Possible sensitive directories

Description

Possible sensitive directories could allow an attacker to see and travel through folders and files of the system, any sensitive resources should be access-controlled, and should not be accessible by an unauthorized party.

Bussines Impact

An attacker could guess the location of sensitive directories using automated tools and access those directories, this can lead to data exposure which can cause further damage.

Recommendation

Make sure to block access to this directory and hide the record of the files inside it.

Reference

https://cwe.mitre.org/data/definitions/548.html

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »