HeadingBuilding a real world web honeypot for CVE-2019–6340 (RCE in Drupal core)A while ago I started a project for managing real-word web honeypots. I initially built it to manage some WordPress honeypots but after…Apr 9, 2019Apr 9, 2019
HeadingLFI in the ILIAS e-learning platformFrom time to time I skim through some open source project and search for vulnerabilities. I recently stumbled over ILIAS. ILIAS is an open…Apr 18, 2018Apr 18, 2018
HeadingBuilding a malware research and honeypot lab from scratchI recently started to dive into threat intelligence and malware analysis. I’ve already written something about the setup I use to monitor…Jun 9, 20174Jun 9, 20174
HeadingHow I capture and monitor Wordpress attacksLike probably everyone who maintains Wordpress installations I had to deal with massive (automated) attacks. Due to its significant market…May 5, 2017May 5, 2017
HeadingA quick and dirty analysis of a recent captured WordPress attackI recently captured an interesting and strange WordPress attack in one of my honeypots. While analyzing the latest attack snapshot I found…Apr 19, 20171Apr 19, 20171
HeadingExploiting a HQL injectionWhile testing a new project I stumbled over something that looked like a SQL injection. When logging into the web application submits a…Apr 18, 2017Apr 18, 2017