Plans for Http_Analyzer

Open szepeviktor opened this issue 9 years ago • 0 comments

[ ] How to restrict AJAX content type?
[ ] Block CDN attacks by what method?
[ ] order of headers to identify attackers
[ ] check POST: no more, no less variables a:5:{s:11:"redirect_to";s:28:"http://domain.com/wp-admin/";s:10:"testcookie"; s:1:"1";s:3:"log";s:5:"admin";s:3:"pwd";s:6:"123456";s:9:"wp-submit";s:6:"Log In";}
[ ] wp-login POST: login, postpass, resetpass, lostpassword, register
[ ] wp-login GET: logout, rp, lostpassword
[ ] non-login wp-login POST-s: comment, trackback, pingback, XML-RPC, WP-API, plugin POST-s

Dec 03 '16 23:12 szepeviktor