siyahsapka.org

Don't Learn to hack, hack to LEARN

Sayfalar

Home
Services
Articles
whoami

Saturday, December 11, 2021

CVE-2021-44228: Proof-of-Concept for Critical Apache Log4j Remote Code Execution Vulnerability Available (Log4Shell)

Plugin:

https://www.tenable.com/plugins/nessus/155999

POC - Blog post:

https://www.tenable.com/blog/cve-2021-44228-proof-of-concept-for-critical-apache-log4j-remote-code-execution-vulnerability

Posted by Ali Okan Yüksel at 8:55 PM

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: pentest

No comments:

Post a Comment

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

Popular Posts

QRadar: SSH to host fails with error "No ECDSA host key is known for and you have requested strict checking"

Troubleshooting ...
Openshift 4: "Deployment config does not have minimum availability."

1. Check replica count, if replicata count is zero this message can be seen. 2. Check trigger definition in deploymentconfig yaml. If no tri...
QRadar SOAR: How to increase partition size by using a new disk on RHEL with LVM

Steps: Steps to add a new hard disk to LVM on IBM Security SOAR appliance running Red Hat Linux with LVM support: 1....
radius performance testing with radperf tool

RADPERF Authentication, Authorization, and Accounting. Performance, scalability, load testing, and validation. One of the most critical s...
QRadar: snmpwalk: Failure in sendto (Operation not permitted)

[root@console snmp]# snmpwalk -Os -c public -v 2c 127.0.0.1:8001 iso.3.6.1.2.1.1.1 snmpwalk: Failure in sendto (Operation not permitted) I ...
ut8mb3 ve utf8mb4 arasındaki fark nedir?

utf8mb3 ve utf8mb4, karakter kodlaması olarak UTF-8'i kullanan MySQL veritabanı sütunlarının karakter setini belirtmek için kullanılan t...
QRadar: Ariel query for getting related usernames in an offense

AQL query: SELECT username FROM events WHERE INOFFENSE(ID) GROUP BY username
QRadar SOAR (Resilient): Expired K3s certificates are not automatically rotated causing connection issues on Apphost

Problem Cached K3s certificates are not cleared when automatically rotated. K3s generates internal certificates wit...
python: reading fifo example

fifo - first-in first-out special file, named pipe A FIFO special file (a named pipe) is similar to a pipe, except that it ...
Squid rules

Categories

Bookmarks

OWASP
Hacker Rank
İbrahim Baliç Youtube Channel
g0tm1lk blog
Shells Archive

Blog Archive

► 2024 (2)
- ► January (2)

► 2023 (8)
- ► December (1)
- ► November (1)
- ► October (2)
- ► August (1)
- ► June (1)
- ► March (1)
- ► February (1)

► 2022 (23)
- ► December (1)
- ► November (1)
- ► October (1)
- ► September (1)
- ► August (14)
- ► July (1)
- ► June (1)
- ► January (3)

▼ 2021 (11)
- ▼ December (5)
- ► October (2)
- ► August (2)
- ► June (1)
- ► January (1)

► 2020 (31)
- ► December (4)
- ► November (2)
- ► October (7)
- ► September (2)
- ► July (3)
- ► June (3)
- ► May (7)
- ► April (1)
- ► January (2)

► 2019 (12)
- ► December (1)
- ► October (2)
- ► July (4)
- ► June (3)
- ► April (2)

► 2018 (48)
- ► December (1)
- ► November (4)
- ► October (18)
- ► September (9)
- ► May (6)
- ► April (1)
- ► March (6)
- ► February (2)
- ► January (1)

► 2017 (44)
- ► December (7)
- ► November (2)
- ► October (1)
- ► September (4)
- ► August (5)
- ► July (5)
- ► June (3)
- ► May (1)
- ► March (4)
- ► February (8)
- ► January (4)

► 2016 (65)
- ► December (7)
- ► November (3)
- ► October (5)
- ► September (1)
- ► August (5)
- ► July (1)
- ► June (6)
- ► May (3)
- ► April (5)
- ► March (9)
- ► February (5)
- ► January (15)

► 2015 (83)
- ► November (2)
- ► October (11)
- ► September (4)
- ► August (3)
- ► July (6)
- ► June (4)
- ► May (6)
- ► April (6)
- ► March (5)
- ► February (11)
- ► January (25)

► 2014 (10)
- ► December (8)
- ► November (2)

Awesome Inc. theme. Powered by Blogger.