Discover How To Learn Tips And Tricks HOWTOs
Detect and block Log4j exploitation attempts with CrowdSec
If you work in Infosec, chances are you had a very lousy weekend due to the critical Log4j zero-day vulnerability (CVE-2021-44228) that was discovered. Learn how to detect and block Log4j exploitation attempts with CrowdSec in this tutorial.
As a result, we have released a scenario that will help you detect and block exploitation attempts of the vulnerability. This new scenario can be directly downloaded from our Hub and installed in a blink of an eye.
As CrowdSec is all about crowd power and given the size of our quickly growing network, we now start to catch a lot of IP addresses attempting to exploit this vulnerability. You can check the list here. It is frequently updated and, needless to say, you should block the ones that is “validated”.