“ZIP bombs”” are nested ZIP archives that when unzipped are decompressed to huge files that the victim’s computer cannot process in its memory or store on disk. Webmasters can use so-called ZIP bombs to crash a hacker’s vulnerability and port scanner and prevent him from gaining access to their website. Austrian tech expert Christian Haschek has put together two PHP scripts that will scan for particular user-agent strings and deliver ZIP bombs. Once their clients receive the ZIP bomb
Source: security