#CVE-2021
#Log4Shell
Java application vulnerable to the CVE-2021-44228 (a.k.a log4shell) vulnerability
https://github.com/GroupePSA/log4shell-honeypot
@BlueRedTeam
#Log4Shell
Java application vulnerable to the CVE-2021-44228 (a.k.a log4shell) vulnerability
https://github.com/GroupePSA/log4shell-honeypot
@BlueRedTeam
#CVE-2021
#Log4j
The noscript \"Py3-detect-log4j-12.2021.py\" developed in Python 3 is responsible for detecting whether a list of URLs are vulnerable to CVE-2021-44228.
https://github.com/nx6110a5100/Py3-detect-log4j-12.2021
@BlueRedTeam
#Log4j
The noscript \"Py3-detect-log4j-12.2021.py\" developed in Python 3 is responsible for detecting whether a list of URLs are vulnerable to CVE-2021-44228.
https://github.com/nx6110a5100/Py3-detect-log4j-12.2021
@BlueRedTeam
#Blue_Team
Collection of PowerShell functinos and noscripts a Blue Teamer might use
https://github.com/tobor88/PowerShell-Blue-Team
@BlueRedTeam
Collection of PowerShell functinos and noscripts a Blue Teamer might use
https://github.com/tobor88/PowerShell-Blue-Team
@BlueRedTeam
GitHub
GitHub - tobor88/PowerShell-Blue-Team: Collection of PowerShell functinos and noscripts a Blue Teamer might use
Collection of PowerShell functinos and noscripts a Blue Teamer might use - tobor88/PowerShell-Blue-Team
#CVE-2021
#Log4Shell
Log4Shell (CVE-2021-44228) denoscription, exploitation and remediation
https://github.com/zane00/CVE-2021-44228
@BlueRedTeam
#Log4Shell
Log4Shell (CVE-2021-44228) denoscription, exploitation and remediation
https://github.com/zane00/CVE-2021-44228
@BlueRedTeam
GitHub
GitHub - zaneef/CVE-2021-44228: Log4Shell (CVE-2021-44228): Descrizione, Exploitation e Mitigazione
Log4Shell (CVE-2021-44228): Descrizione, Exploitation e Mitigazione - GitHub - zaneef/CVE-2021-44228: Log4Shell (CVE-2021-44228): Descrizione, Exploitation e Mitigazione
#CVE-2021
#Log4j
Provide patched version of Log4J against CVE-2021-44228 and CVE-2021-45046 as well as a noscript to manually patch it yourself
https://github.com/Aschen/log4j-patched
@BlueRedTeam
#Log4j
Provide patched version of Log4J against CVE-2021-44228 and CVE-2021-45046 as well as a noscript to manually patch it yourself
https://github.com/Aschen/log4j-patched
@BlueRedTeam
GitHub
GitHub - Aschen/log4j-patched: Provide patched version of Log4J against CVE-2021-44228 and CVE-2021-45046 as well as a noscript to…
Provide patched version of Log4J against CVE-2021-44228 and CVE-2021-45046 as well as a noscript to manually patch it yourself - Aschen/log4j-patched
#Red_Team
A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
https://github.com/swimlane/atomic-operator
@BlueRedTeam
A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
https://github.com/swimlane/atomic-operator
@BlueRedTeam
GitHub
GitHub - swimlane/atomic-operator: A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating…
A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments. - swimlane/atomic-operator
#CVE-2021
#Log4j
Docker images and k8s YAMLs for Log4j Vulnerability POC (Log4j (CVE-2021-44228 RCE Vulnerability)
https://github.com/ankur-katiyar/log4j-docker
@BlueRedTeam
#Log4j
Docker images and k8s YAMLs for Log4j Vulnerability POC (Log4j (CVE-2021-44228 RCE Vulnerability)
https://github.com/ankur-katiyar/log4j-docker
@BlueRedTeam
GitHub
GitHub - ankur-katiyar/log4j-docker: Docker images and k8s YAMLs for Log4j Vulnerability POC (Log4j (CVE-2021-44228 RCE Vulnerability)
Docker images and k8s YAMLs for Log4j Vulnerability POC (Log4j (CVE-2021-44228 RCE Vulnerability) - GitHub - ankur-katiyar/log4j-docker: Docker images and k8s YAMLs for Log4j Vulnerability POC (Log...
#CVE-2021
#log4j
This project will help to test the Log4j CVE-2021-44228 vulnerability.
https://github.com/immunityinc/Log4j-JNDIServer
@BlueRedTeam
#log4j
This project will help to test the Log4j CVE-2021-44228 vulnerability.
https://github.com/immunityinc/Log4j-JNDIServer
@BlueRedTeam
GitHub
GitHub - immunityinc/Log4j-JNDIServer: This project will help to test the Log4j CVE-2021-44228 vulnerability.
This project will help to test the Log4j CVE-2021-44228 vulnerability. - GitHub - immunityinc/Log4j-JNDIServer: This project will help to test the Log4j CVE-2021-44228 vulnerability.
#CVE-2021
#Log4Shell
Simple Spring Boot application vulnerable to CVE-2021-44228 (a.k.a log4shell)
https://github.com/guerzon/log4shell
@BlueRedTeam
#Log4Shell
Simple Spring Boot application vulnerable to CVE-2021-44228 (a.k.a log4shell)
https://github.com/guerzon/log4shell
@BlueRedTeam
#CVE-2021
#Log4j
A simple noscript to remove Log4J JndiLookup.class from jars in a given directory, to temporarily protect from CVE-2021-45046 and CVE-2021-44228.
https://github.com/lukepasek/log4jjndilookupremove
@BlueRedTeam
#Log4j
A simple noscript to remove Log4J JndiLookup.class from jars in a given directory, to temporarily protect from CVE-2021-45046 and CVE-2021-44228.
https://github.com/lukepasek/log4jjndilookupremove
@BlueRedTeam
GitHub
GitHub - lukepasek/log4jjndilookupremove: A simple noscript to remove Log4J JndiLookup.class from jars in a given directory, to temporarily…
A simple noscript to remove Log4J JndiLookup.class from jars in a given directory, to temporarily protect from CVE-2021-45046 and CVE-2021-44228. - GitHub - lukepasek/log4jjndilookupremove: A simple ...
#CVE-2021
#Log4j
A vulnerable device scanner for CVE-2021-44228 (Log4j)
https://github.com/sblmnl/Scan4j
@BlueRedTeam
#Log4j
A vulnerable device scanner for CVE-2021-44228 (Log4j)
https://github.com/sblmnl/Scan4j
@BlueRedTeam
#CVE-2021
#Log4j
can find, analyse and patch Log4J files because of CVE-2021-44228, CVE-2021-45046
https://github.com/DANSI/PowerShell-Log4J-Scanner
@BlueRedTeam
#Log4j
can find, analyse and patch Log4J files because of CVE-2021-44228, CVE-2021-45046
https://github.com/DANSI/PowerShell-Log4J-Scanner
@BlueRedTeam
GitHub
GitHub - DANSI/PowerShell-Log4J-Scanner: can find, analyse and patch Log4J files because of CVE-2021-44228, CVE-2021-45046
can find, analyse and patch Log4J files because of CVE-2021-44228, CVE-2021-45046 - DANSI/PowerShell-Log4J-Scanner
#CVE-2021
#Log4j
CVE-2021-4438 LOG4J - Remote excution
https://github.com/longnguyen-2k/log4j
@BlueRedTeam
#Log4j
CVE-2021-4438 LOG4J - Remote excution
https://github.com/longnguyen-2k/log4j
@BlueRedTeam
#Blue_Team
#Log4Shell
Nmap NSE noscripts to check against log4shell/LogJam vulnerabilities (CVE-2021-44228)
https://github.com/Diverto/nse-log4shell
@BlueRedTeam
#Log4Shell
Nmap NSE noscripts to check against log4shell/LogJam vulnerabilities (CVE-2021-44228)
https://github.com/Diverto/nse-log4shell
@BlueRedTeam
GitHub
GitHub - Diverto/nse-log4shell: Nmap NSE noscripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)
Nmap NSE noscripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228) - Diverto/nse-log4shell
#Red_Team
1. Price Manipulation Bypass Using Integer Overflow Method
https://marxchryz.medium.com/price-manipulation-bypass-using-integer-overflow-method-36ff23ebe91d
2. Bypassing Box’s Time-based One-Time Password MFA
https://www.varonis.com/blog/box-mfa-bypass-totp
@BlueRedTeam
1. Price Manipulation Bypass Using Integer Overflow Method
https://marxchryz.medium.com/price-manipulation-bypass-using-integer-overflow-method-36ff23ebe91d
2. Bypassing Box’s Time-based One-Time Password MFA
https://www.varonis.com/blog/box-mfa-bypass-totp
@BlueRedTeam
Medium
Price Manipulation Bypass Using Integer Overflow Method
Hello everyone, I am Marx Chryz and I do bug bounty hunting for about a year now. It’s also been two and a half years since I started doing…
#CVE-2021
#Log4j
Simple Python 3 noscript to detect the \"Log4j\" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading
https://github.com/kal1gh0st/MyLog4Shell
@BlueRedTeam
#Log4j
Simple Python 3 noscript to detect the \"Log4j\" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading
https://github.com/kal1gh0st/MyLog4Shell
@BlueRedTeam
GitHub
GitHub - kal1gh0st/MyLog4Shell: Simple Python 3 noscript to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a…
Simple Python 3 noscript to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading - GitHub - kal1gh0st/MyLog4Shell: Simple Python 3 s...
#Log4j
#CVE-2021
Log4j_dos_CVE-2021-45105
https://github.com/cckuailong/Log4j_dos_CVE-2021-45105
@BlueRedTeam
#CVE-2021
Log4j_dos_CVE-2021-45105
https://github.com/cckuailong/Log4j_dos_CVE-2021-45105
@BlueRedTeam
GitHub
GitHub - cckuailong/Log4j_dos_CVE-2021-45105: Log4j_dos_CVE-2021-45105
Log4j_dos_CVE-2021-45105. Contribute to cckuailong/Log4j_dos_CVE-2021-45105 development by creating an account on GitHub.
#exploit
1. Android: apps have VM_MAYWRITE access to shared zygote JIT mapping
https://bugs.chromium.org/p/project-zero/issues/detail?id=2227
2. CVE-2021-45105:
Log4j2 DOS
https://github.com/cckuailong/Log4j_dos_CVE-2021-45105
@BlueRedTeam
1. Android: apps have VM_MAYWRITE access to shared zygote JIT mapping
https://bugs.chromium.org/p/project-zero/issues/detail?id=2227
2. CVE-2021-45105:
Log4j2 DOS
https://github.com/cckuailong/Log4j_dos_CVE-2021-45105
@BlueRedTeam
GitHub
GitHub - cckuailong/Log4j_dos_CVE-2021-45105: Log4j_dos_CVE-2021-45105
Log4j_dos_CVE-2021-45105. Contribute to cckuailong/Log4j_dos_CVE-2021-45105 development by creating an account on GitHub.