Anarcha-feminist 💜🖤; she/her ♀️ 🏳️⚧️; polya; demie; vg.
Hacking hardware, reversing malwares, mostly random.
Sometimes makes music 🎸
Dec 11, 2021 • 10 tweets • 3 min read
Explaining #log4j for non technical people, because the internet is burning down and y'all might want to know what's happening and why there's all this "${jndi:ldap" stuff out there
⬇️
Log4j is a popular logging library used in Java programming language.
A logger is a piece of software that saves data on a computer. It is used to monitor what is happening, determine if the software runs smoothly, or catch information to help debugging when things go wrong.
Dec 11, 2021 • 6 tweets • 3 min read
Got one hit on my honneypot for #log4j during the night.
This one is not trying to bypass detection and still uses basic payload to trigger the jndi vuln.
The IP address seems to still be up and responding, but the port is closed now.