WebhostSecurity.com
ARTICLES
Lessons Learned - Defense
Lessons Learned - Offense
Finding Bugs 1 - Softaculous
Finding Bugs 2 - cPanel + Horde
uid/gid Reuse Multi Vendor Issue
Finding the WordPress 2.1.1 Backdoor
Discovering Cdorked.A on cPanel
OFFENSE
AtMail
BFD
cPanel
CSF
DirectAdmin
Installatron
Juniper
Kloxo
OSSEC
Softaculous
WHMEZLogin
WHMReseller
DEFENSE
STFN - Suspicious /tmp File Notifier
ELM - Exim Log Monitor
RFID - Remote File Inclusion Detector
Twitter
cPanel 11.19.1-DEMO_21586 - access other users' cPanel and WHM accounts via a symlink attack in Horde combined with a cPanel design issue
See
this
article for full details.
WebhostSecurity.com © 2009 - 2020