Comments on: China’s Cyber Warriors and nationalism http://www.thedarkvisitor.com/2008/08/chinas-cyber-warriors-and-nationalism/ Sat, 24 Dec 2011 19:52:10 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Heike http://www.thedarkvisitor.com/2008/08/chinas-cyber-warriors-and-nationalism/comment-page-1/#comment-890 Heike Sun, 24 Aug 2008 19:27:49 +0000 http://www.thedarkvisitor.com/?p=433#comment-890 Security4all, It may have just been down when you checked. I just tried Youtube and SBS Dateline videos, both were working. Security4all,

It may have just been down when you checked. I just tried Youtube and SBS Dateline videos, both were working.

]]> By: Security4all http://www.thedarkvisitor.com/2008/08/chinas-cyber-warriors-and-nationalism/comment-page-1/#comment-889 Security4all Sun, 24 Aug 2008 18:38:11 +0000 http://www.thedarkvisitor.com/?p=433#comment-889 We're sorry. This video is not available anymore? :-( We’re sorry. This video is not available anymore? :-(

]]> By: jumper http://www.thedarkvisitor.com/2008/08/chinas-cyber-warriors-and-nationalism/comment-page-1/#comment-861 jumper Fri, 22 Aug 2008 03:47:54 +0000 http://www.thedarkvisitor.com/?p=433#comment-861 <blockquote>"Yan Zhao was just one of several hundred Chinese hackers who launched an assault on the websites of CNN and Carrefour using a relatively simple technique of gaining entry through the system's weakest point known as the Webshell."</blockquote> I don't think that is an accurate description of what happened to CNN and Carrefour. Looking at the blurry picture it is difficult to tell. I downloaded a couple of different Chinese php webshells to test out and I can't find any that look just like the one in the video. They also don't let you manage multiple servers like the video implies. I have used webshells before but they just gave a text box for you to enter in commands to run. This is useful for when you hack a webserver but can't get a regular or reverse shell. There are some more recently developed webshells that give a lot more functionality such as file editing, upload, etc. Webshells are easy to use on servers that are vulnerable to remote file inclusion.

“Yan Zhao was just one of several hundred Chinese hackers who launched an assault on the websites of CNN and Carrefour using a relatively simple technique of gaining entry through the system’s weakest point known as the Webshell.”

I don’t think that is an accurate description of what happened to CNN and Carrefour.

Looking at the blurry picture it is difficult to tell. I downloaded a couple of different Chinese php webshells to test out and I can’t find any that look just like the one in the video. They also don’t let you manage multiple servers like the video implies.

I have used webshells before but they just gave a text box for you to enter in commands to run. This is useful for when you hack a webserver but can’t get a regular or reverse shell. There are some more recently developed webshells that give a lot more functionality such as file editing, upload, etc.

Webshells are easy to use on servers that are vulnerable to remote file inclusion.

]]> By: Dominic White http://www.thedarkvisitor.com/2008/08/chinas-cyber-warriors-and-nationalism/comment-page-1/#comment-852 Dominic White Thu, 21 Aug 2008 12:40:45 +0000 http://www.thedarkvisitor.com/?p=433#comment-852 Is the WebShell he refers to an ASP/JSP/PHP shell, or some kind of custom botnet controller? Is the WebShell he refers to an ASP/JSP/PHP shell, or some kind of custom botnet controller?

]]>