Where do you keep your valuables, important documents, or credit cards? Is it really safe? Do you have the keys? Who else got the keys? Are you sure they’re all protected from all kinds of threats? With all the creative ideas of attackers, syndicates, bad guys nowadays, it is really difficult to be assured, protected and ensured. As a website owner, admin, or analyst, how can you protect your web applications from all kinds of threats? Let me give you a word of advice, there is no such thing as SECURE web site. There will always be a place, design, configuration that is vulnerable and without the right people, product and process, it is going to be tough.
With evolving threats and growing number of attackers, what are the steps you are taking to protect your web applications? Directory traversal attacks are one of the most common and frequent attacks lurking in the Internet since forever. So you might ask, how can you protect your web applications from them? Like I said, with the right people, product and process and Webranger has got them all for you.
So what is Directory Traversal and how can it harm your web application?
Directory Traversal or the “dot-dot-slash” is an attack targeting the root, configuration, admin files of your web server. It uses the “dot-dot-slash” to be able to access your confidential administrator-only files. If you are vulnerable, it is likely that attackers will be able to modify your permissions, access restricted files or worse take over the whole web application and more.
Now, how can you utilize Webranger to help protect your web applications against such? Here are three ways:
Directory traversals are easy to detect with the right tools. Webranger is equipped with up-to-date correlation directives that allow better and faster threat detection. Below is a sample payload of a directory traversal attack.
Another variation of a directory traversal attack is the use of percent encoding like “..%2Fweb.config.txt” instead of “../webconfig.txt”. Webranger can efficiently detect malicious attacks like these of course with the help of our Security Operations Center.
Securing a website should be corrective. Detection means nothing if you cannot correct a damage or stop an attack. Webranger’s WAF has a blocking system which allows a quick response to any kind of attack including directory traversal attacks whether by blocking a specific IP by 4 hours, 12 hours or permanently.
Security Experts Watching Over Your Site
We’ve got it all for you – security analysts’ expertise, 24×7 incident response and our WebRanger firewall. Because security should not be sleeping, we provide our security analysts’ expertise without end. Our analytics platform combined with the expertise of our security analysts and WAF completes the package for securing a web application. Preventive, corrective and detective.
Certainly, the first step in preventing directory traversal attacks is by checking and cleaning your user inputs before further processing it in the web server. Coding-wise, it is best to test it against the OWASP Top 10 to be sure that your web application is well protected. But like I said, web applications will get its best security with the right people, process and product. Know the needs of your web application, seek help from experts and get the first-rate security your web application needs.