Common Information
| Type | Value |
|---|---|
| Value |
Web Shell - T1505.003 |
| Category | Attack-Pattern |
| Type | Mitre-Attack-Pattern |
| Misp Type | Cluster |
| Description | Adversaries may backdoor web servers with web shells to establish persistent access to systems. A Web shell is a Web script that is placed on an openly accessible Web server to allow an adversary to access the Web server as a gateway into a network. A Web shell may provide a set of functions to execute or a command-line interface on the system that hosts the Web server.(Citation: volexity_0day_sophos_FW) In addition to a server-side script, a Web shell may have a client interface program that is used to talk to the Web server (e.g. [China Chopper](https://attack.mitre.org/software/S0020) Web shell client).(Citation: Lee 2013) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52405 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52399 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52400 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52403 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52408 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52406 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 1 | CVE Alert: CVE-2024-52407 - RedPacket Security | ||
| Details | Website | 2024-11-17 | 5 | Ancient TP-Link Backdoor Discovered by Attackers - SANS Internet Storm Center | ||
| Details | Website | 2024-11-16 | 90 | From Royal to BlackSuit: Understanding the Tactics and Impact of a Sophisticated Ransomware Strain | #ransomware | #cybercrime | National Cyber Security Consulting | ||
| Details | Website | 2024-11-15 | 38 | Dark Web Profile: Cadet Blizzard | ||
| Details | Website | 2024-11-13 | 3 | Writeup > LetsDefend: Adobe ColdFusion RCE | ||
| Details | Website | 2024-11-13 | 1 | China's Volt Typhoon botnet has re-emerged | ||
| Details | Website | 2024-11-13 | 4 | OWASP | Detecting Web Attack | Writeup | ||
| Details | Website | 2024-11-13 | 1 | Volt Typhoon and its botnet surge back with a vengeance | ||
| Details | Website | 2024-11-13 | 21 | Exposed Fortinet Vulnerabilities Near 1 Million: IT Vulnerability Report | ||
| Details | Website | 2024-11-12 | 1115 | US-CERT Vulnerability Summary for the Week of November 4, 2024 - RedPacket Security | ||
| Details | Website | 2024-11-10 | 7 | CTF Write-up: JetBrains (Certified Cyber Defenders) | ||
| Details | Website | 2024-11-09 | 69 | Silent Skimmer Gets Loud (Again) | #cybercrime | #infosec | National Cyber Security Consulting | ||
| Details | Website | 2024-11-08 | 1 | IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools | ||
| Details | Website | 2024-11-08 | 1 | IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools - RedPacket Security | ||
| Details | Website | 2024-11-08 | 71 | Breaking Down Earth Estries Persistent TTPs in Prolonged Cyber Operations | ||
| Details | Website | 2024-11-07 | 14 | 2024 Credit Card Theft Season Arrives | ||
| Details | Website | 2024-11-07 | 10 | [HTB Sherlocks Write-up] Ultimatum | ||
| Details | Website | 2024-11-07 | 3 | Who is Tropic Trooper (APT23)? | ||
| Details | Website | 2024-11-07 | 12 | Category |