CVE-2021-44228

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

A Proof-Of-Concept for the CVE-2021-44228 vulnerability.

Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228

CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any

An agent to hotpatch the log4j RCE from CVE-2021-44228.

Remote Code Injection In Log4j

Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.

Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)

Scanners for Jar files that may be vulnerable to CVE-2021-44228

PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs

a fast check, if your server could be vulnerable to CVE-2021-44228

A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations Manager

Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading

Log4j-RCE (CVE-2021-44228) Proof of Concept with additional information

An All-In-One Pure Python PoC for CVE-2021-44228

Exploiting CVE-2021-44228 in Unifi Network Application for remote code execution and more.

Hashes for vulnerable LOG4J versions

Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228

A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

Deploys an agent to fix CVE-2021-44228 (Log4j RCE vulnerability) in a running JVM process

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

Exploiting CVE-2021-44228 in vCenter for remote code execution and more.

Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.

Tools for investigating Log4j CVE-2021-44228

A honeypot for the Log4Shell vulnerability (CVE-2021-44228).

Apache Log4j 远程代码执行

Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046

Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)

A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.

A Docker based LDAP RCE exploit demo for CVE-2021-44228 Log4Shell

Small example repo for looking into log4j CVE-2021-44228

log4J burp被扫插件、CVE-2021-44228、支持dnclog.cn和burp内置DNS、可配合JNDIExploit生成payload

Abuse Log4J CVE-2021-44228 to patch CVE-2021-44228 in vulnerable Minecraft game sessions to prevent exploitation in the session :)

Ansible detector scanner playbook to verify target Linux hosts using the official Red Hat Log4j detector script RHSB-2021-009 Remote Code Execution -

Lists of affected components and affected apps/vendors by CVE-2021-44228 (aka Log4shell or Log4j RCE). This list is meant as a resource for security r

A mitigation for CVE-2021-44228 (log4shell) that works by patching the vulnerability at runtime. (Works with any vulnerable java software, tested with

Local Bytecode Scanner for the Log4JShell Vulnerability (CVE-2021-44228)

Scan systems and docker images for potential log4j vulnerabilities. Able to patch (remove JndiLookup.class) from layered archives. Will detect in-dept

An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.

Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class p

Tools for remediating the recent log4j2 RCE vulnerability (CVE-2021-44228)

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-202

Mitigate log4shell (CVE-2021-44228) vulnerability attacks using Nginx LUA script

log4j2 RCE漏洞（CVE-2021-44228)内网扫描器，可用于在不出网的条件下进行漏洞扫描，帮助企业内部快速发现Log4jShell漏洞。

OpenIOC rules to facilitate hunting for indicators of compromise

log4j / log4shell IoCs from multiple sources put together in one big file (IPs) more coming soon (CVE-2021-44228)

Vulnerability CVE-2021-44228 checker

Detections for CVE-2021-44228 inside of nested binaries

Scan and patch tool for CVE-2021-44228 and related log4j concerns.

CVE-2021-44228，log4j2 burp插件 Java版本，dnslog选取了非dnslog.cn域名

Spring Boot Log4j - CVE-2021-44228 Docker Lab

Hot-patch CVE-2021-44228 by exploiting the vulnerability itself.

Generate primary obfuscated or secondary obfuscated CVE-2021-44228 or CVE-2021-45046 payloads to evade WAF detection.

A Nuclei Template for Apache Log4j RCE (CVE-2021-44228) Detection with WAF Bypass Payloads

A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) attacks.

This is a proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228).

Patch up CVE-2021-44228 for minecraft forge 1.7.10 - 1.12.2

Log4j Exploit Detection Logic for Zeek

Log4j2 CVE-2021-44228 revshell, ofc it suck!!

Script to apply official workaround for VMware vCenter log4j vulnerability CVE-2021-44228

Log4Shell CVE-2021-44228 mitigation tester

IP addresses exploiting recent log4j2 vulnerability CVE-2021-44228

we are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in the

A Smart Log4Shell/Log4j/CVE-2021-44228 Scanner

Log4j Shield - fast ⚡, scalable and easy to use Log4j vulnerability CVE-2021-44228 finder and patcher

Log4j漏洞（CVE-2021-44228）的Burpsuite检测插件

An evil RMI server that can launch an arbitrary command. May be useful for CVE-2021-44228

Detect and fix log4j log4shell vulnerability (CVE-2021-44228)

A minimalistic LDAP server that is meant for test vulnerability to JNDI+LDAP injection attacks in Java, especially CVE-2021-44228.

Scanner for Log4j RCE CVE-2021-44228

Find Log4Shell CVE-2021-44228 on your system

This Log4j RCE exploit originated from https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce

Public IoCs about log4j CVE-2021-44228

Repo containing all info, scripts, etc. related to CVE-2021-44228

Apache Log4j Zero Day Vulnerability aka Log4Shell aka CVE-2021-44228

A lab demonstration of the log4shell vulnerability: CVE-2021-44228

This project will help to test the Log4j CVE-2021-44228 vulnerability.

Utilize Tai-e to identify the Log4shell (a.k.a. CVE-2021-44228) Vulnerability

CVE-2021-44228 (Log4Shell) Proof of Concept

fail2ban filter that catches attacks againts log4j CVE-2021-44228

Python3 script for scanning CVE-2021-44228 (Log4shell) vulnerable machines.

Burp Active Scan extension to identify Log4j vulnerabilities CVE-2021-44228 and CVE-2021-45046

A Proof of Concept of the Log4j vulnerabilities (CVE-2021-44228) over Java-RMI

A Proof-Of-Concept Exploit for CVE-2021-44228 vulnerability.

vulnerability POC

CVE-2021-44228 server-side fix for minecraft servers.

CVE-2021-44228 DFIR Notes

Log4j RCE - (CVE-2021-44228)

This repository contains all gathered resources we used during our Incident Reponse on CVE-2021-44228 and CVE-2021-45046 aka Log4Shell.

Identifying all log4j components across all windows servers, entire domain, can be multi domain. CVE-2021-44228

Demo to show how Log4Shell / CVE-2021-44228 vulnerability works

Generic Scanner for Apache log4j RCE CVE-2021-44228

open detection and scanning tool for discovering and fuzzing for Log4J RCE CVE-2021-44228 vulnerability

PoC for CVE-2021-44228.

CVE-2021-44228 fix

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Python script that sends CVE-2021-44228 log4j payload requests to url list

Mass Check Vulnerable Log4j CVE-2021-44228

Apply class remove process from ear/war/jar/zip archive, see https://logging.apache.org/log4j/2.x/

A scanner and a proof of sample exploit for log4j RCE CVE-2021-44228

Vulnerability CVE-2021-44228 allows remote code execution without authentication for several versions of Apache Log4j2 (Log4Shell). Attackers can expl

This tool patches the CVE-2021-44228 Log4J vulnerability present in all minecraft versions NOTE THIS TOOL MUST BE RE-RUN after downloading or updating

A Java Agent that disables Apache Log4J's JNDI Lookup to mitigate CVE-2021-44228 ("Log4Shell").

A short demo of CVE-2021-44228

CVE-2021-44228

Log4J CVE-2021-44228 Minecraft PoC

Check list of URLs against Log4j vulnerability CVE-2021-44228

Log4j CVE-2021-44228 examples: Remote Code Execution (through LDAP, RMI, ...), Forced DNS queries, ...

Log4shell - Multi-Toolkit. Find, Fix & Test possible CVE-2021-44228 vulneraries - provides a complete LOG4SHELL test/attack environment on shell

Docker images and k8s YAMLs for Log4j Vulnerability POC (Log4j (CVE-2021-44228 RCE Vulnerability)

Identifying all log4j components across on local windows servers. CVE-2021-44228

Vulnerable web application to test CVE-2021-44228 / log4shell and forensic artifacts from an example attack

Log4j2 CVE-2021-44228 Vulnerability POC in Apache Tomcat

Vulnerable to CVE-2021-44228. trustURLCodebase is not required.

CVE-2021-44228

Log4J (CVE-2021-44228) Exploit with Remote Command Execution (RCE)

Ingest GreyNoise.io malicious feed for CVE-2021-44228 and apply null routes

Log4Shell Docker Env

simple python scanner to check if your network is vulnerable to CVE-2021-44228

A singular file to protect as many Minecraft servers and clients as possible from the Log4j exploit (CVE-2021-44228).

Bash and PowerShell scripts to scan a local filesystem for Log4j .jar files which could be vulnerable to CVE-2021-44228 aka Log4Shell.

A Nuclei template for Apache Solr affected by Apache Log4J CVE-2021-44228

Fast filesystem scanner for CVE-2021-44228

Scans for Log4j versions effected by CVE-2021-44228

Dockerized honeypot for CVE-2021-44228.

log4shell (CVE-2021-44228) scanning tool

Log4Shell Proof of Concept (CVE-2021-44228)

Vulnerability analysis, patch management and exploitation tool forCVE-2021-44228 / CVE-2021-45046 / CVE-2021-4104

Ansible playbook to verify target Linux hosts using the official Red Hat Log4j detector script RHSB-2021-009 for Log4Shell (CVE-2021-44228).

log4j-paylaod generator : A generic payload generator for Apache log4j RCE CVE-2021-44228

Using this tool, you can scan for remote command execution vulnerability CVE-2021-44228 on Apache Log4j at multiple addresses.

A small server for verifing if a given java program is succeptibel to CVE-2021-44228

Buildpack providing a workaround for CVE-2021-44228 (Log4j RCE exploit)

Fixes CVE-2021-44228 in log4j by patching JndiLookup class

A bare minimum proof-of-concept for Log4j2 JNDI RCE vulnerability (CVE-2021-44228/Log4Shell).

This tool creates a custom signature set on F5 WAF and apply to policies in blocking mode

Some tools to help mitigating Apache Log4j 2 CVE-2021-44228

Public IOCs about log4j CVE-2021-44228

Check CVE-2021-44228 vulnerability

Test case to check if the Log4Shell/CVE-2021-44228 hotfix will raise any unexpected exceptions

Very simple Ansible playbook that scan filesystem for JAR files vulnerable to Log4Shell

A Remote Code Execution PoC for Log4Shell (CVE-2021-44228)

CVE-2021-44228 vulnerability in Apache Log4j library | Log4j vulnerability scanner on Windows machines.

Proof of Concept of apache log4j LDAP lookup vulnerability. CVE-2021-44228

Log4j vulner testing environment based on CVE-2021-44228. It provide guidance to build the sample infrastructure and the exploit scripts. Supporting c

An educational Proof of Concept for the Log4j Vulnerability (CVE-2021-44228) in Minecraft

Downloaded a packet capture (.pcapng) file from malware-traffic-analysis.net which was an example of an attempted attack against a webserver using the

Objective: Demonstrate the exploitation of the Log4Shell vulnerability (CVE-2021-44228) within a simulated banking application environment.

Apache Log4j2 RCE( CVE-2021-44228)验证环境

Log4j2 CVE-2021-44228 复现和回显利用

A Terraform to deploy vulnerable app and a JDNIExploit to work with CVE-2021-44228

docker compose solution to run a vaccine environment for the log4j2 vulnerability CVE-2021-44228

Apache Log4j2 CVE-2021-44228 RCE Demo with RMI and LDAP

A micro lab for CVE-2021-44228 (log4j)

pythonic pure python RCE exploit for CVE-2021-44228 log4shell

Fun things against the abuse of the recent CVE-2021-44228 (Log4Shell) vulnerability using common web servers.

Log4J CVE-2021-44228 : Mitigation Cheat Sheet

This repository contains a script that you can run on your (windows) machine to mitigate CVE-2021-44228

Simple tool for scanning entire directories for attempts of CVE-2021-44228

CVE-2021-44228 - Apache log4j RCE quick test

Find log4j for CVE-2021-44228 on some places * Log4Shell

Sample docker-compose setup to show how this exploit works

Log4J Updater Bash Script to automate the framework update process on numerous machines and prevent the CVE-2021-44228

A one-stop repo/ information hub for all log4j vulnerability-related information.

An automated header extensive scanner for detecting log4j RCE CVE-2021-44228

Simple webapp that is vulnerable to Log4Shell (CVE-2021-44228)

Script - Workaround instructions to address CVE-2021-44228 in vCenter Server

log4j2 Log4Shell CVE-2021-44228 proof of concept

Script en bash que permite identificar la vulnerabilidad Log4j CVE-2021-44228 de forma remota.

Windows Batch Scrip to Fix the log4j-issue-CVE-2021-44228

Log4Shell Demo with AWS

Log4jshell - CVE-2021-44228

Instructions for exploiting vulnerabilities CVE-2021-44228 and CVE-2023-46604

This repository presents a comprehensive walkthrough of the Solar Exploiting Log4j room on TryHackMe, with a focus on understanding and exploiting the

Patch Pulsar Docker images with Log4J 2.17.1 update to mitigate Apache Log4J Security Vulnerabilities including Log4Shell

CVE-2021-44228 POC - Spring / Hibernate

Content to help the community responding to the Log4j Vulnerability Log4Shell CVE-2021-44228

An awesome curated list of repos for CVE-2021-44228. ``Apache Log4j 2``

Sample log4j shell exploit

Some files for red team/blue team investigations into CVE-2021-44228

CVE-2021-44228

Using code search to help fix/mitigate log4j CVE-2021-44228

Log4j Remote Code Injection (Apache Log4j 2.x < 2.15.0-rc2)

log4j version 1 with a patch for CVE-2021-44228 vulnerability

Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading

Some siimple checks to see if JAR file is vulnerable to CVE-2021-44228

Simple Spring Boot application vulnerable to CVE-2021-44228 (a.k.a log4shell)

A playground for poking at the Log4Shell (CVE-2021-44228) vulnerability mitigations

log4j vulnerability wrapper scanner for CVE-2021-44228

Scanner recursivo de arquivos desenvolvido em Python 3 para localização e varredura de versões vulneráveis do Log4j2, contemplando análise interna de

Log4Shell CVE-2021-44228 Vulnerability Scanner and POC

Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading

Provide patched version of Log4J against CVE-2021-44228 and CVE-2021-45046 as well as a script to manually patch it yourself

A fun activity using a packet capture file from the log4j exploit (CVE-2021-44228)

An Inspec profile to check for Log4j CVE-2021-44228 and CVE-2021-45046

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

POC for CVE-2021-44228 within Springboot

Presents how to exploit CVE-2021-44228 vulnerability.

CVE-2021-44228 Log4j Summary

This project files demostrate a proof-of-concept of log4j vulnerability (CVE-2021-44228) on AWS using Terraform Infrastructure-as-a-code means.

Proof of concept of the Log4Shell vulnerability (CVE-2021-44228)

CVE-2021-44228 POC / Example

DO NOT USE FOR ANYTHING REAL. Simple springboot sample app with vulnerability CVE-2021-44228 aka "Log4Shell"

CVE 2021-44228 Proof-of-Concept. Log4Shell is an attack against Servers that uses vulnerable versions of Log4J.

A vulnerable Spring Boot application that uses log4j and is vulnerable to CVE-2021-44228, CVE-2021-44832, CVE-2021-45046 and CVE-2021-45105

exploit CVE-2021-44228

Proof of Concept for the Log4Shell vulnerability (CVE-2021-44228), developed as part of the coursework for the curricular unit TPAS in the Master's de

Explore CVE-2021-44228, a vulnerability in log4j affecting almost all software under the sun.

Apache Log4j 2 a remote code execution vulnerability via the ldap JNDI parser.

Mitigation for Log4Shell Security Vulnerability CVE-2021-44228

log4shell sample application (CVE-2021-44228)

Test the CVE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228

List of company advisories log4j

Log4j-RCE (CVE-2021-44228) Proof of Concept

Simple demo of CVE-2021-44228

Небольшой мод направленный на устранение уязвимости CVE-2021-44228

Apache Log4j CVE-2021-44228 漏洞复现

log4j2漏洞复现

Poc of log4j2 (CVE-2021-44228)

Dockerized Go app for testing the CVE-2021-44228 vulnerability

Known IoCs for log4j framework vulnerability

CVE-2021-44228 test demo

CVE-2021-44228 log4j mitigation using aws wafv2 with ansible

A lab for playing around with the Log4J CVE-2021-44228

Research into the implications of CVE-2021-44228 in Spring based applications.

CVE-2021-4428 复现

log4j2 CVE-2021-44228 POC

Mass recognition tool for CVE-2021-44228

demo project to highlight how to execute the log4j (CVE-2021-44228) vulnerability

CVE-2021-44228

Log4Shell A test for CVE-2021-44228

Compiling links of value i find regarding CVE-2021-44228

Demonstration of CVE-2021-44228 with a possible strategic fix.

The goal of this project is to demonstrate the log4j cve-2021-44228 exploit vulnerability in a spring-boot setup, and to show how to fix it.

Just a personal proof of concept of CVE-2021-44228 on log4j2

Professional Service scripts to aid in the identification of affected Java applications in TeamServer

Demo project to evaluate Log4j2 Vulnerability | CVE-2021-44228

Little recap of the log4j2 remote code execution (CVE-2021-44228)

Endpoint to test CVE-2021-44228 – Log4j 2

On Thursday (December 9th), a 0-day exploit in the popular Java logging library log4j (version 2) was discovered that results in Remote Code Execution

Details : CVE-2021-44228

CVE-2021-44228

CVE-2021-44228 Response Scripts

Aims to find JndiLookup.class in nearly any directory or zip, jar, ear, war file, even deeply nested.

This project is just to show Apache Log4j2 Vulnerability - aka CVE-2021-44228

Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228

A simple project to check coverage of Log4J vuln CVE-2021-44228 (and related)

fix cve 44228 for windows

Data we are receiving from our honeypots about CVE-2021-44228

CVE-2021-44228 demo webapp

This script is used to perform a fast check if your server is possibly affected by CVE-2021-44228 (the log4j vulnerability).

Simple Vulnerable Spring Boot Application to Test the CVE-2021-44228

CVE-2021-44228-Apache-Log4j

log4j mitigation work

Applications that are vulnerable to the log4j CVE-2021-44228/45046 issue may be detectable by scanning jar, war, ear, zip files to search for the pres

Log4J checker for Apache CVE-2021-44228

Test exploit of CVE-2021-44228

PoC RCE Log4j CVE-2021-4428 para pruebas

Log4Shell mitigation (CVE-2021-44228) - search and remove JNDI class from *log4j*.jar files on the system with Powershell (Windows)

Log4j2 Vulnerability (CVE-2021-44228)

Scanner for the Log4j vulnerability dubbed Log4Shell (CVE-2021-44228)

Log4Shell (CVE-2021-44228): Descrizione, Exploitation e Mitigazione

Scan your IP network and determine hosts with possible CVE-2021-44228 vulnerability in log4j library.

A collection of IOCs for CVE-2021-44228 also known as Log4Shell

A simple simulation of the infamous CVE-2021-44228 issue.

CVE-2021-44228

can find, analyse and patch Log4J files because of CVE-2021-44228, CVE-2021-45046

A scanning suite to find servers affected by the log4shell flaw (CVE-2021-44228) with example to test it

An attempt to understand the log4j vulnerability by looking through the code

Self-contained lab environment that runs the exploit safely, all from docker compose

Log4Shell (CVE-2021-44228) docker lab

This is a showcase how the Log4J vulnerability (CVE-2021-44228) could be explored. This code is safe to run, but understand what it does and how it wo

a project written in go and java i abandoned for CVE-2021-44228 try to fix it if you can XD

相关的复现和文档

Python script to detect Log4Shell Vulnerability CVE-2021-44228

Log4j2 CVE-2021-44228 hack demo for a springboot app

Script en bash que permite identificar la vulnerabilidad Log4j CVE-2021-44228 de forma remota.

Log4j 2 (CVE-2021-44228) vulnerability scanner for Windows OS

general purpose workaround for the log4j CVE-2021-44228 vulnerability

CVE-2021-44228 检查工具

Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.

this repository contains a POC of CVE-2021-44228 (log4j2shell) as part of a security research

Regra ModSec para proteção log4j2 - CVE-2021-44228

CVE-2021-44228

Log4Shell (CVE-2021-44228) is a zero-day vulnerability in Log4j

IOCs for CVE-2021-44228

Log4Shell (Cve-2021-44228) Proof Of Concept

Quick and dirty scanner, hitting common ports looking for Log4Shell (CVE-2021-44228) vulnerability

A spigot plugin to fix CVE-2021-44228 Log4j remote code execution vulnerability, to protect Minecraft clients.

This repository contains a Spring Boot web application vulnerable to CVE-2021-44228, known as log4shell.

Log4j2 LDAP 취약점 테스트 (CVE-2021-44228)

A Java application intentionally vulnerable to CVE-2021-44228

Rust implementation of the Log 4 Shell (log 4 j - CVE-2021-44228)

Log4Shell Proof-Of-Concept derived from https://github.com/kozmer/log4j-shell-poc

Log4Shell CVE-2021-44228 Demo

Apache Log4j is a logging tool written in Java. This paper focuses on what is Log4j and log4shell vulnerability and how it works, how it affects the

Simple Java Front and Back end with bad log4j version featuring CVE-2021-44228

This powershell script is intended to be used by anyone looking to remediate the Log4j Vulnerability within their environment. It can target multiple

A Proof-Of-Concept for the CVE-2021-44228 vulnerability.

this web is vulnerable against CVE-2021-44228

💣💥💀 Proof of Concept: пример запуска fork-бомбы на удаленном сервере благодаря уязвимости CVE-2021-44228

A demo of the Log4Shell (CVE-2021-44228) vulnerability.

Log4j Vulnerability RCE - CVE-2021-44228

Log4Shell (CVE-2021-44228) minecraft demo. Used for education fairs

CVE-2021-44228

jee web project with log4shell (CVE-2021-44228) vulnerability

jee web project with sanitised log4shell (CVE-2021-44228) vulnerability

This is a potentially vulnerable Java web application containing Log4j affected by log4shell(CVE-2021-44228).

Log4Shell (CVE-2021-44228) PoC Application

CVE-2021-44228 vulnerability study

Log4J exploit CVE-2021-44228

In December 2021, the world of cybersecurity was shaken by the discovery of the Log4Shell vulnerability (CVE-2021-44228), embedded within the widely-u

这是安徽大学 “漏洞分析实验”（大三秋冬）期中作业归档。完整文档位于https://testgames.me/2024/11/10/cve-2021-44228/

调试环境

This repository provides an in-depth analysis of the Log4Shell vulnerability (CVE-2021-44228) and implements a machine learning-based approach to dete

CVE-2021-44228

A Deliberately Vulnerable Web Application built on Struts 2 (CVE-2017-5638) and Log4J (CVE-2021-44228) for testing and demonstration of OWASP Top 10 W

Kiểm thử xâm nhập

The Web Is Vulnerable to CVE-2021-44228

Log4Shell (CVE-2021-44228) exploit demo for SEAS 8405. Includes a vulnerable Spring Boot app, fake LDAP server, Docker setup, MITRE mapping, incident

CVE-2021-44228 Vulnerability Reproduction Environment CVE-2021-44228 漏洞复现环境

Praktische Demonstration der Log4Shell-Sicherheitslücke (CVE-2021-44228)

A simple Log4j PoC written in Go

Log4Shell CVE-2021-44228 PoC

This repository documents how deployment of Microsoft Defender for Endpoint on a Windows 11 device, including onboarding via local script, enabling de

Log4Shell (CVE-2021-44228) PoC

Demo of CVE-2021-44228 Log4Shell.

This repository contains my work for a cybersecurity assignment where I exploited the real-world Log4Shell (CVE-2021-44228) vulnerability inside a saf

Technical deep dive into Apache Log4j2 JNDI injection vulnerability. Features static code analysis, patch comparison, attack vectors (LDAP/RMI/DNS), a

Hands-on lab for exploiting and understanding Log4Shell (CVE-2021-44228) using Docker, Kali Linux, Burp Suite and log4j-shell-poc. For teaching and de

Étude technique et mise en œuvre d'un environnement de test pour la faille Apache Log4j (CVE-2021-44228). Contient un Proof of Concept (PoC) Dockerisé

**Log4Shell PoC is a high-fidelity exploitation environment designed to replicate the CVE-2021-44228 vulnerability.** It provides a containerized sand

Log4Shell (CVE-2021-44228) security remediation demo - Showcasing Antigravity's ability to identify and fix critical security vulnerabilities in Java

CVE-2021-44228

POC for log4shll Vulnerablity (CVE-2021-44228)

CVE-2021-44228 Log4Shell — Penetration Test Writeup

This room is based on exploiting the notorious Log4j vulnerability ( CVE-2021-44228), also referred to as the Log4Shell. The weakness enables attacker

This repository provides a detailed walkthrough of the *Solar Exploiting Log4j room* on TryHackMe, focusing on exploiting the critical Log4Shell vuln

Performed a live cybersecurity assessment on a university Linux server. During analysis, active attack activity was identified, including brute-force

PoC of CVE-2021-44228

Multi-Stage Attack Modeling and Detection of Log4Shell for CVE-2021-44228

Log4Shell (CVE-2021-44228) defense lab — nginx + Coraza WAF dynamic module + OWASP CRS v4. Educational use only.

Log4Shell (CVE-2021-44228)

CRAReady SBOM test fixture — Java/Maven app with Log4Shell (CVE-2021-44228), Spring4Shell, Text4Shell, and other critical CVEs

Pentesting caja negra: Shellshock (CVE-2014-6271) + Log4Shell (CVE-2021-44228). Escalada a root. Informe ejecutivo y técnico

Intentionally vulnerable Log4j 2.14.1 demo for Sysdig CNAPP scanning (CVE-2021-44228)

Laboratorio automatizado Plug & Play en Docker para auditar y estudiar la vulnerabilidad Log4Shell (CVE-2021-44228)