WebBackdoors , Attack, Evasion and Detection
This paper provides insight on common web back doors and how simple
manipulations could make them undetectable by AV and other security
suits. Paper explains few techniques that could be used to render
undetectable and unnoticed backdoor inside web applications.
This paper is mainly an update for an old paper of ours Effectiveness of
Antivirus in Detecting Web Application Backdoors, which mainly
questioned the effectiveness of AV with respect to web shells and
analysis of a couple of web shells. Current paper takes this topic
further and explains a couple of methodologies that could be used to
make stealth application layer backdoors using web scripting languages
.This paper explains various Web Backdoor attacks and evasion techniques
that could be used to stay undetected.
Download PDF
No comments:
Post a Comment