Aggregator

runc internals, part 1: usage, build and source architecture

4 years ago

Terenceli

Quantifying Log4Shell: Vulnerability on a Massive Scale

4 years ago

The Log4Shell vulnerability is here to stay. There is a lot of speculation about the scope and true impact of the vulnerability: While many have labeled it “severe,” information is limited on how widespread the risk is. In order to shed some light on the issue, Akamai Threat Labs is utilizing its visibility into numerous data centers worldwide to assess the actual risk Log4Shell poses to organizations.

Akamai Security Intelligence Group

How to Get Started With Application Security

The Akamai Blog

4 years ago

With a comprehensive security stack, Akamai’s application security solutions defend your entire ecosystem from threats. But before you can reap the benefits that come with application security, you need to create a configuration with Akamai’s APIs. Our Developer Advocacy team is here to walk you through the process so you can achieve Infrastructure as Code — or, as we like to call it here, Akamai as Code. Akamai as Code has the ability to support all the DevSecOps practices you know and love, such as automating repetitive tasks and streamlining configurations and workflows, along with reducing manual work and errors.

Mike Elissen

IIS日志隐藏

半块西瓜皮

4 years ago

在攻防对抗过程中，为了防止蓝队从IIS日志中分析到有用的信息，需要对IIS特定日志进行隐藏。

定位写日志逻辑

半块西瓜皮

Akamai Reports Another DoS in Log4j2 (CVE-2021-45105): What You Need to Know

The Akamai Blog

4 years ago

The series of vulnerabilities recently discovered in Log4j2 has shocked the internet. As part of our continuing research, on December 17, Hideki Okamoto from Akamai found and responsibly reported an additional denial-of-service (DoS) vulnerability, which was assigned as CVE-2021-45105.

Akamai Threat Research Team