Talking Tradecraft @ Pluralsight: A Technical Dive into the Log4Shell Exploit
|
This course is a technical post-mortem of the Log4Shell vulnerability, discussing the impact that has been seen to date, new developments in the remediation, and what to expect in the future.
This course is a post-mortem of the Log4Shell vulnerability, discussing the impact that has been seen to date, new developments in the remediation, and what to expect in the future. First you will learn about the different effected versions and CVE’s that have been assigned to this category of vulnerabilities associated with the Log4J library. Next, we will cover different attacks that have been seen in the wild and how attackers can leverage this exploit in a full attack chain. Last, we will cover a technical walkthrough of the exploit it self and some technical mitigations you can use in any environment.
Author Name: Aaron Rosenmund
Author Description:
Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber secur… more
User Reviews
Be the first to review “Talking Tradecraft @ Pluralsight: A Technical Dive into the Log4Shell Exploit”
Related Products
Command and Control with Sliver
Are you looking for a versatile command and control server with implants for almost every architecture? In this course, you will learn Command and Control using Sliver.
Exploitation with PowerShell
Learning about PowerShell exploitation techniques and tools is of vital importance for successfully running red team operations or penetration tests in Windows environments.
Red Team Operations: Target and Capability Development
Hey Humans! Come join us for an exciting adventure and Red Team Operation! In this course, we will be discussing the scenario and how to set up infrastructure and planning for your operation.
Privilege Escalation with SweetPotato
Escalating local privileges is an essential step on a red team engagement, it allows you to fully own a target machine. In this course, you'll learn privilege escalation using SweetPotato.
Advanced Web Application Penetration Testing with Burp Suite
Burp suite can help improve your penetration testing. This is an advanced course designed to expand your knowledge of the Burp Suite product to utilize many of the lesser known features offered in the tool.
OWASP Top 10: What’s New
The OWASP Top 10 is a respected guide to critical risks in web applications. The newest release brings fresh categories and consolidates old ones. This course explores the changes and gives guidance on how this affects various security roles.
There are no reviews yet.