Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1174
Views
0
Helpful
0
Replies

Endpoint IOC files for CVE-2021-44228 Log4Shell

vigleik
Level 1
Level 1

‎12-20-2021 05:39 AM

Anybody have OpenIOC files that are usable with Secure Endpoint, with MD5 checksums for vulnerable Log4j files?
The example below is not accepted when uploading "Enpoint IOC" to Cisco Secure Endpoint
https://github.com/mubix/CVE-2021-44228-Log4Shell-Hashes/blob/main/Log4J-MD5.ioc

I didn't find much help in recent documentation or from TAC on building compatible IOC files.

The customer does'nt have a license for Orbital.

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents