Top

scan malware cpanel server

Learn how to scan and protect your cPanel server for Malware and Viruses. To protect your server from viruses and malware, or if you believe there are scripts on your server already we recommend doing the following. Requirements: – Maldet (Linux Malware Detect) – Clamav (Clam AntiVirus) Install ClamAv How To install Clamav Install Maldet […]

Continue Reading

Audit Log

When modsecurity detects an event has occurred that it has been instructed to log, it will generate an audit log entry, and if properly configured an audit log event file. The audit log event file is the most useful piece of information the system will collect, so its vital modsecurity be setup correctly to capture […]

Continue Reading

b374k-shell

Introduction A webshell itself cannot attack or exploit a remote vulnerability, so it is always the second step of an attack (this stage is also referred to as post-exploitation). PHP Webshell with many features such as : * File manager (view, edit, rename, delete, upload, download as archive,etc) * Command execution * Script execution (php, […]

Continue Reading

Remove Website Malware

Shared web hosting companies usually installed server clamav virus scanner. This is very helpful to scan PHP files with malware. Also, you need ssh access to the server and use extra signatures to get better detect ratio php malware. We generated bash script for that, so no need manually download everything. This script working cPanel/DirectAdmin […]

Continue Reading

Free Online PHP Obfuscator

Free Online PHP Obfuscator is designed to help PHP developers protect their intellectual property. Any time you give your PHP source code to someone else your intellectual property can be used and altered without your permission. It’s not one-way encryption but it will keep curious eyes away from your code. These tryed again upload to […]

Continue Reading

Modules Simple Spotlight Upload

Simple spotlight is a jQuery image rotator with navigation. You can have up to 20 images with links. You can turn off the navigation and choose between 27 effects for transition. It also has 5 button styles and a shadow effect. (Read More) Description Uploaded files represent a significant risk to applications. The first step […]

Continue Reading

How to Install Nginx with ModSecurity v2.9 from source

Introduction ModSecurity is an open-source Web Application Firewall (WAF) for Apache, Nginx and IIS web server. This application layer firewall is developed by Trustwave’s SpiderLabs and released under Apache License 2.0. ModSecurity protects websites from hackers by using a set of regular expression rules to filter out commonly known exploits, it allows HTTP traffic monitoring, […]

Continue Reading

writing modsecurity rules

ModSecurity Rule Writing The ModSecurity Reference Manual should be consulted in any cases where questions arise relating to the syntax of commands: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual Rule Syntax Here basic about SecRule: VARIABLES ARGS is a collection so it means all arguments including the POST Payload. ARGS_GET contains only query string parameters. ARGS_POST contains arguments from the POST body. FILES Contains a […]

Continue Reading

Install Maldet Directadmin Server

Login to DirectAdmin server via SSH as the root user or sudo to get root access. Execute the below commands: Output install.sh script Remove unused gzipped tar file You can run a Linux Malware Detect scan now, it would run with no problem. However, it would not include ClamAV’s definitions, if you not before installed […]

Continue Reading