rjcolonna
commented
2 years ago There is a newer version of the webshell-scan called webshell-analyzer that decoding and attribute analysis, which could lead to better detection
Open wajihyassine opened 2 years ago
rjcolonna
commented
2 years ago There is a newer version of the webshell-scan called webshell-analyzer that decoding and attribute analysis, which could lead to better detection
aarontp
commented
1 year ago Here's another webshell scanner tool: https://github.com/nsacyber/Mitigating-Web-Shells
AFAICT, the license should be compatible as it is waived via creative commons, but we should double check that: https://github.com/nsacyber/Mitigating-Web-Shells/blob/master/LICENSE.md
Create a new Job that uses open source tool https://github.com/tstillz/webshell-scan to scan for webshells.
Context: https://medium.com/swlh/web-shell-hunting-meet-the-web-shell-analyzer-f062686b443b