I like to take phishing sites and navigate up and down the folder hiearchy looking for interesting files
This one was interesting cause it was an open directory with like 200+ other site's wordpress configs? ( wp-config.php )
hxxp://guncelhaber[.]site/BT/
Wonder if those are the attacker's other sites? Or if they are configs that the attacker has stolen/compromised?
No comments:
Post a Comment