I’ve been hacked. Evil aspx file uploaded called AspxSpy. They’re still trying. Help me trap them‼

by

If you running asp.net and only as you tagged, then you only need to add this web.config on the root directory that your users upload files. With that web.config you do not allow anyone to run aspx pages on this directory tree.

The web.config on the protected must only contains:

<configuration>
    <system.web>
      <authorization>
        <deny users="*" />
      </authorization>
    </system.web>
</configuration>

With this web.config your program can still read and write images and other files on this directory, but can not run aspx and other running asp.net extensions.

Check the file extension upload

Of course you must check for all the knowing running files extensions on uploading and on rename, including but not limited to .exe .php .aspx .com .asp .ashx
This is I believe the first that some must do, but to be sure that not found any other way to run something unknown is the web.config and the limited to dot.net only.

For the password you ask

just comment/remove all this lines on http://jsbin.com/uhoye3/edit#html and you see it running, because on this point is check the password and return false if fail. If you let it continue you cancel the password part.

if (Request.Cookies[vbhLn].Value != Password)
    {
    tZSx();
    return false;
    }

More Related Contents:

  1. Cannot open database “test” requested by the login. The login failed. Login failed for user ‘xyz\ASPNET’
  2. How to force HTTPS using a web.config file
  3. An ASP.NET setting has been detected that does not apply in Integrated managed pipeline mode
  4. The breakpoint will not currently be hit. No symbols have been loaded for this document in a Silverlight application
  5. Why is HttpContext.Current null?
  6. Changing project port number in Visual Studio 2013
  7. How to implement “Access-Control-Allow-Origin” header in asp.net
  8. How to get current user who’s accessing an ASP.NET application?
  9. Can you prevent your ASP.NET application from shutting down?
  10. Check ssl protocol, cipher & other properties in an asp.net mvc 4 application
  11. How can I secure passwords stored inside web.config?
  12. Share Session between two web sites using asp.net and state server
  13. IIS app pool recycle + quartz scheduling
  14. Leverage browser caching in IIS (google pagespeed issue)
  15. create local user account
  16. Handler “ExtensionlessUrlHandler-Integrated-4.0” has a bad module “ManagedPipelineHandler” in its module list
  17. Error 500.19 with 0x8007000d when running ASP.NET Core app in IIS despite AspNetCoreModule being installed
  18. Could not load file or assembly ‘System.Web.Helpers, error on IIS 8
  19. Can I reuse HttpWebRequest without disconnecting from the server?
  20. Get MIME type from filename extension
  21. Passing data between different controller action methods
  22. OnclientClick and OnClick is not working at the same time?
  23. Advantages of Cache vs Session
  24. The client and server cannot communicate, because they do not possess a common algorithm – ASP.NET C# IIS TLS 1.0 / 1.1 / 1.2 – Win32Exception
  25. Do I need a Global.asax.cs file at all if I’m using an OWIN Startup.cs class and move all configuration there?
  26. What is the best way to determine a session variable is null or empty in C#?
  27. ASP.NET Is there a better way to find controls that are within other controls?
  28. Check if Cookie Exists
  29. unable to evaluate expression whilst debugging
  30. How to get hold of Content that is already read

Leave a Comment