Hello people, welcome back to another write-up on a new SOC case on the Let’s Defend platform! In today’s case we investigate a potentially malicous file upload attempt to our git server. If you missed my last Let’s Defend write-up, you can find it here. The event On Feb. 22 a file named „phpshell.php“ (alarm […]
PHP
De-Obfuscating WordPress Malware (PHP Code)
DISCLAIMER: I do not want that code to be in wrong hands. Please respect my decision to not fully show all of its content. Thank you very much! Getting the raw code Okay, since I am working in a webhosting environment, I have to deal with a hacked wordpress instance every now and then. It […]