Blog Post

The Human Connection Blog
1 MIN READ

New Cyber Threat Intelligence Lab release!

BenMcCarthy's avatar
BenMcCarthy
Icon for Immerser rankImmerser
1 year ago

Today we have a brand new set of labs related to CVE-2023-22527: Confluence OGNL RCE

On January 16, 2024, Atlassian released an advisory for CVE-2023-22527. This template injection vulnerability affects out-of-date Confluence Data Center and Server products, allowing attackers to achieve remote code execution (RCE) on an affected version.

In this lab, you'll learn about this latest vulnerability and have access to a compromised version, where you'll identify indicators of compromise in the access logs.

Who's it for?

  • SOC Analysts
  • Threat Hunters
  • Incident Responders
  • Penetration Testers

What are the key takeaways?

  • Outline how attackers can abuse legitimate processes for malicious means
  • Identify indicators of compromise in Confluence access logs

Cyber Pro licensed users can access the new collection here.

Published 1 year ago
Version 1.0
content updates
cyber pro
cyber threat intelligence
BenMcCarthy's avatar
Icon for Immerser rankImmerser
Lead Cyber Security Engineer. I lead the team that releases the content for the CTI part of the platform! Latest CVEs, malware threats and emerging threats all within 24 hours.
View Profile
The Human Connection Blog
Learn from our experts
No CommentsBe the first to comment