繁體中文
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#springshell 搜尋結果

samzhu0318's profile picture. ʕ•̫͡•ʕ*̫͡*ʕ•͓͡•ʔ-̫͡-ʕ•̫͡•ʔ*̫͡*ʔ-̫͡-ʔ Java Engineer https://t.co/ag5gyxXUzq https://t.co/nRiaHRjb9U
Sam Zhu
@samzhu0318
2024年3月21日

New post alert 🚀: 'Unlocking the Power of Spring Shell for Beginners'. Learn to build CLI tools with ease! #JavaDev #SpringShell blog.samzhu.dev/2024/03/21/Unl…

0
0
4
1
104
dashaun's profile picture. Husband, father, volunteer, athlete, continuous learner. Tweets are mine. Spring Developer Advocate @VMwareTanzu #JUICE #LiftAsWeClimb @Testcontainers Champion
DaShaun
 @dashaun
2023年6月14日

It’s way easier for me to deliver native Windows+Darwin+Linux tools using #SpringShell than it is via #bash #zsh #powershell etc.

0
1
4
0
1千
dashaun's profile picture. Husband, father, volunteer, athlete, continuous learner. Tweets are mine. Spring Developer Advocate @VMwareTanzu #JUICE #LiftAsWeClimb @Testcontainers Champion
DaShaun
 @dashaun
2024年3月13日

#GraalVM native-image #SpringShell CLI to convert markdown into a bookmarks.html file. Released with #GitHubAction workflow. (spring-office-hours/mdtohtml-cli) Setup another workflow, to use the native-image CLI, to update the repo, on push to main. github.com/spring-office-…

dashaun's tweet card. Resources for Learning Spring. Contribute to spring-office-hours/resources-learning-spring development by creating an account on GitHub.
GitHub - spring-office-hours/resources-learning-spring: Resources for Learning Spring
來源: github.com
2
2
18
3
839
dashaun's profile picture. Husband, father, volunteer, athlete, continuous learner. Tweets are mine. Spring Developer Advocate @VMwareTanzu #JUICE #LiftAsWeClimb @Testcontainers Champion
DaShaun
 @dashaun
2024年4月28日

Im not sure what version it came with, but I am certain that testing my #SpringShell projects is much easier than it was just a couple of years ago.

0
1
3
0
606
mindit_io's profile picture. We are the partner of choice for data & product engineering to drive your business growth and deliver an impact inside and outside your organization. #AI #tech
mindit.io
 @mindit_io
2023年3月16日

#Log4Shell, #SpringShell, #SolarWinds? Did they affect you? You don’t even know? 💾 @sonatype 's @spoole167 the company behind Maven Central and @mindit_io @olimpiupop will give you an overview of what you need to know, even now, as we speak, about those vulnerabilities.

mindit_io's tweet image. #Log4Shell, #SpringShell, #SolarWinds? Did they affect you? You don’t even know? 💾 @sonatype 's @spoole167 the company behind Maven Central and @mindit_io @olimpiupop will give you an overview of what you need to know, even now, as we speak, about those vulnerabilities.
0
0
3
0
199
ivangfr's profile picture.
Ivan Franchin
 @ivangfr
2024年6月19日

RSocket & Spring Boot: Implementing the Crypto Shell Step-by-step guide on building the Crypto Shell with RSocket and Spring Shell #SpringBoot #SpringShell #RSocket #Java #Technology #SoftwareDevelopment itnext.io/rsocket-spring…

ivangfr's tweet card. Step-by-step guide on building the Crypto Shell with RSocket and Spring Shell
RSocket & Spring Boot: Implementing the Crypto Shell
來源: itnext.io
0
1
0
0
59
ivangfr's profile picture.
Ivan Franchin
 @ivangfr
2024年6月17日

Implementing a Spring Shell to interact with a Spring Boot API Developing the Movie Shell for easy interaction with the Movie API using HTTP Interface #SpringBoot #SpringShell #API #RESTAPI #HttpInterface #Java #Technology #SoftwareDevelopment itnext.io/implementing-a…

0
1
0
0
40
ivangfr's profile picture.
Ivan Franchin
 @ivangfr
2024年6月24日

Implementing a Spring Shell to interact with a Reactive Spring Boot API Guide on developing the Book Shell for easy interaction with the Reactive Book API using HTTP Interface #SpringBoot #SpringShell #SpringWebFlux #Reactive #API #HttpInterface #Java itnext.io/implementing-a…

0
1
0
0
38
pdnuclei's profile picture. Nuclei uses a vast templating library to scan applications, cloud infrastructure, and networks to find and remediate vulnerabilities.
Nuclei by ProjectDiscovery
@pdnuclei
2022年4月1日

Scan for the most recent Spring vulnerabilities using nuclei templates shared by the community. GitHub: github.com/projectdiscove… #hackwithautomation #springshell #security #pentest

pdnuclei's tweet image. Scan for the most recent Spring vulnerabilities using nuclei templates shared by the community. GitHub: github.com/projectdiscove… #hackwithautomation #springshell #security #pentest
2
124
380
65
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
2022年4月12日

Enemybot, a Gafgyt-based Linux botnet, observed April 11 exploiting #SpringShell. This botnet incorporates the exploit within the binaries themselves – both the webshell and command injection stages. IoCs at bit.ly/3JBpJc3 More on SpringShell at bit.ly/3IYmzyG

Unit42_Intel's tweet image. Enemybot, a Gafgyt-based Linux botnet, observed April 11 exploiting #SpringShell. This botnet incorporates the exploit within the binaries themselves – both the webshell and command injection stages. IoCs at bit.ly/3JBpJc3 More on SpringShell at bit.ly/3IYmzyG
1
37
63
5
0
35Foss's profile picture. Security Engineering Leader @Datadoghq | Advisor | Mentor. Tweets are my own & do not reflect the opinions of my employer. https://t.co/kShMOIkvBV
Greg Foss
 @35Foss
2022年3月30日

#Java #SpringShell is indeed legit and successful exploitation results in a JSP webshell (default is tomcatwar.jsp but this is trivial to change). Check your web logs for POST requests and look for new jsp filemods. #Spring4Shell

35Foss's tweet image. #Java #SpringShell is indeed legit and successful exploitation results in a JSP webshell (default is tomcatwar.jsp but this is trivial to change). Check your web logs for POST requests and look for new jsp filemods. #Spring4Shell
5
65
167
22
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
2022年4月11日

We updated our post on #SpringShell to include statistics on SpringShell exploitation attempts we've observed in the wild. bit.ly/3IYmzyG

Unit42_Intel's tweet image. We updated our post on #SpringShell to include statistics on SpringShell exploitation attempts we've observed in the wild. bit.ly/3IYmzyG
0
8
10
3
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
2022年4月1日

Read our root cause analysis of the remote code execution vulnerability CVE-2022-22965, aka #SpringShell, and learn about mitigations. bit.ly/3IYmzyG

Unit42_Intel's tweet image. Read our root cause analysis of the remote code execution vulnerability CVE-2022-22965, aka #SpringShell, and learn about mitigations. bit.ly/3IYmzyG
1
16
18
2
0
unit42_jp's profile picture. パロアルトネットワークス(@PaloAltoNtwksJP) のスレットインテリジェンス & セキュリティコンサルティングチーム Unit 42 から最新のリサーチレポートとニュースをお伝えします。
Unit 42 Japan
 @unit42_jp
2022年4月12日

CVE-2022-22965 (別名 #SpringShell)は、Spring Frameworkで見つかったリモートコード実行脆弱性です。同脆弱性に対するシグネチャのヒット数、Webシェルのファイル名やコンテンツにみられたパターンなどの情報を分析した結果を加筆しました。 bit.ly/3K7IViy

unit42_jp's tweet image. CVE-2022-22965 (別名 #SpringShell)は、Spring Frameworkで見つかったリモートコード実行脆弱性です。同脆弱性に対するシグネチャのヒット数、Webシェルのファイル名やコンテンツにみられたパターンなどの情報を分析した結果を加筆しました。 bit.ly/3K7IViy
0
5
6
0
0
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
2022年4月1日

#SpringShell (CVE-2022-22965) is a remote code execution vulnerability in the Spring Framework, used for building enterprise Java applications. Read our analysis and learn how to protect your organization. bit.ly/3IYmzyG

Unit42_Intel's tweet image. #SpringShell (CVE-2022-22965) is a remote code execution vulnerability in the Spring Framework, used for building enterprise Java applications. Read our analysis and learn how to protect your organization. bit.ly/3IYmzyG
2
21
29
2
0
Ax_Sharma's profile picture. Infosec Researcher, Journalist | 📰 Bylines + seen on 📸 BBC, BleepingComputer, Channel 5, TechCrunch, WIRED | 🦋 Bluesky: https://t.co/7LQOdDSG1o | ✉️ ax@hey.ax
Ax Sharma
 @Ax_Sharma
2022年3月31日

CVE assigned to SpringShell—CVE-2022-22965 h/t @hans_dam To summarize: ✅ #SpringShell RCE zero-day = CVE-2022-22965 The 2 below are **NOT** SpringShell 🙃 ℹ️ Spring Cloud Function SpEL Injection = CVE-2022-22963 ℹ️ Spring Framework SpEL DoS = CVE-2022-22950

Ax_Sharma's tweet image. CVE assigned to SpringShell—CVE-2022-22965 h/t @hans_dam To summarize: ✅ #SpringShell RCE zero-day = CVE-2022-22965 The 2 below are **NOT** SpringShell 🙃 ℹ️ Spring Cloud Function SpEL Injection = CVE-2022-22963 ℹ️ Spring Framework SpEL DoS = CVE-2022-22950
1
5
6
1
0
christzolov's profile picture. R&D Software Engineer at @Broadcom's @SpringCentral team | #SpringAI lead | MCP Java SDK founder | @TheASF Committer
Christian Tzolov🇧🇬🇪🇺🇺🇦 🦋@tzolov.bsky.social
 @christzolov
2018年6月7日

I'm exploring the #IoT Constrained Application Protocol (#CoAP). In the process a "smart" CoAP Shell came together, that combines the @EclipseIoT CoAP/DTLS utilities along with #SpringShell ! The project: github.com/tzolov/coap-sh…

2
6
12
0
0
NetSPI's profile picture. The Proactive Security Solution | Securing the most trusted brands on Earth #PenetrationTesting #proactivesecurity
NetSPI
 @NetSPI
2022年4月27日

Still grappling with Spring4Shell remediation? Our Attack Surface Management platform can help you identify vulnerable instances of Spring. Plus, our experts can help get you on the right path to remediation. ow.ly/YwAo50ICstJ #springshell #spring4shell

NetSPI's tweet image. Still grappling with Spring4Shell remediation? Our Attack Surface Management platform can help you identify vulnerable instances of Spring. Plus, our experts can help get you on the right path to remediation. ow.ly/YwAo50ICstJ #springshell #spring4shell
0
0
1
0
0
NetSPI's profile picture. The Proactive Security Solution | Securing the most trusted brands on Earth #PenetrationTesting #proactivesecurity
NetSPI
 @NetSPI
2022年4月18日

Spring4Shell detection and remediation is complicated 🤯 To help navigate the complex situation, we lay out the facts and best practices on the NetSPI blog: ow.ly/v17V50ICsTE #Spring4Shell #SpringShell

NetSPI's tweet image. Spring4Shell detection and remediation is complicated 🤯 To help navigate the complex situation, we lay out the facts and best practices on the NetSPI blog: ow.ly/v17V50ICsTE #Spring4Shell #SpringShell
0
0
0
0
0
iamVickyAV's profile picture.
Vicky AV
@iamVickyAV
2022年4月1日

@github 's bot automatically scanned my public repo & figured I m using older version of Spring which has security vulnerability Whats Interesting is @github bot created a branch from my master, upgraded the spring lib version & raised a PR to my master branch 😱 #springshell

iamVickyAV's tweet image. @github 's bot automatically scanned my public repo & figured I m using older version of Spring which has security vulnerability Whats Interesting is @github bot created a branch from my master, upgraded the spring lib version & raised a PR to my master branch 😱 #springshell
iamVickyAV's tweet image. @github 's bot automatically scanned my public repo & figured I m using older version of Spring which has security vulnerability Whats Interesting is @github bot created a branch from my master, upgraded the spring lib version & raised a PR to my master branch 😱 #springshell
0
0
0
0
0
praveenkp's profile picture. Software Engineer imposta, enterprise ranter, cat magnet. മലയാളി 🇮🇳 in 🇳🇱Software supply chain security, human factors + system safety.
Praveen K
 @praveenkp
2022年3月31日

When the #SpringShell 0-day doesn't apply to you, since you're using a #JVM from the paleolithic era

0
0
3
0
0
bugch3ck's profile picture. Privilege Escalation Engineer Principal Consultant @ Reversec (formerly WithSecure Consulting)
Jonas Vestberg
 @bugch3ck
2022年3月31日

What's the purpose of these headers in the leaked #SpringShell exploit? They are included in the POST payload using "{headername}". Required to get around some non-security encoding context? Avoid double URL-encoding? WAF bypass (cant see any other reason for "Runtime")?

bugch3ck's tweet image. What's the purpose of these headers in the leaked #SpringShell exploit? They are included in the POST payload using "{headername}". Required to get around some non-security encoding context? Avoid double URL-encoding? WAF bypass (cant see any other reason for "Runtime")?
1
0
2
0
0
royvanrijn's profile picture. Director of @OpenValue Rotterdam, is a @Java_Champions, founder of @RotterdamJUG, public speaking: Java, AI, math, algorithms 🪨 (also @royvanrijn.com bs)
Roy van Rijn
 @royvanrijn
2022年4月1日

Playing around with #springshell and testing other methods of deployment, this time standalone WildFly: that classloader seems to be safe, can't see an easy attack here.

royvanrijn's tweet image. Playing around with #springshell and testing other methods of deployment, this time standalone WildFly: that classloader seems to be safe, can't see an easy attack here.
3
4
4
0
0
JRG_Testa's profile picture. 'They' smell me more like a Threat Actor than an analyst, thats why I do my job so well • Researcher • Freelance • Cybercrime Darkweb • RedTeam • Teacher •
The Бзая
 @JRG_Testa
2022年3月31日

#SpringShell Seems like fix is coming. (Not confirmed yet tho) source: @cyberkendra

JRG_Testa's tweet image. #SpringShell Seems like fix is coming. (Not confirmed yet tho) source: @cyberkendra
1
0
0
0
0
0xjomo's profile picture. No longer posting on Twitter. Follow @jomo@mstdn.io
Follow @[email protected]
 @0xjomo
2022年3月30日

The original tweet about the alleged #SpringShell RCE (from now deleted @80vul / #KnownSec): "[latest warning] Spring core RCE (JDK >=9)"

0xjomo's tweet image. The original tweet about the alleged #SpringShell RCE (from now deleted @80vul / #KnownSec): "[latest warning] Spring core RCE (JDK >=9)"
1
4
6
0
0

Something went wrong.


Something went wrong.


United States Trends