Analyzing Oracle WebLogic attack
zam Recently we received an alert from our WAF related to an attack towards our environment. Further review of the alert found that the attacker is using Oracle WebLogic RCE Deserialization…
analysis
Shell hiding in image files
One day, we noticed strange GET request towards our JBoss server: From the request above, you’ll quickly noticed that this attack leveraging Apache Struts vulnerability from CVE-2017-5638. The request tried…
Dionaea simple analysis
For this analysis, we’ll using Python3 that bundled with Dionaea: Running command above will open a Python console. Enter the code below line by line: It will produce test.bin file…