menu

Gel4y Mini Shell by Indonesian Darknet

2021-06-07 :: Luke
#Gel4y  #minishell  #Indonesian Darknet  #backdoor  #PHP  #website malware  Gel4y Mini Shell by Indonesian Darknet
Another PHP web shell that promises it can bypass ‘server security’.
Read more →

analiticsweb.site (zulhqmnr@netmail[.]tk) skimmer

2021-06-03 :: Luke
#analiticsweb.site  #[email protected]  #skimmer  #ecommerce  #magento  #JavaScript  #website malware  analiticsweb.site (zulhqmnr@netmail[.]tk) skimmer
A JavaScript skimmer that loads from analiticsweb[.]site/analytics.js - and opsec failure leads to discovery of more malicious domains.
Read more →

XBALTI Phishing Kits

2021-05-21 :: Luke
#XBALTI  #phishing kit  #phishing  #fraud  #PHP  XBALTI Phishing Kits
Analysis of the XBALTI phishing kits and their exfiltration techniques.
Read more →

PHP Minishell Backticks Redux

2021-05-13 :: Luke
#backdoor  #minishell  #one-liner  #PHP  #website malware  PHP Minishell Backticks Redux
A variant of the PHP backtick minishell that obfuscates a PHP superglobal to evade detection.
Read more →

Remove With Caution: root.txt -> /

2021-05-12 :: Luke
#sysadmin  #fail  #symlinks  #malware removal  Remove With Caution: root.txt -> /
How admins accidentally run rm -rfv / and take down an entire hosting server with 500-3000 websites
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.