Collaborate Disseminate
So. I am having some issues at metasploit.
I am trying to exploit
exploit/multi/http/wp_crop_rce.
I am using Docker, in order to install wordpress version: 4.8.9.
PHP 7.2.12 (cli) (built: Nov 28 2018 22:58:16) ( NTS )
Copyright (c) 1997-20… Continue reading – Exploit aborted due to failure: not-found: Can’t find base64 decode on target
Frosty P writes: The Apache Software Foundation (ASF) has removed Marko Rodriguez from the TinkerPop project he co-founded because his provocative Twitter posts were said to have violated the ASF Code of Conduct. “I was removed from the project I start… Continue reading Apache Software Foundation Ousts TinkerPop Creator
I have a python-script being run regularly on my Linux system by means of a cron daemon process – every weekday 18:00 scraping stockmarket data.
This scraping script is placed in cgi-bin folder so that it can be run on a remote client.
Por… Continue reading CGI-BIN – suspicious activity (unknown IP made request)
I try to configure two servers ‘httpd’ with TLS1.2 (Client Certificate check enabled)
It works fine on one. But not on the second… I get : "unable to get local issuer certificate"
I tested with the same client certificate. Conf… Continue reading ServerHello incomplete? [migrated]
I’ve just deployed a barebones Apache server on Digital Ocean, only hosting static files. No PHP et al.
I’m not too bothered to see random exploit attempts, but 99% of the requests are of this similar format and I’d like to know what they … Continue reading What exploit is trying to be leveraged here? (Apache access.log)
can’t download payload from apache server using /test.apk when I try to open the link in my android device it returns this site can’t be reached took too long to respond any solutions please.
Continue reading can’t download payload from apache server [closed]
I’ve found a couple of suspicious-looking PHP files on my webserver obfuscated by a substantial block of eval. Ideally, I’d like to know what they do, but I’m struggling to decrypt them.
Everything else on the server matches my git repo, s… Continue reading If a malicious PHP file never appears in the Apache log is it safe to assume it never executed?
I’ve found a couple of suspicious-looking PHP files on my webserver obfuscated by a substantial block of eval. Ideally, I’d like to know what they do, but I’m struggling to decrypt them.
Everything else on the server matches my git repo, s… Continue reading If a malicious PHP file never appears in the Apache log is it safe to assume it never executed?
I am modifying a javascript application running on an apache web server. This runs on a windows server inside of our corporate network which I am referring to as "local server" in the comments below. The javascript makes ajax cal… Continue reading making CORS request to 3rd party API
This could be basic question as I’m new to this area. I have an apache web server which load balances to a set of servers to provide a web site. The apache server has SSL enabled and we terminate TLS on load balancer level. The TLS certifi… Continue reading Storing Apache web server’s SSL certificate in HashiCorp Vault