D
D
Daniel2018-09-16 10:07:03
CMS
Daniel, 2018-09-16 10:07:03

How to detect a vulnerability on a website?

The site becomes infected - virus files and folders appear in the root and other folders. How to determine where the first file appeared, that is, the source of infection? Can somehow on logs it is possible? The dates of the creation of virus files are varied and cannot be traced.
I understand that there may be different vulnerabilities for different CMS, but the very principle of finding the entrance for the virus is interesting, from which folder / file it all started.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
M
mletov, 2018-09-16
@mletov

Run it with Aibolit
Update the CMS version
Then run it again with Aibolit
PS And why did you decide that the first file is one?
Who prevents the virus from registering immediately in 10 folders.
And the entry point can be any php code in the database, executed via eval.

S
Sanes, 2018-09-16
@Sanes

The vulnerability may not be in the CMS. Especially if some LAMP was configured according to the precepts of Digital Ocean.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question