Talking Tradecraft @ Pluralsight: A Technical Dive into the Log4Shell Exploit
This course is a technical post-mortem of the Log4Shell vulnerability, discussing the impact that has been seen to date, new developments in the remediation, and what to expect in the future.
What you'll learn
This course is a post-mortem of the Log4Shell vulnerability, discussing the impact that has been seen to date, new developments in the remediation, and what to expect in the future. First you will learn about the different effected versions and CVE's that have been assigned to this category of vulnerabilities associated with the Log4J library. Next, we will cover different attacks that have been seen in the wild and how attackers can leverage this exploit in a full attack chain. Last, we will cover a technical walkthrough of the exploit it self and some technical mitigations you can use in any environment.