WebLogic is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Volatility 3, CobaltStrikeParser, Initial Access, Execution, Persistence, Privilege Escalation, Command and Control, Exfiltration.
Learning Objectives
Reconstruct a WebLogic server attack timeline by analyzing memory dumps with Volatility and MemProcFS to identify initial access, persistence, C2, and data exfiltration IOCs.