Drupal attacks TL;DR: Drupalgeddon-class deserialisation, REST API abuse, module CVEs, Twig SSTI. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References TODO