Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Webserver threats in this mindmap #1

Closed
clevilll opened this issue Feb 7, 2022 · 1 comment
Closed

Webserver threats in this mindmap #1

clevilll opened this issue Feb 7, 2022 · 1 comment

Comments

@clevilll
Copy link

clevilll commented Feb 7, 2022

Hi, I was wondering if your mindmap overs webserver threats based on web server logs. I see on the left side Analysing Registry but can you list those specific threats that can be found through web server log or in general log analysis?
@HellishPn
Copy link
Owner

HellishPn commented Feb 7, 2022
edited

Hi, you can dump logs with "evtlogs" but this tool is mostly used in system based forensic scenarios, but if you want to analyze a web attack you can't get so much out of this tool and you have to consider that this tool will analyze a dumped memory and cant interact with Web Applications, on the other hand in server-side you can use it to figure out the attacks against servers (against OS ) such as rootkit (as a process) or buffer overflow, for recap its rarely used on the web-side but if you have any specific situation you can use it either

@HellishPn HellishPn reopened this Feb 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@clevilll @HellishPn