Server
Under Construction
Overview
-
Definition
A server is an application listening on an IP address and port combination (also known as a socket) that serves clients connecting to it. Servers run on hosts, which might be physical devices, virtual machines, or containers.
-
Usecase
Threat actors deploy servers to host various parts of their infrastructure, such as phishing websites, repositories from which victim devices download malicious payloads, C&C servers to which malware connects for recieving commands, storage for exfiltrated data, and proxies for routing malicious traffic.
-
Example
[...]
- Pivot Map
flowchart LR classDef secondary stroke-dasharray: 5 5 %% define nodes IP_ADDRESS(IP Address) SERVER(Server) SERVER_(Server):::secondary TLS_CERT(TLS Certificate) SAMPLE(Sample) %% define edges IP_ADDRESS -- hosts --> SERVER SERVER <-- fingerprint --> SERVER_ SERVER <-- banner --> SERVER_ SERVER <-- favicon --> SERVER_ SERVER <-- content --> SERVER_ SERVER <-- URL path --> SERVER_ SERVER <-- port --> SERVER_ SERVER -- stores --> SAMPLE TLS_CERT -- served by--> SERVER SAMPLE -- communicates --> SERVER SAMPLE -- references --> SERVER
Pivots
TLS Certificates
Certificates served by it
Try it out
TO DO
TO DO
TO DO
TO DO
Servers
Servers with the same banner
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same JA4+ fingerprint
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same JARM fingerprint
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same HHHash fingerprint
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same response banner
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same favicon
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with similar content or appearance
Try it out
TO DO
TO DO
TO DO
TO DO
Servers with the same URL path
Try it out
TO DO
TO DO
Servers with the same visual appearance
Try it out
TO DO
TO DO
Samples
Samples that reference it in their code
Try it out
TO DO
TO DO
Samples that communicate with it at runtime
Try it out
TO DO
TO DO
Samples that it stores
Try it out
TO DO
TO DO