pimps/JNDI-Exploit-Kit: added support to LDAP Serialized Payloads and attack path works in *ANY* java version Security News & Discussion |
- pimps/JNDI-Exploit-Kit: added support to LDAP Serialized Payloads and attack path works in *ANY* java version
- Test driving the Log4Shell log4j vulnerability with various versions of Java and observing the network egress connections (tl;dr Java 8u191 onwards is less bad)
- log4hshell - Quick Guide
- Driver-Based Attacks: Past and Present
- Diavol Ransomware
- Guide: How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228)
- Log4Shell: Reconnaissance and post exploitation network detection
- (Log4Shell / Log4J) CVE-2021-44228 dummy Spring Boot target docker image
- Analysis of Initial In The Wild Attacks Exploiting Log4Shell/Log4J/CVE-2021-44228
| Posted: 13 Dec 2021 04:54 AM PST |
| Posted: 13 Dec 2021 09:26 AM PST |
| Posted: 13 Dec 2021 01:36 AM PST |
| Driver-Based Attacks: Past and Present Posted: 13 Dec 2021 06:30 AM PST |
| Posted: 13 Dec 2021 04:44 AM PST |
| Guide: How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228) Posted: 13 Dec 2021 02:29 AM PST |
| Log4Shell: Reconnaissance and post exploitation network detection Posted: 12 Dec 2021 11:40 PM PST |
| (Log4Shell / Log4J) CVE-2021-44228 dummy Spring Boot target docker image Posted: 13 Dec 2021 05:43 AM PST |
| Analysis of Initial In The Wild Attacks Exploiting Log4Shell/Log4J/CVE-2021-44228 Posted: 13 Dec 2021 04:21 AM PST |
| You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States | |
No comments:
Post a Comment