Overview
Log4j Exploit Detection is a network forensics lab based on traffic from a Log4Shell attack against a web server.
The scenario focuses on detection rather than exploitation. Analysts review captured traffic to identify suspicious request patterns, JNDI-related indicators, outbound lookup behavior, and the network evidence that can support incident triage.
This lab is useful for learners practicing exploit traffic recognition, packet-level investigation, and mapping a known vulnerability pattern to observable evidence.
Related Labs
Related trainings
