Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Altocumulus rank

Altocumulus

Apr 10, 2019

How ASM can mitigate the web shell attacks?

I have found this doc https://devcentral.f5.com/articles/webshells

This is useful understanding how these attacks work, but not clear about how we exactly mitigate or if ASM need to be configured to achieve this mitigation.

Please suggests.

1 Reply

boneyard
MVP
Apr 13, 2019
that would be taken care of by the signature sets. these shells execute cat or ls or ... to look into passwd or other things. that is something attack signatures can detect very well.

but to be honest if you think there are web shells on your servers you might want to look into that first and get that solved.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5