Analyzing & Detecting IIS Backdoors

Posted on November 5, 2022 by robwillisinfo

IIS Extensions As Backdoors Microsoft recently published an interesting blog explaining how they’ve noticed a new trend where attackers have been leveraging Internet Information Services (IIS) extensions to covertly backdoor Windows servers: https://www.microsoft.com/security/blog/2022/07/26/malicious-iis-extensions-quietly-open-persistent-backdoors-into-servers/ The Microsoft post contains a wealth of Continue reading →

Apache Struts CVE-2018-11776 – Testing, Analyzing, & Detection

Posted on August 31, 2018 by robwillisinfo

Intro Any time a new Apache Struts vulnerability comes out it should be taken pretty seriously as there are many “mission critical” systems that are leveraging the framework, with a considerable amount of them being public facing. Unfortunately, as a Continue reading →

RobWillis.info

everything tech.

Tag Archives: Detection

Analyzing & Detecting IIS Backdoors

Apache Struts CVE-2018-11776 – Testing, Analyzing, & Detection