Hyper Text Transfer Protocol (HTTP): 80

Security Weaknesses:

  • Unencrypted communication allows for eavesdropping and interception.

  • Vulnerable to session hijacking, cross-site scripting (XSS), and SQL injection.

  • Susceptible to man-in-the-middle (MITM) attacks.

Security Defense and Mitigation Measures:

  • Transition to HTTPS with valid TLS certificates.

  • Implement secure coding practices to avoid XSS and SQL injection.

  • Use Web Application Firewalls (WAFs) to detect and block attacks.

Indicators of Compromise or Attack:

  • Suspicious traffic patterns or unexpected payloads.

  • Unusual error messages or anomalies in web server logs.

  • Increased latency in HTTP requests.

PreviousDynamic Host Configuration Protocol (DHCP): 67, 68NextHTTP over SSL/TLS (HTTPS): 443

Last updated