It is possible to make Server respond with irrelevant data if it is scanned with Nmap? If yes, are there any examples of such SW?
I’m looking for a WordPress plugin which automatically and permanently blocks IP addresses which attempt to access the URLs of known vulnerabilities. In other words, I want to treat known vulnerability addresses like honeypots.
I get hundreds of 404 errors every day from vulnerability scanners, and it seems trivial for a security plugin to identify them by their 404 access attempts.
Examples of 404s that are obviously the result of vulnerability scanning:
It would be great if it can automatically populate the list of known vulnerable addresses, but if such a program doesn’t exist, I would be open to hearing about plugins which require manually entering a list of URLs. It wouldn’t be too hard to make myself from my 404 logs.
I have a machine which does not have Google chrome installed but when i try to scan it using Nexpose and Retina, all the Chrome related vulnerabilities are listed in the report and it shows it as vulnerable. did anyone else faced this issue? am i missing anything here?