Redirect what you want

Today in the evening I met with an old client of mine and we talked about a simple way to defense web application against script kiddies: Just using mod_rewrite with HTTP_USER_AGENT. Fortunatly, Anant Shrivastava published a nice list already.

Of course this way you can’t fool a professional pentester but for the rest it seems an option. I don’t know how long it will take for the script kiddies to find out what’s going on but then BeEF could come into play…

This entry was posted in Security. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.