Uploading Webshells is the most common attack vector used by hackers. If we can block Webshell uploads, we eliminate the greatest security threat.

The defense system provides multi-layered defenses against Webshell uploads:

1. Block online uploads

2. Scan for Webshells during upload

3. Prevent Webshell file storage

4. Scan for webshells during file storage

1. Block online uploads

After enabling this feature, all web-based file uploads will be blocked, including Webshells. We recommend enabling this setting if your website does not require online file submission functionality.

2. Scan for Webshells during upload

All data submitted to the server undergoes multi-stage malicious payload scanning (including web-based file uploads), achieving 99% detection efficacy against Webshell attacks.

3. Prevent Webshell file storage

Files uploaded online are typically stored in dedicated directories. If these directories are configured to prohibit the storage of dynamic script files (such as PHP, JSP, or ASP.NET), even if hackers upload a Webshell, it cannot be persisted. 

4. Scan for webshells during file storage.

The webshell protection module can detect and eliminate webshells in real-time.