search

outflanknl / RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
BSD 3-Clause "New" or "Revised" License
2.38k stars 370 forks source link

update logstash to post log4shell version [CVE-2021-44228] #216

Closed xychix closed 2 years ago

xychix commented 2 years ago

Note that the logstash used did run an up to date java and never appeared to be RCE vulnerable as per: https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476

xychix commented 2 years ago

let this one slip. Did get a hold of full RedElk version management.