2023 Conference Talks for Charles Herring

The following abstracts are available for delivery at security meetings and conferences. Additionally, archived talks outlined in the 2021 Talks are also available. Bio Charles Herring is co-Founder and Chief…

Read More
Adaptive Parsing

Log4J/LogShell IOC search

Log4J/LogShell (CVE-2021-44228) exploit IOC have been published by Cisco Talos (see: https://blog.talosintelligence.com/2021/12/apache-log4j-rce-vulnerability.html). These IOC have been packaged as a WitFoo Actor definition and have been pushed to all production instances…

Read More
Log4J

Emergency Update for CVE-2021-44228 (log4j / Log4Shell)

CVE-2021-44228 (https://nvd.nist.gov/vuln/detail/CVE-2021-44228) was released on December 10, 2021 outlining a vulnerability in Apache Foundation project Log4j (https://logging.apache.org/log4j/2.x/index.html). This vulnerability can be used by a remote attacker to execute code without…

Read More
Log4J CVE

Lava & Cyber Insurance

I have been fortunate enough to have the opportunity to spend October on the Big Island of Hawai’i at a friend’s home while we button up the 6.2 release of…

Read More
Log4J

Log4J/LogShell IOC search

Log4J/LogShell (CVE-2021-44228) exploit IOC have been published by Cisco Talos (see: https://blog.talosintelligence.com/2021/12/apache-log4j-rce-vulnerability.html). These IOC have…

Read More
Load More