SANS ISC

[SANS ISC] Bots Searching for Keys & Config Files

Logs Management / SIEM, SANS Internet Storm Center, Security One comment

I published the following diary on isc.sans.org: “Bots Searching for Keys & Config Files“.

If you don’t know our “404” project, I would definitively recommend having a look at it! The idea is to track HTTP 404 errors returned by your web servers. I like to compare the value of 404 errors found in web sites log files to “dropped” events in firewall logs. They can have a huge value to detect ongoing attacks or attackers performing some reconnaissance… [Read more]

 

One comment

  1. Pingback: [SANS ISC] Bots Searching for Keys & Config Files – Insuring Your Future… Today.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.