Understanding the Log4j Vulnerability | CVE-2021-44228

preview_player
Показать описание
See Jordan's blog post here:

Understanding the #Log4j Vulnerability | #CVE-2021-44228

Can't get enough PDQ? Subscribe and enable notifications!
- Twitter - General info: @admarsenal
- All things PDQ Deploy: @pdqdeploy
- All things PDQ Inventory: @pdqinventory
- Package Library updates: @packagelibrary
Instagram: @pdqlife
  1. PDQ
  2. log4j
  3. CVE-2021-44228
Рекомендации по теме
What is the 0:02:34

What is the Log4j Vulnerability and How to Protect Against It

Log4j (CVE-2021-44228) RCE 0:03:44

Log4j (CVE-2021-44228) RCE Vulnerability Explained

Understanding the Log4j 0:06:44

Understanding the Log4j Vulnerability | CVE-2021-44228

Log4J Vulnerability (Log4Shell) 0:20:50

Log4J Vulnerability (Log4Shell) Explained - for Java developers

Understanding the Log4j 0:34:34

Understanding the Log4j Log4Shell Vulnerability

Log4J Security Vulnerability 0:04:01

Log4J Security Vulnerability Explained

What is Log4J 0:10:08

What is Log4J Vulnerability | Log4J Security Vulnerability Explained | Apache Log4J | Intellipaat

What is Log4j 0:01:01

What is Log4j & why is everyone talking about it? (in 60 seconds)

Log4J & JNDI 0:26:31

Log4J & JNDI Exploit: Why So Bad? - Computerphile

What is the 0:00:55

What is the Log4J vulnerability? #Shorts

Log4j Vulnerability CISO 0:19:43

Log4j Vulnerability CISO Series Understand CISSP & CISM Concept

Log4J Exploit Explained: 0:10:46

Log4J Exploit Explained: How it Works, In-Depth Examples, Mitigation, etc. | Log4Shell Vulnerability

Understanding the Log4j 0:20:30

Understanding the Log4j Vulnerability | Exploiting VMware VCenter & a reverse shell🔥| Patch NOW!...

Log4j Vulnerability (Log4Shell) 0:17:44

Log4j Vulnerability (Log4Shell) Explained // CVE-2021-44228

Apache Log4j: The 0:15:41

Apache Log4j: The Exploit that Almost Killed the Internet

What do you 0:44:57

What do you need to know about the log4j (Log4Shell) vulnerability?

Log4j Vulnerability Could 0:09:34

Log4j Vulnerability Could Give Hackers Control Over Millions of Devices

Log4j Vulnerability explained 0:05:11

Log4j Vulnerability explained in detail

Logback vs SLF4J 0:09:38

Logback vs SLF4J vs Log4J2 - what is the difference? Java Brains Brain Bytes

Understanding the LOG4J 0:12:14

Understanding the LOG4J Vulnerability: Risks and Prevention Tips!' -Covered By ‎@MaloyRoyOrko

Exploits Explained: How 0:09:08

Exploits Explained: How Log4j, Buffer Overflows and Other Exploits Work

How does the 0:00:59

How does the Log4j CVE Work?

What is Apache 0:00:39

What is Apache Log4j?

The Log4j vulnerability 0:34:54

The Log4j vulnerability | The Backend Engineering Show

Комментарии
Автор

Awesome work, gentlemen. This was a huge help.

richardmonreal
Автор

Executei no powershell e ele não me trás resultados ;(

infosec
Автор

Thanks. Scan appears to run fine. Why would I get NULL under column when trying to create Dynamic Collection?

dkordyban
Автор

I ran this against a system with the known vulnerable version and PDQ returned no results. I ran the ps1 locally and it did return it to the console though. What is the issue?

willrunfun
Автор

I get empty data in the Hash column comprared to what you show in your screenshots. Any idea why?

julienlemay
Автор

Can you upload the PS commands. So i can try it please.

aFoodStampBaby
Автор

From where did you downloaded the files to test? Can you please provide the link as we need to download the files to test the scanner as well.

blackdragon
Автор

Thank you for doing this. Super helpful.

dreniarb
Автор

Depending on filenames isn't working in all cases. Just think of fat JARs.

jeromemaluki
Автор

Спасибо, отличная и замечательная программа. Но не хватает интерфейса на русском языке. Когда будет у Вас программа на русском языке?

ИсаакНьютон-цк