Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
systems:web:security [2013/02/27 16:09]
smayr [References]
systems:web:security [2013/02/27 16:52] (current)
smayr [Website Security]
Line 30: Line 30:
 </urlset> </urlset>
 </code> </code>
-  * List all files with a certain datetime stamp that match the compromised files: <code> ls -l -R | grep --color=auto '2011-08-02 16:18'</code>+  * List all files with a certain datetime stamp that match the compromised files: <code>% ls -l -R | grep --color=auto '2011-08-02 16:18'</code>
   * List all files with a certain string inside: <code>% grep -H -r "redeem reward" /home/tom | less</code>   * List all files with a certain string inside: <code>% grep -H -r "redeem reward" /home/tom | less</code>
   * Update server operating system. Eg. Ubuntu: <code>% apt-get update   * Update server operating system. Eg. Ubuntu: <code>% apt-get update
Line 45: Line 45:
   * [[http://hakipedia.com/index.php/Local_File_Inclusion|Hakipedia: Local File Inclusion]]   * [[http://hakipedia.com/index.php/Local_File_Inclusion|Hakipedia: Local File Inclusion]]
   * [[http://www.imperva.com/docs/HII_Remote_and_Local_File_Inclusion_Vulnerabilities.pdf|Imperva: Remote and Local File Inclusion Vulnerabilities (PDF)]]   * [[http://www.imperva.com/docs/HII_Remote_and_Local_File_Inclusion_Vulnerabilities.pdf|Imperva: Remote and Local File Inclusion Vulnerabilities (PDF)]]
 +  * [[http://blog.sucuri.net/2011/02/the-attack-from-the-ccs-domains-considered-harmful.html|Sucuri: Website Attack Cleaning]]
 +  * [[http://sitecheck.sucuri.net/scanner/|Sucuri: Website Malware Scanner]]