menu

DarkClownSecurity Web Shell

2020-08-13 :: Luke
#backdoor  #evasion  #website malware  DarkClownSecurity Web Shell
How a PHP web shell uses basic functions like tempname, require, and urldecode to remain lowkey.
Read more →

Prestashop Backdoor - SuperAdmin Injector

2020-08-10 :: Luke
#admin user creator  #backdoor  #ecommerce  #prestashop  #PHP  #website malware  Prestashop Backdoor - SuperAdmin Injector
A malware injection used to automatically inject a SuperAdmin user into the Prestashop _employees database table.
Read more →

Magento Multiversion Backdoor

2020-08-04 :: Luke
#admin user creator  #backdoor  #magento  #ecommerce  #website malware  Magento Multiversion Backdoor
Magento’s continued migration from 1.x to 2.x versions has led malware authors to modify existing malicious tools to accomodate for the major differences between these Magento versions.
Read more →

Spox Phishing Kit

2020-07-10 :: Luke
#PHP  #phishing  #fraud  #website malware  Spox Phishing Kit
Analysis of a phishing kit and its admin panel used for managing phishing pages that target Chase Bank and other organizations. The kit was created by ‘Spox’.
Read more →

How-to Use A PHP Backdoor ‘One-liner’ and How It Evades Detection

2020-07-04 :: Luke
#backdoor  #web shell  #website malware  How-to Use A PHP Backdoor 'One-liner' and How It Evades Detection
How do hackers use a PHP backdoor that is injected into a single line of code in a website’s file? Why is it better at evading malware scanners than other PHP backdoors?
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.