March 14, 2012 | Ryan Barnett
[Honeypot Alert] More WordPress is_human Plugin Remote Command Injection Attack Detected
March 12, 2012 | Ryan Barnett
As we first noted in a previous Honeypot Alert Blog post, our web honeypots ...
[Honeypot Alert] Status Report for February 2012
March 12, 2012 | Ryan Barnett
Monthly Web Honeypot Status Report We have received a tremendous amount of ...
Virtual Patch for Movable Types XSS (CVE 2012-1262)
March 01, 2012 | Ryan Barnett
My SpiderLabs Research colleague Jonathan Claudius recently identified an XSS ...
[Honeypot Alert] phpMyAdmin Code Injection Attacks for Botnet Recruitment
February 21, 2012 | Ryan Barnett
Our web honeypots picked up the following attacks today:
Call for Assistance: OWASP Virtual Patching Survey
February 17, 2012 | Ryan Barnett
Identification of web application vulnerabilities is only half the battle with ...
Top Ten Web Protection Techniques of 2011
February 14, 2012 | Ryan Barnett
Top Ten Web Hacking Techniques of 2011 Every year the web security community ...
Common Attack Methodologies Identified in European Customers
February 13, 2012 | Ryan Barnett
As you may have heard, Trustwave SpiderLabs released our Global Security Report ...
[Honeypot Alert] Status Report for January 2012
February 06, 2012 | Ryan Barnett
Monthly Web Honeypot Status Report We have received a tremendous amount of ...
HOIC DDoS Analysis and Detection
January 27, 2012 | Ryan Barnett
In a previous blog post, we provided details of a DDoS attack tool called LOIC ...
[Honeypot Alert] Simple Page Options Module for Joomla! Local File Inclusion Attack Detected
January 19, 2012 | Ryan Barnett
Our web honeypots generated the following ModSecurity alert today:
[Honeypot Alert] phpMyAdmin Superglobal Session Manipulation Attack Detected
January 17, 2012 | Ryan Barnett
Our web honeypots have identified attempts to exploit CVE-2011-2505. OSVDB ...
[Honeypot Alert] Is-human Wordpress Plugin Remote Command Execution Attack Detected
January 13, 2012 | Ryan Barnett
Our web honeypot logs picked up an attack aimed at exploiting the Is-human ...
[Honeypot Alert] Extensive 'setup.php' Scanning Detected
January 12, 2012 | Ryan Barnett
The SpiderLabs Research Team has identified an extensive scanning campaign ...
[Honeypot Alert] Multiple Local File Inclusion Attacks
January 09, 2012 | Ryan Barnett
Our web server honeypot log analysis has picked up some targeted local file ...
ModSecurity Mitigations for ASP.NET HashTable DoS Vulnerability (CVE-2011-3414)
January 09, 2012 | Ryan Barnett
ThreatPost had a news story today about PoC code that was released to the full ...
ModSecurity Advanced Topic of the Week: Mitigation of 'Slow Read' Denial of Service Attack
January 06, 2012 | Ryan Barnett
Slow-Read DoS Attack Background Another tweak in the ongoing "Slow" DoS attacks ...
Virtual Patch for ASP.Net Forms Authentication Bypass Vulnerability (CVE-2011-3416)
January 04, 2012 | Ryan Barnett
Last Thursday, Microsoft released an out-of-band security patch (MS11-100) ...