# Log4J Shell Attack Mitigation with Kontain

# Blog entry

Here is a blog entry discussing in detail the Log4jShell attack with and without Kontain based containers.

# Spring Boot Application in a Docker Container getting compromised

  • Video showing how a Spring Boot Application gets compromised with a reverse shell when packaged and run as a Docker Container, when attacked using Log4JShell attack
  • Attacker can execute shell commands in the container
    asciicast
    asciicast

# Spring Boot Application in a Kontain based Container getting sandboxed

  • Video showing how a Spring Boot Application when packaged and run as a Kontain based Container, and when attacked using Log4JShell, and even if compromised due to Log4J, the attacker cannot do anything
    asciicast
    asciicast