Popular sites with Apache server-status enabled
Daniel Cid Apache has a very useful functionality called server-status that allows administrators to easily find how well their servers are performing. It is basically an HTML…
Month: October 2012
9 posts
Sucuri – Decoding Obfuscated PHP
Tony Perez We are happy to release a new tool for you Do It Yourself (DIY) types. Every now and then you might come across a variety…
Iframes generator: http://wordpresstest2.info/1.txt
If your site is loading hidden iframes from *.ftp1.biz/pony, look for a curlor file_get_contents call to http://wordpresstest2.info/1.txt.When you visit this site, it generates random iframes:…
Ask Sucuri: How Does SiteCheck Work?
Question: How does SiteCheck work? I just scanned a site that I think is compromised but the scanner is showing it as clean. Is my…
WordPress Security Hangout – Grand Rapids WP Meetup
Every now and then, trying to summarize a conversation doesn’t do it any justice. Here is the discussion in its entirety between Dre Armeda, Mark…
Is WordPress.com SPAM Campaign Due to Compromise?
*****Updated – 20121019***** Both Matt Mullenweg and Barry Abrahamson, System Wrangler with Automattic, have confirmed that there was not an environmental compromise and everything was…
Vote SPAM For President: New Election Tactics or Same Old Tricks?
Dre Armeda The United States presidential campaign is going full force, and it’s been a doozy. We don’t typically get involved with political situations, short of cleaning…
Dealing with WordPress Malware
A few months back I contributed to a post with Smashing Magazine on the top 4 WordPress Infections, it was released yesterday, and it couldn’t…
WordPress Themes: XSS Vulnerabilities and Secure Coding Practices
As many might imagine, my life revolves around Information Security. If you’re like me, you’re undoubtedly seeing all these new posts talking to insecurities in…