JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v...

In the past, threat actors have used BazarLoader to deploy Ryuk and Conti ransomware, as reported on many occasions. In this intrusion, however, a BazarLoader infection resulted in deployment of Di…

Log4J is an open-source logging platform running on Java and built-in to many web platforms. Reports of exploitation started on December 9th.

Contribute to zsolt-halo/Log4J-Log4Shell-CVE-2021-44228-Spring-Boot-Test-Service development by creating an account on GitHub.

Test driving the Log4Shell vulnerability with various versions of Java and observing the network egress connections

.Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Scanner & Exploit noPac - GitHub - ricardojba/Invoke-noPac: .Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Sca...

Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries. - GitHub - cyberstruggle/L4sh: Log4Shell RCE Exploit - fully independent exploit does not require any 3rd ...

Recently, a critical zero-day vulnerability was discovered in Apache Log4j, a Java logging tool. Here's why this vulnerability is particularly dangerous.

This is the third installment in my three-part series of articles on fuzzing Microsoft’s RDP client, where I explain a bug I found by fuzzing the smart card extension.

Contribute to kmanc/remote_code_oxidation development by creating an account on GitHub.

Posted in r/netsec by u/Tear-Sensitive • 1 point and 1 comment

Yara rules to look for Log4J usage. Contribute to timb-machine/log4j development by creating an account on GitHub.

IPs exploiting the log4j2 CVE-2021-44228 detected by the crowdsec community - log4j_exploitation_attempts_crowdsec.md

CVE® is a list of records — each containing an identification number, a denoscription, and at least one public reference — for publicly known cybersecurity vulnerabilities. The mission of the CVE Program is to identify, define, and catalog publicly disclosed…

A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) attacks. - GitHub - mufeedvh/log4jail: A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) atta...

A quick update on the situation now that a new log4j CVE has been created and patched in 2.16.0. We've done research and these are our findings.

Cutting-edge cyber security research from NCC Group. Find public reports, technical advisories, analyses, & other novel insights from our global experts.

Remember the Equifax breach that happened 4 years ago, caused by an Apache Struts vulnerability (CVE-2017-5638)? I argue that it's quite similar in nature to the new log4j vulnerability, and moreover - it will happen again, in a different project.