CISA released its Log4J scanner this week alongside many other scanners published by cyber security companies and researchers. Derived from scanners, the open-sourced Log4j scanner is created by other open source community members. It is designed to help organizations identify vulnerable web services affected by the Log4j vulnerabilities.
CISA said it modified a Log4J scanner created by security company FullHunt and got help from other researchers like Philipp Klaus and Moritz Bechler. The repository provides a scanning solution for CVE-2021-44228 and CVE-2021-45046. CISA supports DNS callback for vulnerability discovery and validation.
Read More: zdnet
For more such updates follow us on Google News ITsecuritywire News
