search

fireeye / CVE-2021-44228

OpenIOC rules to facilitate hunting for indicators of compromise
38 stars 6 forks source link

Filter RFC1918 addresses for ipv4NetworkEvent #4

Closed B0fH closed 2 years ago

B0fH commented 2 years ago

This PR adds a replica of LOG4J CVE-2021-44228 POTENTIAL EXPLOITATION (METHODOLOGY) with logic to filter out RFC1918 IP addresses.