General
-
Target
Серия памяток OWASP_bundle.zip
-
Size
15.2MB
-
MD5
9982d8148337d06c722c3fc6eebe6820
-
SHA1
15edb4268660c8d87c77924a232db543bdf7c001
-
SHA256
98a5e9a69989c9e263ef87dc0b19894f5a89e9a22deb0a318c2d800c9739593f
-
SHA512
f843c34af00120e2fb3d6028f015f38f6e4b72a22400c307a3ca824280f364c2460d68072572875ad3fc137d267b71058e4047de0d186f0eabebf4fb213f1c61
-
SSDEEP
393216:Gx63JcSM6uJbRWQKAHkCcS8ZrrhmGrIKrKuwZfmZie29nNCHkUKX:Q6ZcSM9WQjHreFmGrbutxmw8Hq
Score
4/10
Malware Config
Signatures
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
Files
-
Серия памяток OWASP_bundle.zip
-
site/404.html
-
site/Glossary.html
-
site/IndexASVS.html
-
site/IndexMASVS.html
-
site/IndexProactiveControls.html
-
site/IndexTopTen.html
-
site/News.xml
-
site/assets/Abuse_Case_Cheat_Sheet_Overview.png
-
site/assets/Abuse_Case_Cheat_Sheet_SchemaBundle.zip
-
Abuse_Case_Cheat_Sheet_SchemaBundle/ABUSE_CASE_CS_CHAINING_SCHEMA.xml
-
site/assets/Authorization_Testing_Automation_AutomationRendering.png
-
site/assets/Bean_Validation_Cheat_Sheet_JSR.png
-
site/assets/Bean_Validation_Cheat_Sheet_Typical.png
-
site/assets/C-Based_Toolchain_Hardening_AdditionalPlatformLibraryMacrosTable.png
-
site/assets/C-Based_Toolchain_Hardening_GCCCPPWarningOptionsTable.png
-
site/assets/C-Based_Toolchain_Hardening_GCCCWarningOptionsTable.png
-
site/assets/C-Based_Toolchain_Hardening_GCCObjectiveCWarningOptionsTable.png
-
site/assets/C-Based_Toolchain_Hardening_VStudioWarningOptionsTable.png
-
site/assets/C-Based_Toolchain_Hardening_Windows1.png
-
site/assets/C-Based_Toolchain_Hardening_Windows2.png
-
site/assets/C-Based_Toolchain_Hardening_XCode1.png
-
site/assets/C-Based_Toolchain_Hardening_XCode2.png
-
site/assets/Clickjacking_Defense_Cheat_Sheet_NestedFrames.png
-
site/assets/Dec_pattern_HLD.png
-
site/assets/Denial_of_Service_Cheat_Sheet_FlowDDOS.png
-
site/assets/Deserialization_Cheat_Sheet_GOD16Deserialization.pdf
-
http://..ht
-
http://comp.compare
-
http://exploit.new
-
http://java.io
-
http://objectIn.read
-
http://ois.read
-
-
site/assets/Embed_PDP_HLD.png
-
site/assets/Error_Handling_Cheat_Sheet_Overview.png
-
site/assets/Help_Nav.png
-
site/assets/ID_propogation.png
-
site/assets/Index_Bash.svg
-
site/assets/Index_C.svg
-
site/assets/Index_Coldfusion.svg
-
site/assets/Index_Cpp.svg
-
site/assets/Index_Csharp.svg
-
site/assets/Index_Html.svg
-
site/assets/Index_Java.svg
-
site/assets/Index_Javascript.svg
-
site/assets/Index_Json.svg
-
site/assets/Index_Perl.svg
-
site/assets/Index_Php.svg
-
site/assets/Index_Python.svg
-
site/assets/Index_Ruby.svg
-
site/assets/Index_Shell.svg
-
site/assets/Index_Sql.svg
-
site/assets/Index_Vbnet.svg
-
site/assets/Index_Xml.svg
-
site/assets/Kubernetes_Architecture.png
-
site/assets/Logging_Cheat_Sheet.drawio
-
site/assets/Logging_Cheat_Sheet.drawio.png
-
site/assets/NIST_ABAC.png
-
site/assets/Netflix_AC.png
-
site/assets/Netflix_ID_prop.png
-
site/assets/Network_Segmentation_Cheat_Sheet_BACKEND.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_BACKEND.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_FRONTEND.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_FRONTEND.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_MIDDLEWARE.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_MIDDLEWARE.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_Monitoring.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_Monitoring.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_Schematic_symbols.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_Schematic_symbols.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_TIER_Example.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_TIER_Example.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_firewall_1.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_firewall_1.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_firewall_2.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_firewall_2.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice_balancer.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice_balancer.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice_deny.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_interservice_deny.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_logs.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_logs.drawio.png
-
site/assets/Network_Segmentation_Cheat_Sheet_repo.drawio
-
site/assets/Network_Segmentation_Cheat_Sheet_repo.drawio.png
-
site/assets/OS_Command_Injection_Defense_Cheat_Sheet_CmdInjection.png
-
site/assets/OWASP_Logo.svg
-
site/assets/OWASP_Logo_Transp.png
-
site/assets/Password_Storage_Cheat_Sheet_Test_PBKDF2_Iterations.java
-
site/assets/Pinning_Cheat_Sheet_Certificate.png
-
site/assets/Pinning_Cheat_Sheet_Certificate_DotNetSample.zip
-
pubkey-pin-dotnet/pubkey-pin.sln
-
pubkey-pin-dotnet/pubkey-pin/Program.cs
-
pubkey-pin-dotnet/pubkey-pin/Properties/AssemblyInfo.cs
-
pubkey-pin-dotnet/pubkey-pin/Properties/app.manifest
-
pubkey-pin-dotnet/pubkey-pin/app.config
-
pubkey-pin-dotnet/pubkey-pin/pubkey-pin.csproj
-
site/assets/Pinning_Cheat_Sheet_Certificate_OpenSSLSample.zip
-
__MACOSX/._pubkey-pin-openssl
-
__MACOSX/pubkey-pin-openssl/._Makefile
-
__MACOSX/pubkey-pin-openssl/._pubkey-helper.c
-
__MACOSX/pubkey-pin-openssl/._pubkey-pin.c
-
__MACOSX/pubkey-pin-openssl/._pubkey-pin.h
-
__MACOSX/pubkey-pin-openssl/._random-org-chain.pem
-
__MACOSX/pubkey-pin-openssl/._random-org-old-1.der
-
__MACOSX/pubkey-pin-openssl/._random-org-old-2.der
-
pubkey-pin-openssl/Makefile
-
pubkey-pin-openssl/pubkey-helper.c
-
pubkey-pin-openssl/pubkey-pin.c
-
pubkey-pin-openssl/pubkey-pin.h
-
pubkey-pin-openssl/random-org-chain.pem
-
pubkey-pin-openssl/random-org-old-1.der
-
pubkey-pin-openssl/random-org-old-2.der
-
pubkey-pin-openssl/random-org.der
-
site/assets/Pinning_Cheat_Sheet_PublicKey.png
-
site/assets/Pinning_Cheat_Sheet_RandomOrgDERDump.png
-
site/assets/Preface_Cheatsheet_Header.png
-
site/assets/Preface_Cheatsheet_Logo.png
-
site/assets/README_FlagshipCombinedReviews.pdf
-
https://github.com/OWASP/CheatSheetSeries
-
https://www.owasp.org/index.php/OWASP_Cheat_Sheet_Series
-
-
site/assets/README_PluginWarningUI.png
-
site/assets/REST_Security_Cheat_Sheet_Bypassing_VBAAC_with_HTTP_Verb_Tampering.pdf
-
http://yourcompany.com/admin/admin.jsp?fn=deleteUser
-
-
site/assets/Secure_Cloud_Architecture_Shared_Responsibility_Model.png
-
site/assets/Secure_Cloud_Architecture_Trust_Boundaries_1.png
-
site/assets/Secure_Cloud_Architecture_Trust_Boundaries_2.png
-
site/assets/Secure_Cloud_Architecture_Trust_Boundaries_3.png
-
site/assets/Secure_Cloud_Architecture_Trust_Boundaries_4.png
-
site/assets/Secure_Cloud_Architecture_VPC.png
-
site/assets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet_Case1_NetworkLayer_PreventFlow.png
-
site/assets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet_Case1_NetworkLayer_PreventFlow.xml
-
site/assets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet_Orange_Tsai_Talk.pdf
-
http://...pl-PL5en-US.pl
-
http://.deen-USbass.deen-USbass.deen-USxnen-US--en-USbaen-US-en-UShia.de
-
http://.orange.tw/'en-US;
-
http://20orange.tw
-
http://2509en-USfoo.google.com
-
http://en-US...pl-PL5en-US.pl
-
http://en-US.pl
-
http://en-US.pl-PL0en-US.pl
-
http://en-US.pl-PLjen-US.pl-PL8en-US.pl-PL2en-US.........pl-PL0en-US...pl
- Show all
-
-
site/assets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet_SSRF_Bible.pdf
-
http://anyhostwithredirest.com/
-
http://d0znpp.blogspot.ru/2012/11/google-docs-spreadsheet-ssrf.html
-
http://d0znpp.blogspot.ru/2012/11/zeronights-hackquest-view-from-organizer.html
-
http://docs.couchdb.org/en/stable/api/server/common.html#replicate
-
http://docs.oracle.com/javase/1.5.0/docs/api/javax/print/attribute/standard/ReferenceUriSchemesSupported.html
-
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
-
http://en.wikipedia.org/wiki/URI_scheme
-
http://erpscan.com/press-center/smbrelay-bible-7-ssrf-java-windows-love/
-
http://erpscan.com/wp-content/uploads/2012/11/SSRF.2.0.poc_.pdf
- Show all
-
-
site/assets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet_SSRF_Common_Flow.png
-
site/assets/Session_Management_Cheat_Sheet_Diagram.png
-
site/assets/Signed_ID_propogation.png
-
site/assets/Single_PDP_HLD.png
-
site/assets/TLS_Cipher_String_Cheat_Sheet_CipherTable01.png
-
site/assets/TLS_Cipher_String_Cheat_Sheet_CipherTable02.png
-
site/assets/Threat_Modeling_Cheat_Sheet_dfd.png
-
site/assets/Token_validation.png
-
site/assets/WebSite_Favicon.ico
-
site/assets/WebSite_Favicon.png
-
site/assets/XS_Attack_Vector.png
-
site/assets/XS_Leaks_Cache_Attack.png
-
site/assets/XS_Leaks_Frame_Counting.png
-
site/assets/XS_Leaks_ID.png
-
site/assets/XS_Leaks_Sec_Fetch_Dest.png
-
site/assets/XS_Leaks_eTLD.png
-
site/assets/cost-of-breach-2020.png
-
site/assets/images/favicon.png
-
site/assets/javascripts/bundle.dff1b7c8.min.js
-
site/assets/javascripts/bundle.dff1b7c8.min.js.map
-
site/assets/javascripts/lunr/min/lunr.ar.min.js
-
site/assets/javascripts/lunr/min/lunr.da.min.js
-
site/assets/javascripts/lunr/min/lunr.de.min.js
-
site/assets/javascripts/lunr/min/lunr.du.min.js
-
site/assets/javascripts/lunr/min/lunr.es.min.js
-
site/assets/javascripts/lunr/min/lunr.fi.min.js
-
site/assets/javascripts/lunr/min/lunr.fr.min.js
-
site/assets/javascripts/lunr/min/lunr.he.min.js
-
site/assets/javascripts/lunr/min/lunr.hi.min.js
-
site/assets/javascripts/lunr/min/lunr.hu.min.js
-
site/assets/javascripts/lunr/min/lunr.hy.min.js
-
site/assets/javascripts/lunr/min/lunr.it.min.js
-
site/assets/javascripts/lunr/min/lunr.ja.min.js
-
site/assets/javascripts/lunr/min/lunr.jp.min.js
-
site/assets/javascripts/lunr/min/lunr.kn.min.js
-
site/assets/javascripts/lunr/min/lunr.ko.min.js
-
site/assets/javascripts/lunr/min/lunr.multi.min.js
-
site/assets/javascripts/lunr/min/lunr.nl.min.js
-
site/assets/javascripts/lunr/min/lunr.no.min.js
-
site/assets/javascripts/lunr/min/lunr.pt.min.js
-
site/assets/javascripts/lunr/min/lunr.ro.min.js
-
site/assets/javascripts/lunr/min/lunr.ru.min.js
-
site/assets/javascripts/lunr/min/lunr.sa.min.js
-
site/assets/javascripts/lunr/min/lunr.stemmer.support.min.js
-
site/assets/javascripts/lunr/min/lunr.sv.min.js
-
site/assets/javascripts/lunr/min/lunr.ta.min.js
-
site/assets/javascripts/lunr/min/lunr.te.min.js
-
site/assets/javascripts/lunr/min/lunr.th.min.js
-
site/assets/javascripts/lunr/min/lunr.tr.min.js
-
site/assets/javascripts/lunr/min/lunr.vi.min.js
-
site/assets/javascripts/lunr/min/lunr.zh.min.js
-
site/assets/javascripts/lunr/tinyseg.js
-
site/assets/javascripts/lunr/wordcut.js
-
site/assets/javascripts/workers/search.dfff1995.min.js
-
site/assets/javascripts/workers/search.dfff1995.min.js.map
-
site/assets/ms_logging_pattern.png
-
site/assets/stylesheets/main.30068a00.min.css
-
site/assets/stylesheets/main.30068a00.min.css.map
-
site/assets/stylesheets/palette.85d0ee34.min.css
-
site/assets/stylesheets/palette.85d0ee34.min.css.map
-
site/cheatsheets/AJAX_Security_Cheat_Sheet.html
-
site/cheatsheets/Abuse_Case_Cheat_Sheet.html
-
site/cheatsheets/Access_Control_Cheat_Sheet.html
-
site/cheatsheets/Attack_Surface_Analysis_Cheat_Sheet.html
-
site/cheatsheets/Authentication_Cheat_Sheet.html
-
site/cheatsheets/Authorization_Cheat_Sheet.html
-
site/cheatsheets/Authorization_Testing_Automation_Cheat_Sheet.html
-
site/cheatsheets/Bean_Validation_Cheat_Sheet.html
-
site/cheatsheets/C-Based_Toolchain_Hardening_Cheat_Sheet.html
-
site/cheatsheets/CI_CD_Security_Cheat_Sheet.html
-
site/cheatsheets/Choosing_and_Using_Security_Questions_Cheat_Sheet.html
-
site/cheatsheets/Clickjacking_Defense_Cheat_Sheet.html
-
site/cheatsheets/Content_Security_Policy_Cheat_Sheet.html
-
site/cheatsheets/Credential_Stuffing_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Cryptographic_Storage_Cheat_Sheet.html
-
site/cheatsheets/DOM_Clobbering_Prevention_Cheat_Sheet.html
-
site/cheatsheets/DOM_based_XSS_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Database_Security_Cheat_Sheet.html
-
site/cheatsheets/Denial_of_Service_Cheat_Sheet.html
-
site/cheatsheets/Deserialization_Cheat_Sheet.html
-
site/cheatsheets/Django_REST_Framework_Cheat_Sheet.html
-
site/cheatsheets/Django_Security_Cheat_Sheet.html
-
site/cheatsheets/Docker_Security_Cheat_Sheet.html
-
site/cheatsheets/DotNet_Security_Cheat_Sheet.html
-
site/cheatsheets/Error_Handling_Cheat_Sheet.html
-
site/cheatsheets/File_Upload_Cheat_Sheet.html
-
site/cheatsheets/Forgot_Password_Cheat_Sheet.html
-
site/cheatsheets/GraphQL_Cheat_Sheet.html
-
site/cheatsheets/HTML5_Security_Cheat_Sheet.html
-
site/cheatsheets/HTTP_Headers_Cheat_Sheet.html
-
site/cheatsheets/HTTP_Strict_Transport_Security_Cheat_Sheet.html
-
site/cheatsheets/Infrastructure_as_Code_Security_Cheat_Sheet.html
-
site/cheatsheets/Injection_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Injection_Prevention_in_Java_Cheat_Sheet.html
-
site/cheatsheets/Input_Validation_Cheat_Sheet.html
-
site/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.html
-
site/cheatsheets/JAAS_Cheat_Sheet.html
-
site/cheatsheets/JSON_Web_Token_for_Java_Cheat_Sheet.html
-
site/cheatsheets/Java_Security_Cheat_Sheet.html
-
site/cheatsheets/Key_Management_Cheat_Sheet.html
-
site/cheatsheets/Kubernetes_Security_Cheat_Sheet.html
-
site/cheatsheets/LDAP_Injection_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Laravel_Cheat_Sheet.html
-
site/cheatsheets/Legacy_Application_Management_Cheat_Sheet.html
-
site/cheatsheets/Logging_Cheat_Sheet.html
-
site/cheatsheets/Logging_Vocabulary_Cheat_Sheet.html
-
site/cheatsheets/Mass_Assignment_Cheat_Sheet.html
-
site/cheatsheets/Microservices_Security_Cheat_Sheet.html
-
site/cheatsheets/Microservices_based_Security_Arch_Doc_Cheat_Sheet.html
-
site/cheatsheets/Mobile_Application_Security_Cheat_Sheet.html
-
site/cheatsheets/Multifactor_Authentication_Cheat_Sheet.html
-
site/cheatsheets/NPM_Security_Cheat_Sheet.html
-
site/cheatsheets/Network_Segmentation_Cheat_Sheet.html
-
site/cheatsheets/NodeJS_Docker_Cheat_Sheet.html
-
site/cheatsheets/Nodejs_Security_Cheat_Sheet.html
-
site/cheatsheets/OAuth2_Cheat_Sheet.html
-
site/cheatsheets/OS_Command_Injection_Defense_Cheat_Sheet.html
-
site/cheatsheets/PHP_Configuration_Cheat_Sheet.html
-
site/cheatsheets/Password_Storage_Cheat_Sheet.html
-
site/cheatsheets/Pinning_Cheat_Sheet.html
-
site/cheatsheets/Prototype_Pollution_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Query_Parameterization_Cheat_Sheet.html
-
site/cheatsheets/REST_Assessment_Cheat_Sheet.html
-
site/cheatsheets/REST_Security_Cheat_Sheet.html
-
site/cheatsheets/Ruby_on_Rails_Cheat_Sheet.html
-
site/cheatsheets/SAML_Security_Cheat_Sheet.html
-
site/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Secrets_Management_Cheat_Sheet.html
-
site/cheatsheets/Secure_Cloud_Architecture_Cheat_Sheet.html
-
site/cheatsheets/Secure_Product_Design_Cheat_Sheet.html
-
site/cheatsheets/Securing_Cascading_Style_Sheets_Cheat_Sheet.html
-
site/cheatsheets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.html
-
site/cheatsheets/Session_Management_Cheat_Sheet.html
-
site/cheatsheets/Software_Supply_Chain_Security_Cheat_Sheet.html
-
site/cheatsheets/Symfony_Cheat_Sheet.html
-
site/cheatsheets/TLS_Cipher_String_Cheat_Sheet.html
-
site/cheatsheets/Third_Party_Javascript_Management_Cheat_Sheet.html
-
site/cheatsheets/Threat_Modeling_Cheat_Sheet.html
-
site/cheatsheets/Transaction_Authorization_Cheat_Sheet.html
-
site/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.html
-
site/cheatsheets/Transport_Layer_Security_Cheat_Sheet.html
-
site/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.html
-
site/cheatsheets/User_Privacy_Protection_Cheat_Sheet.html
-
site/cheatsheets/Virtual_Patching_Cheat_Sheet.html
-
site/cheatsheets/Vulnerability_Disclosure_Cheat_Sheet.html
-
site/cheatsheets/Vulnerable_Dependency_Management_Cheat_Sheet.html
-
site/cheatsheets/Web_Service_Security_Cheat_Sheet.html
-
site/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html
-
site/cheatsheets/XML_Security_Cheat_Sheet.html
-
site/cheatsheets/XSS_Filter_Evasion_Cheat_Sheet.html
-
site/cheatsheets/XS_Leaks_Cheat_Sheet.html
-
site/img/apple-touch-icon-precomposed-152.png
-
site/img/favicon.ico
-
site/index.html
-
site/search/search_index.json
-
site/sitemap.xml
-
site/sitemap.xml.gz