Detect Vulnerable Log4J Websites with CanaryTokens | HakByte
On this episode of HakByte, Alex Lynd demonstrates how to test if web applications are vulnerable to the Log4Shell exploit, using CanaryTokens.
Links:
Support the Show! Buy a WiFi Nugget here:
Alex’s Demo:
Kozmer’s Demo:
Alex’s Twitter:
Alex’s Website:
Alex’s GitHub:
Chapters:
00:00 Intro
00:15 What is Log4J?
00:23 What is Log4Shell?
00:58 CanaryTokens Tools You’ll Need
01:22 PCBWay Manufacturing Services
01:35 Register Log4Shell CanaryToken
03:05 Log4J Vulnerability Explained
03:42 Vulnerable WebApp Setup
06:05 User Agent Strings
08:05 Modifying the Browser User Agent
08:40 Testing the Log4Shell Vulnerability
09:34 CanaryTokens Log4Shell Monitor
10:48 Log4Shell String Explained
12:48 Outro
-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆
Hak5 -- Cyber Security Education, Inspiration, News & Community since
4 months ago 00:16:31 1
4 months ago 00:43:39 1
4 months ago 00:15:21 1
5 months ago 00:16:39 1
5 months ago 01:25:28 1
5 months ago 00:15:41 1
6 months ago 00:16:00 2
7 months ago 00:16:58 1
7 months ago 00:02:58 1
7 months ago 00:04:44 1
7 months ago 00:06:00 1
7 months ago 00:03:17 1
7 months ago 01:15:08 1
8 months ago 00:06:54 1
8 months ago 00:08:12 1
9 months ago 00:02:10 1
9 months ago 00:22:39 1
9 months ago 00:20:23 1
9 months ago 00:10:56 1
10 months ago 00:00:54 3
10 months ago 00:01:54 1
![Sherlock Holmes Chapter One | Launch Trailer [GOG]](https://sun9-79.userapi.com/kRVEKp30EodHZdoOvmD1ersHeD8A5_znmRcH9w/OVoF0hoUTd0.jpg)
10 months ago 00:05:46 1
10 months ago 00:02:36 10
10 months ago 03:12:39 1
