WP comments antispam
Akismet is fine, but I decided to write a simple WordPress comments antispam for research resons. There are some proven methods to fight against spammy comments: honeypot field “nick”, it is hidden by...
View ArticleSlovak WordPress Environment
I scanned all slovak *.sk domains and prepared statistics about WordPress sites for my WordCamp Bratislava talk (2018-04-28). Source: Lynt.cz
View ArticleMACsec on Centos 7
MACsec = Media Access Control Security (802.1AE IEEE). It provides point-to-point encryption (AES-GCM-128 by default) over ethernet traffic. MACsec support is included from kernel 4.6 or in Centos/RHEL...
View ArticleSensitive information in WP REST-API
There is REST-API integrated into WordPress from version 4.7. It is the way how we will use WP in future, but there are some downsides currently. The problem is, that WP use gravatars in default...
View ArticleRestic – backup to the cloud
Few months ago we decided to change our backup workflow. I found an ultimate tool for backing up our web servers to Digital Ocean Spaces (object storage, cheaper then Amazon S3). Restic – backups done...
View ArticleOpen .git scan – the results
I published an artice about my latest security scan aimed to the exposed git repositories. The results: 230 000 000 domains checked (the list was build mainly from the Rapid 7 OpenData), 390 000...
View ArticlePython & Ruby webserver config – the great misunderstanding
Two months ago I ran a huge global scan for unintentionally exposed .git repositories. I was surprised to find many Python and Ruby applications with this issue. The total number wasn’t very high –...
View ArticleEnhance your CentOS security for $1 a month with autoupdates
How to enable security autoupdates properly on CentOS and why are the most tutorials wrong.
View ArticleWordCamp EU – Q&A
How do I know that my PHP or Apache version is vulnerable? You can find vulnerabilities for the particular version on CVE details. You should use the lastest versions of server components, currently:...
View ArticleWordPress installer attack race
“The Famous WordPress 5-Minute Install” was great. Unfortunately, today it can cause serious security problems. The typical scenario is to upload core files to your host, open the installer, and it is...
View ArticleHello, Unauthenticated RCE here! What to do?
Last week we witnessed a critical vulnerability in the WordPress visual builder Bricks: https://snicco.io/vulnerability-disclosure/bricks/unauthenticated-rce-in-bricks-1-9-6. In this article I will...
View ArticleWordPress Builders: journey from phpinfo() to RCE
In the context of the recent surge in attention towards a critical Remote Code Execution (RCE) flaw in Brick Builder, I want to shed light on a less-known issue I discovered and reported two years ago....
View Article
