Log4Shell: A Tradecraft Tuesday Recap | Huntress
ATT&CK techniques detected
T1190Exploit Public-Facing Application
92%
"example, calls out this jndi functionality, allowing it to reach out to attackercontrolledhost ( using an ldap server ) and retrieve and return whatever malicious thing is there. in short, an attacker can insert and execute almost any line of code with just this single string — a…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
We recap our December 2021 episode of Tradecraft Tuesday where we dive into the Log4Shell vulnerability.