Skip to the content

nano.cat

Snippets of Mălin Cenușă

  • Home
  • Categories
  • Malware Samples
  • mălin.ro
  • blackhat.pm
  • palma.solutions

Find last 500 modified files and directories

Date: May 9, 2020
Tags: auditing, bash, modified files, security
Categories: Security, Bash, Linux

Useful for malware auditing:

For directories:

find ./ -type d -printf ‘%T@ %p\t\t %t\n’ | sort -k…

[root@nano.cat]# Check it out!

Protection against RFI/LFI exploits

Date: May 9, 2020
Tags: LFI exploits, php.ini, RFI exploits, security
Categories: php.ini

To be added in php.ini, was used at Lunarpages:

; Protection agains RFI/LFI exploits
allow_url_fopen = Off
allow_url_include = Off
disable_functions…

[root@nano.cat]# Check it out!

Protection against XSS exploits

Date: May 9, 2020
Tags: .htaccess, security, XSS exploit
Categories: Security, .htaccess

Used at Lunarpages to prevent XSS attack and exploitation via .htaccess:

Options +FollowSymLinks
RewriteEngine On
RewriteCond %{QUERY_STRING} base64_encode.(.) [OR]
RewriteCond %{QUERY_STRING}…

[root@nano.cat]# Check it out!

Categories

  • CMS (5)
    • Wordpress (5)
  • Containers (1)
    • Docker (1)
  • cPanel/WHM (2)
    • DNS (2)
  • CSS (3)
  • Databases (2)
    • MySQL (2)
  • FreeBSD (1)
    • Configuration (1)
  • Linux (10)
    • Bash (8)
    • Network Configuration (1)
  • Mail (3)
    • Sieve (3)
  • Programming & Scripting (5)
    • PHP (4)
    • Ruby (1)
  • Security (4)
    • .htaccess (1)
    • php.ini (2)
  • Virtualization (1)
    • VMware (1)
  • Windows (3)



© 2020 nano.cat. All rights reserved. Powered by WordPress.