Collaborate Disseminate
I need to secure logs on a IoT device (Infineon TC233). It has 2 MB flash and a HSM. We are at the design stage of development.
Since logs will be primarily event & data logs, the size of the log file is likely to be in a few KBs. Addi… Continue reading Secure logs on an embedded IoT device
In logs, I found lsass.exe spawning lsass.exe.
C:\Windows\System32\smss.exe
C:\Windows\System32\smss.exe
C:\Windows\System32\wininit.exe
C:\Windows\System32\lsass.exe
C:\WINDOWS\system32\lsass.exe
lsass.exe should always be a ch… Continue reading lsass.exe spawning lsass.exe
Now that the dust has settled on both the holiday season and the Log4j vulnerability that saw many of us working through it (CVE-2021-44228), it makes sense to look back and take stock of how things played out. What strategies worked in the face of one… Continue reading Log4Shell: A retrospective
Is there any way to find out if any of the vulnerabilities of older Logitech Unifying Receiver firmware was exploited? I’m referring to the vulnerabilities listed here including these.
On GNU/Linux/Debian it can be patched with fwupdmgr up… Continue reading Is there any way to find out if a Logitech Unifying Receiver vulnerability was exploited?
Logging is enabled. Only allow rules are logged. The very last line of my firewall rules is:
Anywhere DENY Anywhere
No logging is asked for, however two IPs repeatedly show up in my firewall logs as blocked:
Dec… Continue reading ufw logs BLOCKS from 2 sites while BLOCK logging is completely disabled for ALL sites [migrated]
Just curious who and how just added RCE into logging library and successfully merged this joke into master.
Is there any links or archives to original:
commit that added jndi
issue where someone asked for jndi support in log4j
pull reques… Continue reading Original Log4j commit that added jndi support into it [closed]
Several days have passed since the dramatic reveal of CVE-2021-44228 (aka Log4Shell), an easily exploitable (without authentication) RCE flaw in Apache Log4j, a popular open-source Java-based logging utility that’s seemingly used by most enterpri… Continue reading Log4Shell update: Attack surface, attacks in the wild, mitigation and remediation
A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, fortunately, primarily to deliver coin miners. Reported to the Apache Software Foundati… Continue reading Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)
I’ve been thinking a lot about private browsing recently. Here’s a scenario I’ve been thinking about:
Let’s say I have a browser installed on my Windows 10 PC called "ChromeFox" (made up, it’s just an example). ChromeFox is a &qu… Continue reading Does Windows 10 log network activity?
When we are trying to implement an ‘Event Tracking’ mechanism (recording/logging clicks, scrolls and other actions on the UI of the web application) on our web application.
Should ‘Event Tracking’ be tied to a session? I noticed that a lot… Continue reading Event Tracking integrity [migrated]