About brendanvu

brendanvu · 12-13-2021

In an earlier community post, we have walked through how to detect the attempts to Exploit CVE-2021-44228 on Apigee. Note: If you are running on Apigee X / Latest version of Apigee Hybrid / Apigee Edge / Latest version of Apigee OPDK, you are not vul...

brendanvu · 12-13-2021

The easiest way to detect if traffic is traversing your Apigee APIs and contain strings that trigger CVE-2021-44228 is by using the Message Logging Policy. These exploit strings are of the format These strings can be present anywhere in the HTTP requ...

brendanvu · 03-15-2021

If you are looking to extract a list of all proxies that contain a specific policy, eg. to get list of proxies that have "messageLoggingGscApigee" policy, then this article offers some suggestions. First off, there is no direct management API that yo...

brendanvu · 05-15-2019

If you face a similar issue to the following while running bootstrap to upgrade in OPDK, refer to the bottom section for possible resolution.--------------------------------------This is the error message upon running bootstrap_4.19.01.sh.$> sudo bas...

brendanvu · 11-28-2018

Hi,We would like to use Java Callouts in our policies but we need to have some information about specs and limits. We'd like to know the following Java runtime details: - CPU - RAM - ThreadPool associated And we'd like to know how those limit are enf...

brendanvu · 11-23-2022

Can you share what's the support case number ? Just the case number would do. We will look into the details.

brendanvu · 12-13-2021

You may want to refer to this community article for how to detect attempts to exploit Log4j CVE-2021-44228

brendanvu · 09-12-2019

In order to get the list of all developers, use /developers api [1] instead: curl "https://api.enterprise.apigee.com/v1/organizations/{org_name}/developers?expand=true&count=10"If you want to find out which developers are for specific product, there ...

brendanvu · 09-09-2019

Try the solution given by Dino here .

brendanvu · 09-07-2019

There will be 2 policies to get what you need.1- extract the URL that is captured in your JSON payload.Use ExtractVariable policy [1].Recommend to watch this 4-minute video to see how the policy is in action.You could also study sample codes on Githu...

My Stats

brendanvu's Bio

Badges brendanvu Earned

Recent Activity

How-To: Block requests that exploit Log4j CVE-2021-44228 on Apigee

Detecting Attempts to Exploit Log4j CVE-2021-44228 on Apigee

How do I get the list of all proxies using a specific policy ?

Resolve 404 error while running bootstrap script in OPDK - thirdparty repo not found

Java Callouts runtime limits

Re: Apigee X is taking long time to deploy an API Proxy/Shared-Flow

Re: Regex policy pattren log4j2 vulnerability (CVE-2021-44228)

Re: How to get list of app id's for specific api product,Get list of App Id's for an Api Product

Re: Set LocalTargetConnection dynamically in ServiceCallout

Re: Extracting Variable from json payload