LinkedIn

Log4Shell (CVE-2021-44228): Four Lines of Code, Full Control of the Server

A few years have passed since Log4Shell was disclosed, but I keep returning to it. Not because it is old news. Because it is one of the clearest examples of how a single architectural decision can sit ...
Wilson Center

Nuclear History Boot Camp

Apply Now for Summer 2023! Aimed at building a new generation of experts on the international history of nuclear weapons, the eleventh Nuclear History Boot Camp is an initiative of the Nuclear ...
GitHub

christophetd/log4shell-vulnerable-app

This repository contains a Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell. It uses Log4j 2.14.1 (through spring-boot-starter-log4j2 2.6.1) and the JDK 1.8.0_181. [+] ...
LinkedIn

Understanding Spring Security in Spring Boot: A Guide for Software Engineers

In today’s digital era, application security is more critical than ever. With users’ personal data, business logic, and system operations at stake, implementing robust security mechanisms is ...
GitHub

Spring Boot 4.0 Migration Guide

This is a preview draft of the migration guide. It will be completed when Spring Boot 4.0.0 is released. Before you start the upgrade, make sure to upgrade to the latest available 3.5.x version. This ...
InfoWorld

A fresh look at the Spring Framework

The Spring Framework is possibly the most iconic software development framework of all time. It once suffered from a reputation of bloat, but it has long since shed that perception. The heart of ...