('binary' encoding is not supported, stored as-is) I've included a link to a tcpdump taken that shows a standard IIS directory-traversal attack. I was looking over the packets and noticed a reference to www.google.com. Could someone take a look, and let me know what this is being used for? http://12.208.102.165/attack3.dump atack3.dump=1.6kb Thanks! ---------------------------------------------------------------------------- Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the world's premier technical IT security event! 10 tracks, 15 training sessions, 1,800 delegates from 30 nations including all of the top experts, from CSO's to "underground" security specialists. See for yourself what the buzz is about! Early-bird registration ends July 3. This event will sell out. www.blackhat.com ----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Mon Jul 14 2003 - 13:27:59 PDT