5 matches found
CVE-2020-8982
creationtimestamp| type| source ---|---|--- 2025-12-23 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-12-23 2025-12-25 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-12-25 2025-12-26 00:00:00+00:00| exploited| The...
Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware
PoC exploit for CVE-2019-19781, a vulnerability in Citrix Application Delivery Controller ADC and Gateway. The repository, CitrixHoneypot, is a honeypot designed to detect and log scan and exploitation attempts for this vulnerability. The tool is written in Python and uses the http.server module ...
Romanian Crypto Mining Infection
While examining my honeypot logs and digging through the newly downloaded binaries last week, I noticed a large compressed file. I figured it would be a crypto miner, typically a tar archive and gzip normally erroneously compressed. I moved the archive over to my test lab and started examining th...
Another Golang Crypto Miner On the Loose
There are many crypto mining malware variants infecting systems on the internet. On Friday, March 4, 2021, I noticed an interesting hit in my honeypot logs. The binary it captured stood out, as it was rather large at 4MB. I immediately thought it would be a crypto miner written in the Go language...
[0day] AIT CSV Import / Export <= 3.0.3 - Unauthenticated Arbitrary File Upload
The WPScan research team discovered an active exploitation attempt against a 0day vulnerability within the premium AIT CSV Import / Export WordPress plugin within our honeypot logs. The honeypot log showed a GET request to the following file:...