mod_anti_tamper – Anti Tamper Module for Apache 2.x


What Is Mod AntiTamper (AT)

AntiTamper is an Apache 2.x module that could be used to prevent some sort of url and cookie tampering.

Specifically, AT could stop a lot of those malicious bots that take advantage from search engines. Moreover, attack techniques like HTTP Response Splitting and session hijacking/fixation will be mitigated.

Is important to notice that mod_anti_tamper is not an alternative to mod_security, which is more exaustive and useful for all web situations. AT could be a complement to mod_security.

Introduction

– What is HMAC

HMAC is a validation algorithm to check the integrity of informations coupled with a secret password (more here).

AT will automatically generate a password and will save it in a ‘safe’ place (root owner with 600 mode).

How AT Works

AT is composed by two primary active components.

1. A filter for url links integrity check.
2. A filter for cookie integrity check.

Download mod_anti_tamper here:

mod_anti_tamper_0.1-alpha.tgz

Or read more here.

Posted in: Countermeasures, Security Software, Web Hacking

, , ,


Latest Posts:


zBang - Privileged Account Threat Detection Tool zBang – Privileged Account Threat Detection Tool
zBang is a risk assessment tool for Privileged Account Threat Detection on a scanned network, organizations & red teams can use it to identify attack vectors
Memhunter - Automated Memory Resident Malware Detection Memhunter – Automated Memory Resident Malware Detection
Memhunter is an Automated Memory Resident Malware Detection tool for the hunting of memory resident malware at scale, improving threat hunter analysis process.
Sandcastle - AWS S3 Bucket Enumeration Tool Sandcastle – AWS S3 Bucket Enumeration Tool
Sandcastle is an Amazon AWS S3 Bucket Enumeration Tool, formerly known as bucketCrawler. The script takes a target's name as the stem argument (e.g. shopify).
Astra - API Automated Security Testing For REST Astra – API Automated Security Testing For REST
Astra is a Python-based tool for API Automated Security Testing, REST API penetration testing is complex due to continuous changes in existing APIs.
Judas DNS - Nameserver DNS Poisoning Attack Tool Judas DNS – Nameserver DNS Poisoning Attack Tool
Judas DNS is a Nameserver DNS Poisoning Attack Tool which functions as a DNS proxy server built to be deployed in place of a taken over nameserver to perform targeted exploitation.
dsniff Download - Tools for Network Auditing & Password Sniffing dsniff Download – Tools for Network Auditing & Password Sniffing
Dsniff download is a collection of tools for network auditing & penetration testing. Dsniff, filesnarf, mailsnarf, msgsnarf, URLsnarf, and WebSpy passively monitor a network


3 Responses to mod_anti_tamper – Anti Tamper Module for Apache 2.x

  1. goodpeople January 26, 2008 at 12:59 am #

    Sorry that I didn’t comment on this one earlier. I’m kinda busy these days..

    This is a very usefull feature. I will definately introduce this in my own webserver.

  2. Fran January 29, 2008 at 4:59 pm #

    2005!! it’s obsolete!

  3. eM3rC February 7, 2008 at 5:49 am #

    All servers deserve this although Fran brings up a good point of it being kind of dated…