A useful tool to analyse IIS logilfes is Log Parser, a versatile tool that provides universal query access to text-based data such as log files. Below are a few examples of Log Parser commands. Number of hits by an IP address, sorted by number of hits, descending. Number of hits by an IP address, sorted by number … Continue reading Analyzing web server (IIS) logfiles with logparser
Category: Web Server
Secure IIS Web Server & disable weak ciphers
Even if your website is running under HTTPS, you have to also secure SSL/TLS configuration and monitor news about new vulnerabilities and attacks, regarding SSL/TLS ,like: POODLE FREAK BEAST etc. In order to disable weak ciphers in Windows and secure iis web server, you have to do it through Group Policy Object Editor: 1. run … Continue reading Secure IIS Web Server & disable weak ciphers
Disable SSL 3.0 in Windows 2008 R2 IIS 7.5
A vulnerability in the SSL 3.0 protocol has been identified CVE-2014-3566 All Clients / Servers are advised to disable SSL 3.0. more technical info here