Hacker And The Fed cover image

The Dangers of Googling Phone Numbers, an Attack on a Security Platform, and Typo Squatting on US Military Domains

Hacker And The Fed

CHAPTER

How to Identify Potential Attack Labs in a Web Server

A good portion of the Puerto Rican government websites were hosted on a small company called PR store. On one of the web servers, I saw that they had a directory listing. So now we have a directory listing of different folders for different websites. Great. Now let's start going through each folder. And I'm running into websites again, they're loading, they're rendering them a browser. Not that interesting. But in one folder in particular, I found backups. Of CGI scripts. Okay. One script allowed you to modify date and time timestamps; it was like a log script. It would create a backup of your logs in that format as a file name. You get the

00:00
Transcript
Play full episode

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner