Tag Archive | "apache-security"


14 April 2010 | 7,161 views

Hackers Penetrate Apache.org In Direct Targeted Attack

This is not the first time Apache.org has been hacked, it was comprised back in September 2009 using SSH keys. This time another targeted attack against the site was successful and allowed the attackers to capture the passwords of users logging into the bug-tracking service. It also exposed the entire password list, which sadly although [...]

Continue Reading

Tags: , , , , , , , , , ,
# Posted in: Exploits/Vulnerabilities, General Hacking, Privacy | * 5 Comments

07 January 2010 | 4,728 views

YASAT – Yet Another Stupid Audit Tool

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut). It do many tests for checking security configuration issue or others good practice. It checks many software configurations like: Apache PHP kernel MySQL OpenVPN Packages [...]

Continue Reading

Tags: , , , , , , , , , , ,
# Posted in: Countermeasures, Security Software | * 3 Comments

11 April 2008 | 4,834 views

WSGW – Web Security Gateway for Secure Apache

The Web Security Gateway is a security-centric distribution of the Apache web server, bundled with additional security modules, and configured as a front-end (reverse) HTTP proxy. The goal is to mirror most of the features of commercial web application “firewalls”, with free and Open-Source software. The Web Security Gateway provides a configurable caching, authentication, input [...]

Continue Reading

Tags: , , , , , , , , , , , ,
# Posted in: Countermeasures, Web Hacking | * 1 Comment

23 January 2008 | 17,243 views

mod_anti_tamper – Anti Tamper Module for Apache 2.x

What Is Mod AntiTamper (AT) AntiTamper is an Apache 2.x module that could be used to prevent some sort of url and cookie tampering. Specifically, AT could stop a lot of those malicious bots that take advantage from search engines. Moreover, attack techniques like HTTP Response Splitting and session hijacking/fixation will be mitigated. Is important [...]

Continue Reading

Tags: , , , , , , , , ,
# Posted in: Countermeasures, Security Software, Web Hacking | * 3 Comments

03 January 2008 | 6,623 views

gotroot modsecurity Rules for Apache – Anti-spam and Security

To follow on from Whitetrash which I posted about previously, here is another tool to secure your web site or web application. Essentially it’s a very comprehensive set of rules for mod_security. ModSecurity is an open source intrusion detection and prevention engine for web applications (or a web application firewall). Operating as an Apache Web [...]

Continue Reading

Tags: , , , , , , ,
# Posted in: Countermeasures, Security Software, Web Hacking | * 10 Comments

17 July 2007 | 8,289 views

Sandcat by Syhunt – Web Server & Application Vulnerability Scanner

Sandcat allows web administrators to perform aggressive and comprehensive scans of an organization’s web server to isolate vulnerabilities and identify security holes. The Sandcat scanner requires basic inputs such as host names, start URLs and port numbers to scan a complete web site and test all the web applications for security vulnerabilities. This is a [...]

Continue Reading

Tags: , , , , , , , ,
# Posted in: Hacking Tools, Web Hacking | * 3 Comments

Popular Tags

botnets · computer-security · darknet · exploits · google · hacking · hacking-networks · hacking-websites · hacking-windows · hacking tool · Hacking Tools · Information-Security · Legal Issues · malware · microsoft · network-security · Network Hacking · Password Cracking · penetration-testing · Phishing · Privacy · scammers · Security · Security Software · spam · spammers · sql-injection · trojan · trojans · virus · viruses · vulnerabilities · web-application-security · web-security · Web Hacking · windows · windows-security · Windows Hacking · worms · XSS ·