Evidence of a log4j attack found - Now what?

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/cybersecurity
#Signature #yara-rules #IoC #Scanner #Yara

Our great sponsors
  • Scout APM - Less time debugging, more time building
  • SonarLint - Deliver Cleaner and Safer Code - Right in Your IDE of Choice!
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • log4shell-tool

    Log4Shell Enumeration, Mitigation and Attack Detection Tool

    Start with confirming that an incident took place. My five-minute understanding of Datto's ComStore log4shell tool is that it does two things:

  • signature-base

    Signature base for my scanner tools

    Uses these YARA rules to read JAR, LOG, and TXT files on the system, throwing warnings if any log4shell-looking payloads are found based on those various rules.

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts