Forum Discussion

kargyrides_1348's avatar
kargyrides_1348
Icon for Nimbostratus rankNimbostratus
Oct 02, 2013

F5 BIP-IP ASM - Backdoor Detection Capabilities

Hi, Could anyone let me know if the F5 BIP-IP ASM provides advanced capabilities for Web backdoor detection (i.e. php shells) ? If the answer is "Yes" I would appreciate it if your could describe such specific capabilities.

 

Thanks in advance, kargyrides

 

3 Replies

  • Yes. The ASM contains several different attack signatures for web backdoor detection. In fact, I did a quick search for attack signatures related to "php shell" specifically and found several. I attached a screenshot to give you an idea.

     

    Do you have the ASM provisioned on your BIG-IP? If so, you can check out all the attack signatures that will protect against web backdoors.

     

    Let me know if you need anything else!

     

    Thanks, John

     

  • Hi John, Thank you very much for answering my question. I have already made a research and found that F5 BIG-IP ASM comes with system-supplied attack signatures that are specific to Trojan/Backdoor/Spyware detection. However, since I do not have access on a BIG-IP ASM system, I cannot get further information regarding the available web backdoor signatures. I would appreciate it if you could send me the screenshot showing some of these signatures.

     

    Thanks, K.Argyrides