Analyzing isc.sans.org weblogs, part 2, RFI attacks

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Johannes Ullrich

Threat Level: green

Analyzing isc.sans.org weblogs, part 2, RFI attacks
The 2nd part of the "Weathering the Storm" blog series is now live [1]. In this series, I am looking at our web logs from isc.sans.org for attacks. I picked Remote File Inclusion (RFI) attacks because we are getting thousands a day. Just take a quick look at our web honeypot project [2]. Most of the attacks we detect are RFI attacks. [1] http://blogs.sans.org/appsecstreetfighter/2010/01/29/weathering-the-storm-part-2-a-day-of-weblogs-at-the-internet-storm-center/ [2] http://isc.sans.org/weblogs/ ------ Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter I will be teaching next: Intrusion Detection In-Depth - SANS Cyber Safari 2022	Johannes 4597 Posts ISC Handler Jan 29th 2010
Thread locked Subscribe	Jan 29th 2010 1 decade ago