| [ | |
| {"Code": 47,"Groups": "corp, fin","Description": "Accounting"}, | |
| {"Code": 94,"Groups": "man, tech, tran","Description": "Airlines/Aviation"}, | |
| {"Code": 120,"Groups": "leg, org","Description": "Alternative Dispute Resolution"}, | |
| {"Code": 125,"Groups": "hlth","Description": "Alternative Medicine"}, | |
| {"Code": 127,"Groups": "art, med","Description": "Animation"}, | |
| {"Code": 19,"Groups": "good","Description": "Apparel & Fashion"}, | |
| {"Code": 50,"Groups": "cons","Description": "Architecture & Planning"}, | |
| {"Code": 111,"Groups": "art, med, rec","Description": "Arts and Crafts"}, | |
| {"Code": 53,"Groups": "man","Description": "Automotive"}, |
You can use these commands and rules to search for exploitation attempts against log4j RCE vulnerability CVE-2021-44228
This command searches for exploitation attempts in uncompressed files in folder /var/log and all sub folders
sudo egrep -I -i -r '\$(\{|%7B)jndi:(ldap[s]?|rmi|dns|nis|iiop|corba|nds|http):/[^\n]+' /var/log
| # pip install flask pytube3 opencv-python imagehash requests | |
| from flask import Flask,request | |
| from PIL import Image | |
| from pytube import YouTube | |
| import cv2 | |
| import hashlib | |
| import imagehash | |
| import json | |
| import os |