Log4j – Security Vulnerability – Detection Tool – WhiteSource – Windows Binary

Background Let us quickly try out another of the freely available tools for detecting the Log4J security vulnerabilities.   Lineage Log4j – Security Vulnerability – Detection Tools Link Log4j – Security Vulnerability – Detection Tool – CERT ( Community Emergency Response Team ) – PowerShell Script Link WhiteSource Our Story Here is a beautiful story: … Continue reading Log4j – Security Vulnerability – Detection Tool – WhiteSource – Windows Binary

Log4j – Security Vulnerability – Detection Tool – CERT ( Community Emergency Response Team ) – PowerShell Script

Background Library ( Jar ) Files Patched / Apache / v2.17.1 Link Package File Type File Name Link Apache Log4j 2 binary ( tar.gz ) apache-log4j-2.17.1-bin.tar.gz Link Apache Log4j 2 binary ( zip ) apache-log4j-2.17.1-bin.zip Link Extract Jar File Usage Purpose JAR File Name Syntax JAR File Name ( Version Specific ) Log4J API File Provides … Continue reading Log4j – Security Vulnerability – Detection Tool – CERT ( Community Emergency Response Team ) – PowerShell Script

Log4j – Security Vulnerability – Detection Tools

Background Thankfully, just about everyone and their mama have a tool for detecting software stacks that are susceptible to Apache Log4J's Log4Shell Security Vulnerability.   Tools David Strom, InfoWorld Here is a list pulled together by David Strom @ Infoworld Link Company Product Platform Product Link Explanation Qualys Qualys Web Application Scanning Cloud Link Link … Continue reading Log4j – Security Vulnerability – Detection Tools

Apache/Log4j – Log4Shell:- Alibaba Group Holding – Computing Services Unit

Background There are so many angles to the recently disclosed Apache Foundation Log4J's Security Vulnerabilities. As a footnote, this post covers the Log4Shell vulnerability. A month ago, 2021-November-24th, Chen Zhoujun from Alibaba's Cloud Security Team discovered the bug. Via email, Apache Foundation Log4J was quickly notified.   Stories South China Morning Post Apache Log4j bug: … Continue reading Apache/Log4j – Log4Shell:- Alibaba Group Holding – Computing Services Unit