Monthly Archives: November 2015

What is Malware? What are some Malware Families and Variants?

Kinda ironic, I like to ask candidates while I am doing a job interview “What is Malware?” and what is it an amalgamation of? I get responses like “It is a type of virus that gets on your computer” or “It is a backdoor that a hacker installs” Even funnier is that about half of… Read More »

Share Button

You have Malware on your computer, yes YOU, bet me!

Throughout my years in the Cyber Security industry I have always found it odd that most security professionals seem to have a very little grasp of the types of malware found in the wild, how they work and how people get infected with malware. A friend of mine who has been in the IT system… Read More »

Share Button

So you want a job as a penetration tester or web application tester?

Website Application Testing In today’s world there are typically two main types of offensive security professionals; the first being website application testers which focus primarily on weaknesses in web server applications such as cross site scripting (XSS), SQL injection (SQLi) attacks, directory traversal attacks, directory brute forcing, unlinked content manipulation, authentication bypassing, brute forcing weak… Read More »

Share Button

PHP MySQL Webshell Backdoor File Sample

So, owning close to a 100 websites occasionally one gets hacked, and it just so happened that one of them was compromised the other day. The backdoor that I found on the server was a MySQL one. Here is a sample of the default MySQL webshell backdoor I found on my server. I take no… Read More »

Share Button

PERL Regular Expression REGEX Cheat Sheet Examples

Metacharacter Description . Matches any single character (many applications exclude newlines, and exactly which characters are considered newlines is flavor-, character-encoding-, and platform-specific, but it is safe to assume that the line feed character is included). Within POSIX bracket expressions, the dot character matches a literal dot. For example, a.c matches “abc”, etc., but [a.c] matches only “a”, “.”, or… Read More »

Share Button