Cyber Security

Introducing Web Shells: Part 1

By TSP April 16, 2020

A web shell is a malicious script used by an attacker with the intent to escalate and maintain persistent access on an already compromised web application. A web shell itself cannot attack or exploit a remote vulnerability, so it is always the second step of an attack (this stage is also referred to as post-exploitation). […]

A Beginner’s Guide to Web Shells with PHP (Part 2)

By TSP April 14, 2020

In part 1 of this series, we looked at what a web shell is and why an attacker would seek to use one. In part 2 of this series, we’ll be looking at some specific examples of web shells developed using the PHP programming language. Web shells exist for almost every web programming language you […]

Concealing Web Shells: A Continued Exploration (Part 3 of Web Shells Series)

By TSP April 14, 2020

In part 2 of this series, we looked at specific examples of web shells in the PHP programming language. In part 3 of this series, we’ll be looking at some techniques that attackers use to keep web shells hidden. Commands can be sent to the web shell using various methods with HTTP POST request being […]

Reflecting on the 2007 hacking of the Microsoft UK events website

By TSP October 17, 2008

Back in 2007, the partner event registration page of the Microsoft UK events website has been defaced by a hacker who managed to discover and exploit a web application vulnerability in one of the parameters used by the form on the website. Read more in this article about how an SQL injection vulnerability, server-side enabled […]

Most websites are at high risk of being hacked soon – up to 70% at immediate risk

By TSP February 12, 2007

Acunetix reveals latest statistics based on one year of conducting web application scans Kirkland, Washington – February 12, 2007 – Businesses and non-commercial entities have much to consider when it comes to securing their web applications and the data they keep on customers and patrons. Acunetix, a leading vendor of web application security solutions, today […]

Cross Site Scripting Vulnerabilities Found in Hotmail, MSN and Amazon

By TSP July 5, 2006

Acunetix WVS protects the loss of sensitive personal data due to XSS attacks London, UK – 05 July, 2006 –A 16 year old Dutch student, Adriaan Graas, interested in Internet security and web development discovered a hack for the popular Hotmail free email service via a Cross Site Scripting attack. Microsoft, is reported to have […]

Introducing Web Shells: Part 1

Introducing Web Shells: Part 1

A Beginner’s Guide to Web Shells with PHP (Part 2)

Concealing Web Shells: A Continued Exploration (Part 3 of Web Shells Series)

Reflecting on the 2007 hacking of the Microsoft UK events website

Most websites are at high risk of being hacked soon – up to 70% at immediate risk

Cross Site Scripting Vulnerabilities Found in Hotmail, MSN and Amazon

Subscribe Our Newsletter

Services

Use Cases

Opportunities

Resources

Support

Get in Touch

Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC