در ورژن 2.15 #log4j یک #CVE جدید کشف شد:))) این بار بجای #log4shell ما #log4dos داریم که روی تارگت میخوره :) باید به ورژن 2.16 آپدیت کنید یا #jndi رو کلا غیر فعال کنید. cve.org/CVERecord?id=C… zdnet.com/article/second… #hack #log4j #bugbounty #redteam #pentest…

Understand the impact of the zero-day remote code execution (RCE) vulnerability, CVE-2021-44228, affecting Apache Log4j to Operational Technology (OT) networks.

Posted by Ian Beer & Samuel Groß of Google Project Zero We want to thank Citizen Lab for sharing a sample of the FORCEDENTRY exploit with us, and...

Kaspersky products blocked PseudoManuscrypt on more than 35,000 computers in 195 countries of the world. Targets of attacks include a significant number of industrial and government organizations, including enterprises in the military-industrial complex and…

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter. - cube0x0/noPac

Bugbounty Resources. Contribute to aufzayed/bugbounty development by creating an account on GitHub.

Let's try to make sense of the Log4j vulnerability called Log4Shell. First we look at the Log4j features and JNDI, and then we explore the history of the recent log4shell vulnerability. This is part 1 of a two part series into log4j.

Log4j Issues:
2013:…

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. - toniblyx/my-arsenal-of-aws-security-tools

This is the second episode of the Steganography challenges video series.In this video I would like to showcase another challenge from SNYK capture the flag e...

System and Service Manager. systemd has 34 repositories available. Follow their code on GitHub.

Microsoft fixes the vulnerability. did not give an Bounty Anything that is discovered next time, i will sell to ZDI/Black Market @msftsecresponse @msftsecurity

IoT Malware Similarity Analysis Platform. Contribute to mucoze/Umay development by creating an account on GitHub.