Categories
Magento Security

How to Investigate vulnerabilities of a Magento Website (Greyhat hacking)

It is simple to find vulnerabilities and extract information for a magento instance / site. The developers are usually caught up in feature development instead of maintaining and securing the server. Many times the developers take on the role of system administrators and problems are only picked up after it is too late. Finding a […]

Categories
Magento

Finding Malicious Code on Magento

The first thing to do is check your site from an outside perspective, as any other black hatter would do. The Frontend scan Use Magescan: ./magescan scan:all <site> This scan will usually tell you what patches will be applied. First thing to do would be to patch them immediately. Next thing is to check if […]

Categories
Magento

Speeding up Magento Server Response a journey into High Performance

I have been working on quite a highly visited magento store by South African standards. The task is to improve the performance and response times inclusing the magento server response and page load of the site as that had never been a high priority. Furthermore lots of custom development and dare I say it magento […]