https://www.policytopackets.com/tags/command_injection/ Recent content in Command_Injection on Policy to Packets Hugo -- gohugo.io en reedveggleston@gmail.com (Reed Eggleston) reedveggleston@gmail.com (Reed Eggleston) © 2026 Reed Eggleston Mon, 23 Feb 2026 12:14:00 +0000 https://www.policytopackets.com/writeups/letsdefend/challenges/investigate_web_attack/ Mon, 23 Feb 2026 12:14:00 +0000 reedveggleston@gmail.com (Reed Eggleston) https://www.policytopackets.com/writeups/letsdefend/challenges/investigate_web_attack/ Analyzing raw Apache access logs with Bash tools to identify reconnaissance with Nikto, forced browsing, successful login brute force activity, and command injection leading to account creation on the target system. https://www.policytopackets.com/writeups/letsdefend/soc/168_118/ Sat, 21 Feb 2026 23:46:00 +0000 reedveggleston@gmail.com (Reed Eggleston) https://www.policytopackets.com/writeups/letsdefend/soc/168_118/ Investigating a command injection alert after POST requests containing system commands targeted a web endpoint, validating attacker IP reputation and analyzing HTTP response behavior, confirming successful command execution through response size variation, and initiating containment and escalation due to a confirmed web shell.