StrutsHoneypot

StrutsHoneypot updated for Apache Struts content-disposition vulnerability

With an exploit now in-the-wild for the Apache Struts content-disposition vulnerability, Cymmetria Research is releasing an updated version of StrutsHoneypot. This exploit has been a bit more complex to develop for, and StrutsHoneypot will only detect it, not block. PHP does not easily allow for handling of raw data when posting multipart data. You can …

StrutsHoneypot updated for Apache Struts content-disposition vulnerability Read More »

Cymmetria Research releases an open source honeypot for detecting the Apache Struts exploit (CVE 2017-5638)

In the hope of helping the community, Cymmetria Research is releasing an open source honeypot for detecting the Apache Struts exploit (CVE 2017-5638). The exploit is the most recent to plague the Internet and is the largest in scope (even if it doesn’t have a logo or a website).   StrutsHoneypot is an Apache 2 mod …

Cymmetria Research releases an open source honeypot for detecting the Apache Struts exploit (CVE 2017-5638) Read More »

Scroll to Top