[Tip] Log4j2 Log4Shell Obfuscation

I've recently created a new repository to track all the obfuscation techniques I've observed whilst tracking the imfamous Log4j2 vulnerability (CVE-2021-44228). This can be found on my GitHub page at the following: https://github.com/mcb2Eexe/Log4j2-Obfucation Full details of this vulnerability can be found at: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-44228 As well as POC at: https://github.com/ka7ana/log4j-test Enjoy...

[BSH] Quick Tip: YARA Scanning Files

YARA is an advanced string searching tool designed to assist malware researchers in identifying malware samples. Its extremely versatile, allowing analysts to scan a variety of file types both on disk or in memory, to quickly highlight pre-identified malicious indicators and classify the files. I've created a bash script to make it easier to scan … Continue reading [BSH] Quick Tip: YARA Scanning Files