Python Log4RCE PoC | Log4Shell | CVE-2021-44228 https://github.com/alexandre-lavoie/python-log4rce https://t.me/cKure/10412
All posts tagged hack
December 12, 2021 at 01:44AM
■■■■■ United States : NASA’s mission to the Mars 2020 viz. Helicopter mission – Ingenuity, is powered by Apache Log4j. ● I assume, NASA to find some ‘ingenuity’ to fix the zero-day. https://twitter.com/TheASF/status/1400875147163279374 https://t.me/cKure/10411
December 12, 2021 at 01:33AM
■■■■■ Interesting thread! This is very funny but very true of open source developers. Not their fault. https://twitter.com/_msw_/status/1469714367805415428 https://t.me/cKure/10409
December 11, 2021 at 11:10PM
■■■■□ OWASP ZAP Zero-Day due to Log4jpwn. A vulnerability has been found in Log4j which can result in Remote Code Execution (RCE): CVE-2021-44228 also known as Log4Shell. ZAP 2.11.0 and the previous weekly and dev versions of ZAP use Log4j 2.14.1 which is known to be vulnerable. https://www.zaproxy.org/blog/2021-12-10-zap-and-log4shell/ https://t.me/cKure/10408
December 11, 2021 at 11:07PM
■■■■■ Blue-Team cheat-sheet for log4jpwn | CVE-2021-44228 prevention. https://gist.github.com/SwitHak/b66db3a06c2955a9cb71a8718970c592 https://t.me/cKure/10407
December 11, 2021 at 10:48PM
■■■■□ CVE-2021-44228 | Log4Shell: Critical vulnerability in Apache Log4j | Kaspersky official blog. https://www.kaspersky.com/blog/log4shell-critical-vulnerability-in-apache-log4j/43124/ https://t.me/cKure/10406
December 11, 2021 at 10:41PM
■□□□□ Amazon has published a post-event summary to shed some light on the root cause behind this week’s massive AWS outage that took down a long list of high-profile sites and online services, including Ring, Netflix, Amazon Prime Video, and Roku. https://aws.amazon.com/message/12721/ https://t.me/cKure/10405
December 11, 2021 at 10:40PM
■■■■□ Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228) https://www.helpnetsecurity.com/2021/12/10/cve-2021-44228/ https://t.me/cKure/10404
December 11, 2021 at 10:37PM
■■■□□ Zero-Day: VMWare vCenter is affected by the Log4j (CVE-2021-44228) vulnerability. https://t.co/pcJdRLEa3F https://t.me/cKure/10403
December 11, 2021 at 10:34PM
■■■□□ Archive: Log4j should not trust user-land input(s). Mentioned as early as 2016. CVE-2021-44228 Reference: Black Hat 👒 conference. (https://t.me/cKure/10401) https://t.me/cKure/10402