What is #Log4j?
Log4j is a java-based logging framework that is fast, dependable, and flexible. It is a Java logging API that is open source. Simply put, logging is a method of indicating the state of the system at runtime. Logs are used to capture and store important data, making it available for analysis at any time.

CVE-2021-44228 : Log4j reverse shell
A flaw was discovered in the Apache Log4j logging library in versions prior to 2.15. 0. A remote attacker with access to log messages or log message parameters can use the JNDI LDAP endpoint to execute arbitrary code on the server.

Exploit : [ Ссылка ]

Vulnmachines​​ - Place for Pentesters
Vulnmachines is online cyber security training platform with a massive number of labs, allowing individuals, students, cyber professionals, companies, universities and all kinds of organizations around the world to enhance their practical skills with Real-world enterprise scenarios.

Visit : [ Ссылка ]

TheSecOps Group : The SecOps Group is founded by industry veterans. We have over 15 years of experience in providing cyber security consultancy and have worked with some of the largest blue chip companies. Being an independent boutique company, we enable our customers to continuously identify and assess their security postures and provide advice in securing against the adversaries.

Our team regularly speaks at international conferences (including Black Hat, Defcon, HITB, and OWASP Appsec). We pride ourselves in hiring the best talent and our passion is to stay up-to-date with the latest in the world of ethical hacking.

For business : [ Ссылка ]

Follow us
Twitter : [ Ссылка ]
Facebook : [ Ссылка ]
LinkedIn : [ Ссылка ]

#cybersecurity #log4j #exploit #exploit2022 #cve #cvepoc #pentesting #pentest #bugbounty #bugbountypoc #rce #remote

свернуть