https://blog.viettelcybersecurity.com/deep-understand-aspx-file-handling-and-some-related-attack-vector/ (IIS file handling)
https://blog.orange.tw/2021/08/proxylogon-a-new-attack-surface-on-ms-exchange-part-1.html (Orange Tsai God Blog about IIS, talk about Exchange and IIS architecture)
https://github.com/orangetw/My-Presentation-Slides/blob/main/data/2021-The-Proxy-Era-Of-Microsoft-Exchange-Server.pdf
https://swarm.ptsecurity.com/attacking-ms-exchange-web-interfaces/
Last updated 2 years ago
Was this helpful?
