Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Honeypots: Know Your Enemy: Web Application Threats

Know Your Enemy: Web Application Threats

From: <Ryan_at_thebillygoatcurse.com>
Date: Sat, 24 Feb 2007 16:11:36 -0500

The Honeynet Project & Research Alliance is pleased to announce the
release of a new paper "Know Your Enemy: Web Application Threats".
This technical white paper provides behind the scenes information on
various HTTP-based attacks against web applications, including remote
file inclusion and exploitation of the PHPShell application. The paper
is based on the research and data collected from the Chicago Honeynet
Project, the New Zealand Honeynet Project and the German Honeynet
Project during multiple honeypot compromises.

The paper is available at http://honeynet.org/papers/webapp

Along with the release of this paper, comes new functionality to the "Google
Hack" Honeypot (GHH), used extensively in the paper. GHH now includes an
automated malware collection function, as well as remote XML-RPC logging for
SSL support. GHH is available at http://ghh.sourceforge.net.
Received on Feb 24 2007

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos