Notes from the field

Writing

Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.

Showing posts tagged input validation — 1 result.

Path-based attacks against web servers

22 March 1999

A walk through the family of attacks that exploit the gap between a URL string and the file the web server actually opens. The bugs are old. The pattern is the same. The defence is the same. The frequency is unbroken.

apache input validation path traversal web security