Operational information regarding the Spring4Shell vulnerability (CVE-2022-22965) in the Spring Core Framework. Repository contents README.md: contains general information and detection and mitigation measures software/README.md: contains a list of known vulnerable and not vulnerable software. services/README.md: contains a list of known vulnerable and not vulnerable services. NCSC-NL has published a HIGH/HIGH advisory for the Spring4shell vulnerability. Normally we would update a HIGH/HIGH advisory for vulnerable software packages, however due to the expected number of updates we have created a list of […]

Detector for Log4Shell exploitation attempts Idea The problem with the log4j CVE-2021-44228 exploitation is that the string can be heavily obfuscated in many different ways. It is impossible to cover all possible forms with a reasonable regular expression. The idea behind this detector is that the respective characters have to appear in a log line in a certain order to match. Split up into a list it would look like this: [‘$’, ‘{‘, ‘j’, ‘n’, ‘d’, ‘i’, ‘:’, ‘l’, ‘d’, […]

GitHub – Its-Vichy/Batched-Grabber: 🖥️ Windows Batch and powershell Discord Token grabber. Made for Troll (lmao) 🖥️ Windows Batch and powershell Discord Token grabber. Made for Troll (lmao) – GitHub – Its-Vichy/Batched-Grabber: 🖥️ Windows Batch and powershell Discord Token grabber. Made for Troll (lmao)