Месячные архивы:: Январь 2022
Небольшая инструкция по исправлению уязвимости CVE-2021-31879 ( на инглише ) How to Install Latest Curl Version Follow these steps to install the latest version of curl on your Ubuntu OS/server regardless of the version. (make sure that you are root by running the following command: sudo su) or add sudo in from the commands.Step 1
Detector for Log4Shell exploitation attempts Создано Neo23x0 What it does and doesn’t do It does: It checks local log files for indicators of exploitation attempts, even heavily obfuscated ones that string or regular expression based patterns wouldn’t detect. It doesn’t find vulnerable applications It doesn’t and can’t verify if the exploitation attempts were successful Idea
You can use these commands and rules to search for exploitation attempts against log4j RCE vulnerability CVE-2021-44228 Grep / Zgrep This command searches for exploitation attempts in uncompressed files in folder /var/log and all sub folders sudo egrep -I -i -r '\$(\{|%7B)jndi:(ldap[s]?|rmi|dns|nis|iiop|corba|nds|http):/[^\n]+' /var/log This command searches for exploitation attempts in compressed files in folder /var/log