ZmEu (vulnerability scanner)

ZmEu is a computer vulnerability scanner which searches for web servers that are open to attack through the phpMyAdmin program,[1] [2] [3] It also attempts to guess SSH passwords through brute-force methods,[4] and leaves a persistent backdoor. It was developed in Romania and was especially common in 2012.

It is apparently named after Zmeu, a dragon-like being in Romanian folklore.[5]

Log of a hacker running ZmEu on a webserver.

References
  1. "Archived copy". Archived from the original on August 30, 2014. Retrieved September 29, 2014.CS1 maint: archived copy as title (link)
  2. http://news.softpedia.com/news/Hacktivists-Turn-to-ZmEu-Scanning-Tool-to-Compromise-Websites-Fortinet-Finds-326827.shtml
  3. http://ensourced.wordpress.com/2011/02/25/zmeu-attacks-some-basic-forensic/
  4. https://code.google.com/p/caffsec-malware-analysis/wiki/ZmEu
  5. http://linux.m2osw.com/zmeu-attack
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.