IIS – WindowsTechs.com

Mutliple WAN connections, same server, ssl certificates [migrated]

Posted on March 21, 2024 by Maverick Network

I have an IIS server hosting a website. We have an SSL certificate for the primary WAN connection which is working. When we lose the primary internet connection, users need to securely connect using the backup connection. Is it possible… Continue reading Mutliple WAN connections, same server, ssl certificates [migrated]→

How to handle Microsoft FTP server being DDoSed

Posted on February 12, 2024 by Bose

We noticed FTP service going down intermittently in the server and we found an FTP user was used to DDoS the server. Then we deleted the specific user from the server. After that the user "anonymous" was hitting the server with 1… Continue reading How to handle Microsoft FTP server being DDoSed→

How to handle Microsoft FTP server being DDoSed

Posted on February 12, 2024 by Bose

domain (active directory) machines accessible via web

Posted on January 29, 2024 by rominator007

I recently stumbled across customer machines (windows server) that were part of the customers active directory domain and also had IIS applications accessible for the www.
I only have the vague feeling that this is a bad idea. I am thinkin… Continue reading domain (active directory) machines accessible via web→

IIS basic authentication uses local users, how should I prevent potential security issues?

Posted on December 24, 2023 by daisy

I have a IIS website and I need to enable basic authentication on it. With nginx/apache, the authentication database is unrelated to local system, i.e can only be used to do basic auth, can’t log in locally.
I only have one machine so I ha… Continue reading IIS basic authentication uses local users, how should I prevent potential security issues?→

Understanding the attack on IIS virtual hosting

Posted on December 23, 2023 by daisy

I’m reading https://drive.google.com/file/d/1aeNq_5wVwHRR1np1jIRQM1hocrgcZ6Qu/view?pli=1
On page 44 it mentions about a way to exploit IIS servers,

I tried to reproduce it but it didn’t work.

I created a Windows 2016 IIS server and add a… Continue reading Understanding the attack on IIS virtual hosting→

Subdomain vs Virtual Path discovery by bots

Posted on November 17, 2023 by Freeman Helmuth

I have a website with a URL of lets say "123.example.com" where I am hosting a large ERP system. Does hosting the application at "123.example.com/myapp" provide any layer of security from malicious web crawlers/bots etc… Continue reading Subdomain vs Virtual Path discovery by bots→

How to deploy Gophish in a running IIS Server [migrated]

Posted on November 17, 2023 by Bang Fady

I am a beginner in Windows Server management. Currently, i have a VPS which already has a website running in IIS 10. Also have a domain which already point out to the Server’s IP Address for that running website.
I use Gophish for windows … Continue reading How to deploy Gophish in a running IIS Server [migrated]→

How does this %2F attack work in IIS?

Posted on October 15, 2023 by daisy

I’m reading this presentation https://drive.google.com/file/d/1aeNq_5wVwHRR1np1jIRQM1hocrgcZ6Qu/view?pli=1
And I couldn’t understand page 48,

The author didn’t say much about it, does anyone know how it works?

Continue reading How does this %2F attack work in IIS?→

IIS sites that use DNN have been hacked [closed]

Posted on September 6, 2023 by Luis Felipe Posada Londoño

I administer a Windows Server with IIS that has many DNN sites (the .net CMS) working, and in the past weeks we noticed that the results on google of these DNN sites show spam, gibberish, weird characters and when opening the link it doesn… Continue reading IIS sites that use DNN have been hacked [closed]→