Log4Shell: Reconnaissance and post exploitation network detection

NCC Group RIFT analysis of CVE-2021-44228 (Log4Shell): the report supplies Suricata detection rules, hunting rules, a host-based log4j-finder script, and a curated list of observed listener IOCs. It documents active exploitation in the wild (including MobileIron incidents), describes evasion techniques and risks from centralized logging and post-exploitation, and urges immediate mitigation and scanning.