Scanning for Confluence CVE-2022-26134, (Fri, Mar 1st)

This post was originally published on this site

I have added daemonlogger [1] for packet capture and Arkime [2] to visualize the packets captured by my DShield sensor and started noticing this activity that so far only gone to TCP/8090 which is URL and base64 encoded. The DShield sensor started capturing this activity on the 12 February 2024 inbound from various IPs from various locations.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.