Humiliating IIS servers for fun and jail time(mll.sh)
110 pointsby denysvitali4 hours ago7 comments
  • naturalmovement3 hours ago
    I front all my honeypots with the IIS landing page precisely because it attracts black hat jagoffs.

    Nothing makes me happier than knowing I've wasted hours of their time chasing their own tails.

    • p1necone2 hours ago
      Why stop there? Front the honeypot with a real IIS server, build a matryoshka doll of honeypots and see how far people get.
    • themafia3 hours ago
      Noise is a really underrated security layer.
  • Lammyan hour ago
    > IIS has a legacy behavior inherited from the old DOS 8.3 filename convention.

    Is this exposing the underlying OS's behavior coupled with the fact that the IIS document root is `C:\Inetpub` by default? Eight-dot-three filenames are enabled by default on the C drive but disabled by default on all other drives on Windows 10/11:

      PS> (Get-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion').DisplayVersion
  24H2

  PS> fsutil 8dot3name query C:
  The volume state is: 0 (8dot3 name creation is ENABLED)
  The registry state is: 2 (Per volume setting - the default)
  Based on the above settings, 8dot3 name creation is ENABLED on "C:"

  PS> fsutil 8dot3name query U:
  The volume state is: 1 (8dot3 name creation is DISABLED)
  The registry state is: 2 (Per volume setting - the default)
  Based on the above settings, 8dot3 name creation is DISABLED on "U:"
  • hstaab2 hours ago
    The tone of this is something else
    • andaian hour ago
      Several times, I wondered if Claude wrote it.
  • t1234san hour ago
    Does anyone use IIS anymore?
    • qingcharles28 minutes ago
      Yeah, I regularly speak to folks still running IIS on Windows Server. There are a lot of old apps out there, sadly. Some really, really important ones.
    • mpyne16 minutes ago
      Tons of the Navy's public websites still run on it.
    • vlan044 minutes ago
      The entire solarwinds platform(barf)
  • Group_Ban hour ago
    Would love to see a write yo on nginx!
  • AuthAuth2 hours ago
    Ah webpage formatting cooked but otherwise a fun read
  • sytelus2 hours ago
    This is extremely well done design (at least on full desktop browsers). Amazing content as well.
    • mopsi2 hours ago
      "Amazing" is a little generous for script kiddie stuff from the early 2000s.

      The author has yet to learn the extent to which civilization depends on people not being cunts to one another for no good reason.

      • BalinKing37 minutes ago
        The lead says "how I approach IIS targets during bug bounty" (emphasis mine), so (assuming the author is being truthful) I'm guessing the tone of the title is just for fun.
      • caspper69an hour ago
        Ah yes, the lulz, the great American pastime.
      • deadbabean hour ago
        Civilization has a way of dealing with these individuals: prison.