Aggregator

关于Log4j2系列漏洞的原理、绕过及修复的完整总结。

The Log4Shell vulnerability is here to stay. There is a lot of speculation about the scope and true impact of the vulnerability: While many have labeled it ?severe,? information is limited on how widespread the risk is. In order to shed some light on the issue, Akamai Threat Labs is utilizing its visibility into numerous data centers worldwide to assess the actual risk Log4Shell poses to organizations.

With a comprehensive security stack, Akamai?s application security solutions defend your entire ecosystem from threats. But before you can reap the benefits that come with application security, you need to create a configuration with Akamai?s APIs. Our Developer Advocacy team is here to walk you through the process so you can achieve Infrastructure as Code ? or, as we like to call it here, Akamai as Code. Akamai as Code has the ability to support all the DevSecOps practices you know and love, such as automating repetitive tasks and streamlining configurations and workflows, along with reducing manual work and errors.

在攻防对抗过程中，为了防止蓝队从IIS日志中分析到有用的信息，需要对IIS特定日志进行隐藏。

定位写日志逻辑

The series of vulnerabilities recently discovered in Log4j2 has shocked the internet. As part of our continuing research, on December 17, Hideki Okamoto from Akamai found and responsibly reported an additional denial-of-service (DoS) vulnerability, which was assigned as CVE-2021-45105.

【特别推荐】Zero Project：深入研究 NSO 的零点击 iMessage 漏洞

这是一个影响 Apache Log4j 2.14.1 及更早版本的关键 (CVSSv3 10) 远程代码执行 (RCE) 漏洞

How to start the journey to zero trust architecture once you have decided it meets your business requirements.

网络演习在最近几年被越来越多的单位重视，网络演习可以真正验证安全的水平，在攻防的真实对抗中，可以发现安全问题，提高安全建设和运营水平。同时，网络演习重点是考验单位的应急响应、协同合作的各种能力。

How organisations can address the growing trend in which multiple vulnerabilities within a single product are exploited over a short period.

提权-Redis&Postgre&令牌窃取&进程注入

sakuraのfuzzing lab培训<

Continuing with our research into CVE-2021-44228, Akamai has previously written about what the vulnerability is and given recommendations on how to go beyond patching for extra protection. Across the Akamai network, we see traffic from 1.3 billion unique devices daily, with record traffic of 182 Tbps. The threat research team has been investigating this traffic to gain deeper insights into how this vulnerability is being exploited. We want to share more technical findings and what they mean for threat hunters. Here are some implications for defenders and threat hunters to consider

It can be easy to give in to frustration and pessimism during catastrophic events. But there are signs that not all is lost, even in the world of software dependencies.

未知攻焉知防，未知防焉知攻？

As Christmas quickly approaches, seasonal phishing trends once again show that attackers are taking advantage of increased online shopping. Fraudsters doubled their efforts in November attacking ecommerce giants such as Amazon. The real attacker focus, however, was cryptocurrency with fraudulent sites...