Here's a blacklist check script written in PowerShell. You can use this to lookup an IP address in various blacklists (DNSBL, RBL). Such a check is a great indicator for an IP address' reputation. Basically this PowerShell blacklist checker is a port of my Bash script to check an IP address blacklist status in Linux.
Read more...
Published on Thursday, 19 May 2016
When you use iisnode to host the Node.js blogging software Ghost on your IIS web server you may encounter a \"Too many redirects\" error while setting up and TLS/SSL certificate for your site. Here is the solution.
Published on Tuesday, 17 May 2016
The `AppCmd.exe` command is your one-stop-shop for administering Windows Server IIS web servers. In combination with WinRM it's your Swiss Army knife for your daily routine. This post introduces appcmd and provides you with a lot of helpful appcmd examples.
Published on Tuesday, 17 May 2016
Ever wanted to know the current number of active FTP client connections on your Windows Server IIS FTP Service? You can get this statistic using PowerShell, the `Get-Counter` cmdlet and the Microsoft FTP Service Current NonAnonymous Users performance counter.
Published on Tuesday, 3 May 2016
Windows PowerShell is an important tool in Windows Server for administrators. You can use PowerShell for Windows Server administration, software installation, automation, and shell/command-prompt scripting.
Published on Thursday, 28 April 2016
GoSecure wrote up a new PHP exploitation technique using the default OPcache engine from PHP 7. Using this attack vector, it's possible to bypass certain hardening techniques that disallow the file write access in the web directory. This could be used by an attacker to execute his own malicious code in a hardened environment.
Read more...
Published on Thursday, 28 April 2016
After downloading the Windows 10 update through Windows Update, Windows Update returned errors `0xc1420127` and `0xc190010b`, even after using the Windows 10 media creation tool
Published on Monday, 25 April 2016
This post walks you through the steps necessary to install the SQL Server driver and SQLSRV extension for PHP 7+, on Windows Server IIS of course.
Published on Wednesday, 13 April 2016
To regularly optimize my WordPress database tables, I created a small plugin that utilizes the WordPress Cron feature. This comes in handy to perform database optimization for WordPress on a regular basis, without forgetting about it. Just activate and enjoy. And here is the plugin code.
Published on Friday, 4 March 2016
Learn to protect your WordPress website with this web.config file
Published on Friday, 19 February 2016
The other day, I had to migrate a website from a Linux / Apache web server to Windows Server IIS. Yes, that type of migration happens too, sometimes. The website in question had a lot of sub domains, all pointing to folders within the web root using that same name: foobar.example.com would redirect (rewrite) to www.example.com/foobar.
Published on Tuesday, 16 February 2016
This is a very interesting read about how PHP rand() works, and how to attack & crack it...
Published on Monday, 15 February 2016
TL;DR, when using recursive scp, symbolic links aren't preserved and are copied as if they are normal directories. So you have to look for another solution to recursively transfer symlinks over ssh. Use Tar over ssh!
Published on Thursday, 4 February 2016
Using Windows Server File Server Resource Manager (FSRM) File Screens you can block vulnerable WordPress plugins from being uploaded to your [IIS](/tags/iis/) web server. In the following example, you'll learn how to block WP DB Backup plugin system-wide on Windows Server, read on...
Published on Sunday, 31 January 2016
In this article I'll show you how to install Varnish Cache on CentOS, version 6.7 in this case. Varnish is a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Because Varnish Cache is really, really fast, web applications like WordPress, Drupal and Joomla can greatly benefit from Varnish Cache.
Read more...
Published on Tuesday, 29 December 2015