Collaborate Disseminate
I stumbled upon this abomination in the code base of a project I’m working on and wondered if it constitutes a security issue.
$requestUri = explode(‘?’, $_SERVER[‘REQUEST_URI’]);
$requestUri = explode(‘/’, $requestUri[0]);
array_shift($r… Continue reading Unserialize URI with PHP and nginx to gain RCE
I was routinely checking up all my servers, I found a strange process with kthreaddk command running up and taking up all 100% CPU resources. After checking it out I found that www-data (default user for php-fpm) has shell access. so I had… Continue reading Cyptomining on my AWS VPS
Is there an efficient way to hide nginx from Nmap’s Version Detection scan (nmap -sV)? The following is a sample result, we are trying to hide the nginx (reverse proxy) string.
PORT STATE SERVICE VERSION
80/tcp open http nginx (rever… Continue reading Blocking nginx from nmap version detection
HUMAN Security announced its newly-named BotGuard and a range of new features to further help enterprise customers defend their website and mobile applications from sophisticated bot attacks and fraud. BotGuard is powered by the Human Verification Engi… Continue reading HUMAN BotGuard helps enterprise customers protect web and mobile apps from bot attacks
My purpose is to leverage DH algorithm to enhance self-signed certificate (A toy in local computer).
I refered the answer of Matt Caswell. It works fine to generate the dhcert.pem but fail to configure nginx
OpenSSL generates DS-RSA key
I … Continue reading How to use DH certificate to configure nginx server
I am working on a challenge that involves getting code execution on a Ruby application hosted on Nginx. One of the ruby controllers seems to have been using unsanitized user input as part of the send() method which leads to arbitrary code … Continue reading Command substitution for code execution via Ruby’s send() method
I’m researching AI-based solutions to detect malicious web requests. I recently found this paper, showing that those web requests containing attack payloads are mostly malicious SQL injection/XSS attacks.
They carried out URL parameter ana… Continue reading What reasons can result in legitimate long Web/HTTP parameter values? [closed]
I’m working with Tomcat and nginx as a reverse proxy and I’m trying to have a better understanding of how the traffic flows and of what the security issues are. Picture this as what I have in mind:
Tomcat and a webapp are installed on ser… Continue reading Encryption with Tomcat & Nginx reverse proxy
On a nginx web-server running the following config is to possible to change $_SERVER[‘REMOTE_ADDR’] remotely?:
user www;
pid /run/nginx.pid;
error_log /dev/stderr info;
events {
worker_connections 1024;
}
http {
server_tokens off… Continue reading Changing $_SERVER[‘REMOTE_ADDR’] remotely
I am getting a lot of spam GET and POST requests lately which some of them look like this:
"GET /config/getuser?index=0 HTTP/1.1" 404 143 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox… Continue reading Spam GET And POST Requests – Are They Dangerous?