We just added two tools to generate OSSEC rules online.
OSSEC online tests
You May Also Like
Can SSL or an HTTPS Website Be Hacked?
Ashley Sand This post was last updated October 11th, 2022. It should be no shock by now that a professional can break through anything. These days, zero-days…
Malware vs Virus: What’s the Difference?
Stephen Johnston There appears to be a general misunderstanding among internet users about the difference between malware and viruses. The two terms are often used interchangeably and…
Yet another variant of the cPanel user shadow editor malware
Luke Leal We have discovered a new variant of PHP malware used to edit a cPanel users’s shadow file, allowing for bad actors to change passwords for…
Mayhem malware still on the wild
Jose Martinez Years ago, colleagues from Yandex introduced the concept of Mayhem infections. In that post, they provided very detailed information about the malware, its functionalities and…
How to Run a Security Test and Set Up Continuous Monitoring
Kyle Knight Many website owners follow a similar “security plan,” even if they don’t call it that. They launch the site, add a couple of plugins, and…
web.config Redirect Malware
Krasimir Konov We recently found this malware on a windows hosting server where the web.config file was modified with the following code. The code redirects multiple user…
SiteCheck Remote Website Scanner — Mid-Year 2023 Report
Denis Sinegubko Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote scanners may not provide…
New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques
Ben Martin Readers of this blog should already be familiar with SocGholish: a widespread, years-long malware campaign aimed at pushing fake browser updates to unsuspecting web users.…
Cloudflare[.]solutions Keylogger Returns on New Domains
A few months ago, we covered two injections related to the “cloudflare.solutions” malware: a CoinHive cryptominer hidden within fake Google Analytics and jQuery, and the…
New Guide: How to Protect Your Website from Phishing
Rianna MacLeod There are many threats that can harm your website and your users, but one of the most dangerous is phishing. Phishing is a method used…