Bots and users beware, Google’s reCAPTCHA goes invisible

When CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart)  first came out I think we can all agree that it was a giant pain in the ass but some times it was comical.

About 9 years ago (who knew it was older than the original iPhone?), reCAPTCHA was released and got ride of the puzzle solving by simplifying the process to a check box.

Continue reading Bots and users beware, Google’s reCAPTCHA goes invisible

Counter-strike Mirai with F5 iRules

David Holmes from F5 is back with one bad-ass iRule to combat Mirai. After reviewing the source code for Mirai and a post by Scott Tenaglia David put together an iRule to cause Mirai to do a bad memory move and crash. Check out his post here:

https://devcentral.f5.com/articles/mirai-strikeback-an-irule-to-kill-iot-bot-processes-from-your-f5-22644

Lastly, the iRule in question:

when RULE_INIT {
        set static::mseconds 10000
        set static::maxdupreq 10
    }
    when CLIENT_ACCEPTED {
        set dup_req 0
        set last_req ""
    }
    when HTTP_REQUEST { 
        if { $last_req equals "" } {
            set last_req [HTTP::uri]
            set dup_req 0
        }
        elseif { $last_req == [HTTP::uri] } {
            incr dup_req
            after $static::mseconds { if {$dup_req > 0} {incr dup_req -1} } 
            if { $dup_req > $static::maxdupreq } {
                log "Killing suspected Mirai at [IP::client_addr]"
                TCP::respond "HTTP/1.0\r\n200 OK\r\nLocation: http\r\n\r\n"
                TCP::close
            }
        }
        else {
            set dup_req 0
        }
    }

Best Regards,

BD