[Phân tích] 2010: Almost 1,5 million websites defaced

Attacks by month  Year 2010
Jan 53.915
Feb 57.867
Mar 73.712
Apr 95.078
May 83.182
Jun 81.865
Jul 87.364
Aug 63.367
Sep 185.741
Oct 194.692
Nov 258.355
Dec 184.064


Spe­cial Attacks by month  Year 2010
Jan 891
Feb 1.851
Mar 1.228
Apr 1.361
May 1.693
Jun 1.711
Jul 1.198
Aug 1.411
Sep 1.265
Oct 1.463
Nov 1.227
Dec 1.576
Total 16.875


Sin­gle attacks by month  Year 2010
Jan 10.332
Feb 10.936
Mar 11.908
Apr 14.333
May 12.496
Jun 15.352
Jul 13.762
Aug 13.449
Sep 16.559
Oct 13.366
Nov 32.829
Dec 24.316
Total 189.638


Mass attacks by month  Year 2010
Jan 43.583
Feb 46.931
Mar 61.804
Apr 80.745
May 70.686
Jun 66.513
Jul 73.602
Aug 49.918
Sep 169.182
Oct 181.326
Nov 225.526
Dec 159.748
Total 1.229.564


Oper­a­tive System  Year 2010 
Linux 1.126.987
Win­dows 2003 197.822
FreeBSD 46.992
Win 2008 15.083
F5 Big-​IP* 14.000
Unknown 7.840
Win 2000 6.097
Solaris 910 2.373
MacOSX 1.038
Cit­rix Netscaler* 232
Win NT9x 221
Win XP 196
NetBSDOpenBSD 99
HP-​UX 73
IRIX 47
SCO UNIX 22
Unix 15
SolarisSunOS 13
BSDOS 12
Solaris 8 11
OpenBSD 8
Com­paq Tru64 5
Com­paq OS2 5
OS390 3
MacOS 3
AIX 3
NovellNetware 1
AS/​400 1


Web­server defaced Year 2010
Apache 1.095.982
IIS/6.0 195.154
nginx 40.640
LiteSpeed 37.795
Zeus 14.111
Unknown 10.763
IIS/7.0 10.433
IIS/5.0 6.109
IIS/7.5 4.002
NOYB* 2.083
lighttpd 733
YTS* 306
IdeaWebServer 305
IIS/5.1 196
IIS/4.0 141
WebSitePro 59
Microsoft-​HTTPAPI 52
Rapidsite 51
IBM HTTP SERVER 38
SunONE WebServer 37
ConcentricHost-​Ashurbanipal* 21
Squid 21
Cherokee 20
Zope 15
DinaHTTPd Server 13
Resin 11
Sil­ver­Stream Server 10
Sun-Java-System-Web-Server/7.0 10
exteNd Appli­ca­tion Server 10
Netscape-​Enterprise 9
DataPalm 6
Allegro-​Software-​RomPager 6
IceWarp 5
AOL server 5
Abyss* 3
Sun Java Sys­tem Appli­ca­tion Server 9.1_02 3
HP-​ChaiServer 3
GHS* 2
Jetty* 2
GWS* 2
Sun Java Sys­tem Web Server 6.1 2
Roxen* 1
Caudium* 1
Squeegit 1
Lasso 1
Net Port Soft­ware 1.1 1
NetWare-​Enterprise-​Web-​Server 1
4D_​WebSTAR_​S 1
OmniHTTPd 1
SAMBAR 1
Ora­cle AS  1

Attack Method Year 2010
File Inclusion 634.620
Attack against the administrator/​user (pass­word stealing/​sniffing) 220.521
Other Web Appli­ca­tion bug 124.878
SQL Injection 98.250
Not available 91.402
Known vul­ner­a­bil­ity (i.e. unpatched system) 42.849
Undis­closed (new) vulnerability 25.552
Other Server intrusion 19.528
Web Server intrusion 18.976
FTP Server intrusion 15.619
SSH Server intrusion 15.214
Con­fig­u­ra­tion /​admin. mistake 13.901
URL Poisoning 13.191
Remote admin­is­tra­tive panel access through bruteforcing 12.132
Brute force attack 10.145
Shares misconfiguration 9.530
RPC Server intrusion 7.911
Tel­net Server intrusion 7.530
Web Server exter­nal mod­ule intrusion 7.368
Mail Server intrusion 6.260
social engineering 4.776
DNS attack through cache poisoning 3.689
DNS attack through social engineering 2.878
Rerout­ing after attack­ing the Firewall 2.550
Rerout­ing after attack­ing the Router 2.458
Remote ser­vice pass­word bruteforce 1.987
Remote ser­vice pass­word guessing 1.917
Access cre­den­tials through Man In the Mid­dle attack 1.752
Remote admin­is­tra­tive panel access through social engineering 992
Remote admin­is­tra­tive panel access through pass­word guessing 849


Attack Reason Year 2010
Heh…just for fun! 829.975
I just want to be the best defacer 289.630
Not available 94.017
Patriotism 58.970
Polit­i­cal reasons 57.083
Revenge against that website 45.093
As a challenge 44.457

Linux X Windows
Year Total deface­ments Linux (all distros)  Total deface­ments Win­dows (all versions)
2000 931 2.587
2001 4.080 13.549
2002 22.693 43.441
2003 191.720 58.571
2004 247.113 119.402
2005 276.294 179.945
2006 446.039 258.129
2007 305.968 139.427
2008 352.449 141.061
2009 378.728 143.151
2010 1.126.987 219.419
Total 3.076.889 1.318.682
Source: http://www.zone-h.org/news/id/4737

Comments

Post a Comment

Để lại góp ý của bạn để blog của mình hoàn thiện hơn :))

Popular posts from this blog

[Hack crack] Tổng hợp Google Dork

Image
/includes/header.php?systempath= /Gallery/displayCategory.php?basepath= /index.inc.php?PATH_Includes= /nphp/nphpd.php?nphp_config[LangFile]= /include/db.php?GLOBALS[rootdp]= /ashnews.php?pathtoashnews= /ashheadlines.php?pathtoashnews= /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR= /demo/includes/init.php?user_inc= /jaf/index.php?show= /inc/shows.inc.php?cutepath= /poll/admin/common.inc.php?base_path= /pollvote/pollvote.php?pollname= /sources/post.php?fil_config= /modules/My_eGallery/public/displayCategory.php?basepath= /bb_lib/checkdb.inc.php?libpach= /include/livre_include.php?no_connect=lol&chem_absolu= /index.php?from_market=Y&pageurl= /modules/mod_mainmenu.php?mosConfig_absolute_path= /pivot/modules/module_db.php?pivot_path= /modules/4nAlbum/public/displayCategory.php?basepath= /derniers_commentaires.php?rep= /modules/coppermine/themes/default/theme.php?THEME_DIR= /modules/coppermine/include/init.inc.php?CPG_M_DIR= /modules/coppermine/themes/c...
Read more

[TUT HACK] SQL Injection Cheat Sheet

Image
Lười đọc thì ko bao giờ lĩnh hội được điều gì cả :)) About SQL Injection Cheat Sheet Currently only for MySQL and Microsoft SQL Server, some ORACLE and some PostgreSQL . Most of samples are not correct for every single situation. Most of the real world environments may change because of parenthesis, different code bases and unexpected, strange SQL sentences. Samples are provided to allow reader to get basic idea of a potential attack and almost every section includes a brief information about itself. M : MySQL S : SQL Server P : PostgreSQL O : Oracle + : Possibly all other databases Examples; (MS) means : MySQL and SQL Server etc. (M*S) means : Only in some versions of MySQL or special conditions see related note and SQL Server Syntax Reference, Sample Attacks and Dirty SQL Injection Tricks Ending / Commenting Out / Line Comments Line Comments Comments out rest of ...
Read more

[Hack Crack] Full SQL inject cheat sheet - DarkGh0st Team

Image
################################################### # [+]Title: [Full SQL Injections Cheatsheet] ################################################### # [+] About : ################################################### # Author : GlaDiaT0R | the_gl4di4t0r@hotmail.com<mailto:the_gl4di4t0r@hotmail.com> # Team : DarkGh0st Team ( DarkGh0st.Com ) # Greetz: Boomrang_Victim, Marwen_Neo ################################################### # [+] Summary: I* # [1]-Introducing The SQL Injection Vuln # [2]-Exploiting Sql Injection Vuln # [3]-Exploiting Blind SQL Injection Vuln ################################################### [ 1 ]* - Introducing The SQL Injection Vuln : . SQL injection attacks are known also as SQL insertion it 's in the form of executing some querys in the database and getting acces to informations (SQL Vesion, Number & Names of tables and columns,some authentification infos,ect...) [2]* -Exploiting Sql Injection Vuln : .Before proceeding to the ...
Read more