Domain: hackertarget.com
Stories and comments across the archive that link to hackertarget.com.
Comments · 10
-
Re:nmap rock
For those who don't know `nmap` it's convenient and easy to use.
-
While only ~1% of top websites are IPv6 capable
I did this analysis of the Alexa Top 1 million before World IPv6 day.
* 1.1% of sites in the top 1 million had AAAA records
* Only 4 of the top 50 tech companies websites were IPv6 capable
http://hackertarget.com/ipv6-in-top-sites-infographic/
Post World IPv6 day version to be released soon. -
IPv6 Infographic - usage in Top 1 Million Sites
I did this analysis back in March, here is a quick summary of sites found with AAAA records:
* 1% of total sites
* ~5% of sites in Germany and Russia
* 0.38% of sites in the USA
* 90% of sites are running Apache or Nginx
* 4% of sites are running IIS
In July, I am planning on a follow-up to see if there is any major change in the numbers.
http://hackertarget.com/ipv6-in-top-sites-infographic/ -
Still only 1% of top million websites are IPv6 rdy
Recent analysis of the Top 1 Million websites: http://hackertarget.com/ipv6-in-top-sites-infographic/
The analysis will be repeated after world ipv6 day (http://www.worldipv6day.org/) to determine if there is any significant increase. I am not hopeful. -
Online Port Scanner Updated
Great work to Fyodor and the dev team. Another quality release. The new NSE scripts are great, as is the speed improvements.
For those who have not used ncat - I urge you to check it out. With the portable windows version, you can drop this on a box and build encrypted tunnels. You can bring up a HTTP proxy in the time it takes you to type "ncat --proxy-type http -l 127.0.0.1 9090" It is a very handy little tool. When it comes to features ncat blows nc away.
Now to plug my service.
Online port scanner that uses Nmap, now updated to version 6.0. Allows port scanning of IPv4 and IPv6 addresses. -
Alexa Top 1 Million Survey
Interestingly in February 2011 I did a survey of the Alexa Top 1 Million sites. The idea here was as opposed to the large sample that Netcraft uses I focused on the more established web sites.
Alexa Top 1 Million (February 2011)
IIS :: 17.9%
Nginx :: 7.9%
Apache :: 69%
Web Server Survey Summary February 2011
Web Technology Report February 2011
A new report will be prepared in the next few weeks, it will be good to see if Nginx has indeed gathered a larger chunk of the established sites. -
Alexa Top 1 Million Survey
Interestingly in February 2011 I did a survey of the Alexa Top 1 Million sites. The idea here was as opposed to the large sample that Netcraft uses I focused on the more established web sites.
Alexa Top 1 Million (February 2011)
IIS :: 17.9%
Nginx :: 7.9%
Apache :: 69%
Web Server Survey Summary February 2011
Web Technology Report February 2011
A new report will be prepared in the next few weeks, it will be good to see if Nginx has indeed gathered a larger chunk of the established sites. -
SSH bots by City
This page has a visualized correlation of ssh blacklisted IP's against Cities. It is updated daily. Source is the sshbl.org blacklist.
Current daily winners are Moscow and San Francisco with 17 each.
http://hackertarget.com/ssh-blacklist/ -
Brute Force ssh attacks from Amazon
"This marks the first time Amazon Web Services' cloud infrastructure has been used for this type of illegal activity"
I posted to my blog back in June that Amazon cloud nodes were compromised and performing brute force SSH scans against some of my hosts.
This story and my post merely highlight the obvious fact that most cloud services are just scalable hosting. Remember your instance / slice / vm can be compromised like any other web host.
Amazon Cloud Service Brute Force Attacks -
It is significantly faster
I have just added the latest version to HackerTarget.com.
Across the board I am seeing significant speed improvements over 4.85.
Congratulations to the developers this looks like another quality release. I am looking forward to testing some of the new features to determine what additional capabilities can be added to our online scanning.
* Full disclosure - I run HackerTarget.com *