RedPacket Security

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hostingenvironments - https://www.redpacketsecurity.com/cookie-controlled-php-webshells-a-stealthy-tradecraft-in-linux-hostingenvironments/

#threatintel
#webshell
#php
#linux-hosting
#persistence
#cron

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hostingenvironments - RedPacket Security

Threat actors are increasingly abusing HTTP cookies as a control channel for PHP-based webshells on Linux servers. Instead of exposing command execution

RedPacket Security
Apr 3 at 10:02amn8n