1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Whisker/Libwhisker Scan

Attack: Whisker/Libwhisker Scan

Severity: Medium

This attack could pose a moderate security threat. It does not require immediate action.

Description

This signature indicates the use of Whisker or tools using libwhisker for IDS evasion of HTTP attacks.

Additional Information

Whisker is a CGI-based application used to perform vulnerability assessments on webservers. Whisker can be used to determine potential security vulnerabilities or IDS evasion of HTTP attacks.

Affected

  • All Webservers

Response

Monitor whether or not the machine using this tool to scan the webserver is authorized to do so.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube