I’m stuck on this question
What was the initial payload submitted by the threat actor to exploit weakness of the web server?
This suposed to be on access.log no?
I’m stuck on this question
What was the initial payload submitted by the threat actor to exploit weakness of the web server?
This suposed to be on access.log no?
it’s error.log
Anyone have any tips for Task 8 and 13? I can only see one account ID
Trace the IP and filter out the error message; you might end up resolving task 8.