BotNetzProvider.de Ein Security Blog über Honig-Töpfe (honeypots) , Bots und Bitcoin

14Jul/091

KW 29 – Top 10 – RFI Patterns

/index.php?redir
/phphtml.php?htmlclass_path
/main.php?pagina
//s_loadenv.inc.php?DOCUMENT_ROOT
/photoalb/lib/static/header.php?set_menu
/?news_id=43/encore/main.php?pagina
/?news_id=43/encore/forumcgi/main.php?pagina
/show.php?path
//cropcanvas.php?cropimagedir
/SQuery/lib/gore.php?libpath

15Jun/090

KW 25 – Top 10 – RFI Patterns

/errors.php?error
//appserv/main.php?appserv_root
/?sourcedir
//include/admin.lib.inc.php?site_path
//phpAdsNew/view.inc.php?phpAds_path
//s_loadenv.inc.php?DOCUMENT_ROOT
//administrator/components/com_virtuemart/export.p...
/appserv/main.php?appserv_root
//contenido/includes/include.newsletter_jobs_subna...
/index2.php?x

25Apr/090

KW 17 – Top 10 – RFI Patterns

//modules/xfsection/modify.php?dir_module=
//index.php?option=com_dbquery&Itemid=&mosConfig_absolute_path=
/binaries/log/errors.php?error=
//contenido/includes/include.newsletter_jobs_subnav.php?cfg[path][contenido]=
/administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/?sourcedir=
//components/com_flyspray/startdown.php?file=
//administrator/components/com_virtuemart/export.php?mosConfig_absolute_path=
///administrator/components/com_virtuemart/export.php?mosConfig_absolute_path=
//include/write.php?dir=

14Apr/090

KW 16 – Top 10 – RFI Patterns

/index.php?body=
/index.php?dirDepth=
/skin/zero_vote/ask_password.php?dir=
/doc/faqsupport/samplefaqsupport.php?path%255Bdocroot%255D=
/includes/mailaccess/pop3.php?CONFIG%5bpear_dir%5d=
/index.php?content=
/lostpasswd.php?env%5binclude_prefix%5d=
/errors.php?error=
//index.php?option=com_dbquery&Itemid=&mosConfig_absolute_path=
/components/com_sitemap/sitemap.php?mosConfig_admin_path=

17Mrz/090

KW 12 – Top 10 – RFI Patterns

Neue RFI Patterns

//?path%5Bdocroot%5D=
/rfi//?path%5Bdocroot%5D=
//includes/mailaccess/pop3.php?CONFIG[pear_dir]=
//components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]=
//ktmllite/includes/ktedit/toolbar.php?dirDepth=
//atom.php5?page=
/rfi//components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]=
//contenido/includes/include.newsletter_jobs_subnav.php?cfg[path][contenido]=
/errors.php?error=
/rfi/includes/mailaccess/pop3.php?CONFIG[pear_dir]=

Bald wird der RFI Scanner zum download bereit stehn.

/* google like button API */