Hacker NewsHacker News
Humiliating IIS servers for fun and jail time
110 points by denysvitali 4 hours ago | 17 comments
naturalmovement 3 hours ago
I front all my honeypots with the IIS landing page precisely because it attracts black hat jagoffs.

Nothing makes me happier than knowing I've wasted hours of their time chasing their own tails.

reply
p1necone 2 hours ago
Why stop there? Front the honeypot with a real IIS server, build a matryoshka doll of honeypots and see how far people get.
reply
themafia 3 hours ago
Noise is a really underrated security layer.
reply
Lammy 2 hours ago
> IIS has a legacy behavior inherited from the old DOS 8.3 filename convention.

Is this exposing the underlying OS's behavior coupled with the fact that the IIS document root is `C:\Inetpub` by default? Eight-dot-three filenames are enabled by default on the C drive but disabled by default on all other drives on Windows 10/11:

  PS> (Get-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion').DisplayVersion
  24H2

  PS> fsutil 8dot3name query C:
  The volume state is: 0 (8dot3 name creation is ENABLED)
  The registry state is: 2 (Per volume setting - the default)
  Based on the above settings, 8dot3 name creation is ENABLED on "C:"

  PS> fsutil 8dot3name query U:
  The volume state is: 1 (8dot3 name creation is DISABLED)
  The registry state is: 2 (Per volume setting - the default)
  Based on the above settings, 8dot3 name creation is DISABLED on "U:"
reply
hstaab 3 hours ago
The tone of this is something else
reply
andai 57 minutes ago
Several times, I wondered if Claude wrote it.
reply
t1234s 52 minutes ago
Does anyone use IIS anymore?
reply
qingcharles 26 minutes ago
Yeah, I regularly speak to folks still running IIS on Windows Server. There are a lot of old apps out there, sadly. Some really, really important ones.
reply
mpyne 14 minutes ago
Tons of the Navy's public websites still run on it.
reply
vlan0 42 minutes ago
The entire solarwinds platform(barf)
reply
Group_B 2 hours ago
Would love to see a write yo on nginx!
reply
AuthAuth 3 hours ago
Ah webpage formatting cooked but otherwise a fun read
reply
sytelus 2 hours ago
This is extremely well done design (at least on full desktop browsers). Amazing content as well.
reply
mopsi 2 hours ago
"Amazing" is a little generous for script kiddie stuff from the early 2000s.

The author has yet to learn the extent to which civilization depends on people not being cunts to one another for no good reason.

reply
BalinKing 35 minutes ago
The lead says "how I approach IIS targets during bug bounty" (emphasis mine), so (assuming the author is being truthful) I'm guessing the tone of the title is just for fun.
reply
caspper69 2 hours ago
Ah yes, the lulz, the great American pastime.
reply
deadbabe 2 hours ago
Civilization has a way of dealing with these individuals: prison.
reply
cindyllm 2 hours ago
[dead]
reply