Resources to Address the Log4j (Log4Shell) Vulnerability

Document Library

Additional Resources

Reports, White Papers, Overviews

Screenshot of the ARC Analyst Report
REPORT

ARC Advisory Group Analyst Sid Snitkin's Report on the FACT Platform

Request a copy
Screenshot of our VEX White Paper
WHITE PAPER

Vulnerability Exploitability eXchange (VEX)
White Paper

Request a copy
Screenshot of our VEX White Paper
OVERVIEW

FACT for Vendors: Securing Vendor Software
Supply Chains

Download Overview
Screenshot of our VEX White Paper
OVERVIEW

aDolus Executive Overview

Download Overview

Further Suggested Reading

Screenshot of Atlantic Council Website

Atlantic Council: Cyber Statecraft Initiative's Breaking Trust Project

Read
Screenshot of the U of M Paper: Digitally Signed Malware

University of Maryland Paper: Digitally Signed Malware

Read
Screenshot of the NTIA Webpage: Minimum Elements of an SBOM

National Telecommunications and Information Administration: Minimum Elements of an SBOM

Read