![]() Proof-of-concepts rather than advisories, making it a valuable resource for those who need The Exploit Database is a repository for exploits and Lists, as well as other public sources, and present them in a freely-available andĮasy-to-navigate database. The most comprehensive collection of exploits gathered through direct submissions, mailing Non-profit project that is provided as a public service by Offensive Security.Ĭompliant archive of public exploits and corresponding vulnerable software,ĭeveloped for use by penetration testers and vulnerability researchers. That provides various Information Security Certifications as well as high end penetration testing services. The Exploit Database is maintained by Offensive Security, an information security training company Furthermore, it should be noted that web servers on multi-user Windows operating systems generally run with SYSTEM privileges. It is not known whether the Linux version is also affected by this vulnerability. This issue was reported for Abyss Web Server for Microsoft Windows operating systems. Another known issue regarding plaintext storage of the administrative password is described in BugTraq ID 4467 "Abyss Web Server Plaintext Administrative Password Vulnerability". This issue may be exploited by a remote attacker to gain access to the administrative configuration file for the web server. It is possible for a remote attacker to disclose the contents of arbitrary web-readable files by making a specially crafted web request containing encoded dot-dot-slash (./) sequences. It is maintained by Aprelium Technologies and runs on Microsoft Windows operating systems, as well as Linux. Windows System Service, macOS Launch Daemon, and Linux daemon support (Automatic startup when the computer boots up).Abyss Web Server is a freely available personal web server. X-Sendfile support and restricted/token-based downloads. Server-wide, per file, and per directory bandwidth control. Unicode and IDN (International Domain Names) support.Īutomatic anti-hacking system and an anti-leeching system to control cross-site linking. ![]() Multilingual remote web configuration interface (console). ![]() Reverse proxy support with HTTP/1.1 compatibility and connection pooling. Reverse-proxying Web application engines such as Tomcat, Jetty, node.js, and ASP.NET Core (Kesterel).ĬGI, FastCGI, and ISAPI extensions support. Support for PHP, Perl, Python, "Classic" ASP, and almost any Web scripting language including the ability to run database (MySQL/MariaDB, PostgreSQL, Oracle, MS SQL Server, etc.) backed Web applications. Secure SSL/TLS connections (HTTPS), Dual hosts (HTTP+HTTPS), SNI support (Server Name Indication - allows virtual hosting of several HTTPS sites on a single IP address), and a comprehensible SSL/TLS certificates management interface.Īutomated request, installation, and renewal of free certificates from ACME-compliant certification authorities such as Let's Encrypt®. ![]() Virtual hosting (support for many hosts on a single computer). It also features an automatic antihacking system as well as a multilingual remote web management interface that makes its configuration as easy as browsing a web site. Despite its small footprint, it supports HTTP/1.1, secure SSL/TLS connections (HTTPS), automated provisioning and renewal of free certificates from Let's Encrypt® (ACME v2), IPv6, on-the-fly HTTP compression, dynamic content generation through CGI/FastCGI scripts, ISAPI extensions, native ASP.NET, HTTP/HTTPS/WebSocket reverse proxying, eXtended Side Includes (XSSI), custom error pages, password protection, IP address control, anti-leeching, bandwidth throttling, and log rotation. Abyss Web Server is a free compact web server available for Windows, macOS, and Linux operating systems. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |