DDoS Archives

Protect WordPress from brute-force XML-RPC attacks

Secure WordPress against XML-PRC attacks. This post gives you some insights about how you can create an IP whitelist for xmlrpc.php, on Windows Server and Linux Apache (web.config and .htaccess). And how you can block access to xmlrpc.php file.

By Jan Reilink 02/06/2017Web application security

Web application security

Joomla websites abused as open proxy for Denial-of-Service attacks

Joomla websites using the Googlemaps plugin for Joomla are actively abused as open proxy for launching Denial-of-Service (DoS) attacks. The problem with the Joomla Googlemaps plugin lies in the fact anyone can execute cURL HTTP requests to remote websites.

By Jan Reilink 16/11/2014Web application security

Web application security

Increase in SQL injection attacks

Since a week or so, I notice a huge increase in SQL injection attacks on various websites. Anyone else seeing the same SQL injection attacks lately? This increased SQL injection activity - on various web sites and databases - has the following characteristics

By Jan Reilink 07/08/2014Web application security

Web application security

MySQL sleep() attacks

MySQL sleep() command injection attacks: how not validating your PHP user input can lead to Denial of Service (DoS) attacks against websites and back-end database servers. Simply by putting "AND sleep(3)" in the address bar... Here is how to put a MySQL server to sleep, happy SQL injection!

By Jan Reilink 05/08/2014Web application security

Windows Server

Mod_evasive on IIS

Website DDoS protection with mod_evasive.Mod_evasive is a module for Apache and Windows Server IIS (using Helicon Ape). It provides protection and evasive action in the event of an HTTP DoS-, DDoS or brute force attack. Detection is performed by creating an internal dynamic hash table of IP Addresses and URIs, and denies an IP address access to a website if it's requesting the same page more than 10 times a second. This is configurable.

By Jan Reilink 24/07/2014Windows Server

WordPress

Huge increase in WordPress xmlrpc.php POST requests

WordPress xmlprc.php DDoS and brute-force attacks. How to identify, block, mitigate and leverage these xmlrpc.php scans, brute-force, and user enumeration attacks on WordPress sites... Secure WordPress xmlprc.php interface and reduce service disruption.

By Jan Reilink 07/07/2014WordPress

DDoS

Protect WordPress from brute-force XML-RPC attacks

Joomla websites abused as open proxy for Denial-of-Service attacks

Increase in SQL injection attacks

MySQL sleep() attacks

Mod_evasive on IIS

Huge increase in WordPress xmlrpc.php POST requests

Windows Server

Web applications

PowerShell