Python Log4RCE
An all-in-one pure Python3 PoC for CVE-2021-44228.
Configure
Replace the global variables at the top of the script to your configuration.
Run
All you need is to run with any python3 install:
python3 ./log4rce.py
Java
If you want to run your own Java script, do the following (./java/Exploit.java as example):
javac ./java/Exploit.java
python3 -c 'print(open("./java/Exploit.class", "rb").read())'
Copy the output of the previous in the JAVA_CLASSES dict. It can be select through the TARGET global variable.
5 Sep 12, 2022
6 Dec 28, 2022
60 Dec 10, 2022
431 Dec 22, 2022
8 Feb 27, 2022
144 Nov 19, 2022
91 Dec 29, 2022
16 Mar 24, 2022
13 Jan 4, 2022
20 Apr 7, 2022
567 Dec 30, 2022
5 Mar 31, 2022
80 Nov 28, 2022
187 Jan 3, 2023
5 Nov 9, 2022
1 Dec 15, 2021
125 Dec 9, 2022
2 Nov 24, 2022
20 Nov 11, 2022