Handy FireEye tool roots out indicators of compromise
Citrix and FireEye have released a new security tool to help admins find out if their servers have been hacked via the high-profile CVE-2019-19781 flaw that was disclosed in December but only patched on Monday.
The free application, shared under the Apache 2.0 open-source license, will scan devices for indications of compromise for the so-called "Shitrix" arbitrary code execution vulnerability in Citrix's Application Delivery Controller and Gateway products. The tool can be run on any Citrix instance to check for signs of an intrusion.
Using some of the samples collected from attacks in the wild, including the recently unearthed still losing sleep awful citrix scanner realize already pwned
