Network Security Blog

Over the last couple of months I have seen repeated intrusion attempts against the corporate web servers I protect of an unusual nature. These are extremely noisy attacks against the servers that attempt several thousand different forms of directory traversal attacks in a very short period of time, usaully 3-7 minutes. Is there anyone out there who has seen a tool, or set of tools, that would perform this sort of attack? I have to say that I’m not really up to date on the attack tools, so this may be a common tool that I just haven’t heard of. Additionally, either recent upgrades to Snort have allowed me to catch more of the attacks, or the tool is being modified to include more diverse and less known vulnerable scripts. The good news is that, so far, none of the attempts appear to be successful.

On a seperate note, I was watching Screen Savers and saw a new Linux build I’m dying to try out. It’s called PHLAK: Professional Hackers Linux Assault Kit. I downloaded it and tried it on one of my personal laptops, but it doesn’t appear to like something on the system. Unluckily I haven’t had the time to troubleshoot yet, nor have I had the time to try it on a different system yet. If you’ve played with this linux build, give me some feedback on it. I really want to know how well it works.