We just added two tools to generate OSSEC rules online.
OSSEC online tests
You May Also Like
Fake Google Analytics tracking code leading to Adware
John Castro Our Incident Response process makes sure we remove all malicious files and other small pieces of code inserted in good files that could be used…
Critical Vulnerabilities in All in One SEO Plugin Affects Millions of WordPress Websites
Ben Martin Security Risk: High Exploitation Level: Easy CVSS Score: 9.9 / 7.7 Vulnerability: Privilege Escalation, SQL Injection Patched Version: 4.1.5.3 Last week, security researcher at Automattic…
What is the Gibberish Hack?
Justin Channell Discovering some random folder with numbers and letters you don’t remember on your website would make any website owner put on their detective cap. At…
From Baidu to Google’s Open Redirects
Denis Sinegubko Last week, we described how an ongoing massive malware campaign began using Baidu search result links to redirect people to various ad and scam pages.…
Uncommon Radixes Used in Malware Obfuscation
Some JavaScript features allow for pretty interesting obfuscation techniques. For example, did you know that virtually any English word can be used as a valid…
Labs Notes Monthly Recap – May/2017
Estevao Avillez Sucuri Labs provides website malware research updates directly from our teams on the front line. You can read past-monthly recaps to catch up on trends…
Fake Instagram Verification
Luke Leal Across various social media platforms there are verification checkmark symbols that appear near the name of the account’s page we view. For example, this verified…
Lightbox Adware – From Innocent Scripts to Malicious Redirects
Cesar Anjos It’s no news that webmasters commonly make use of external scripts to add more features to their site, but things can turn out for the…
IPv6 address in malicious Javascript redirect
We recently came across a file that shows an interesting case with a Javascript malicious code injection in a website’s custom script file, though it’s…
R_Evil WordPress Hacktool & Malicious JavaScript Injections
We often see hackers reusing the same malware, with only a few new adjustments to obfuscate the code so that it is more difficult for…