Log4jTools
Tools for investigating Log4j CVE-2021-44228
FetchPayload.py (Get java payload from ldap path provided in JNDI lookup).
Example command:
Requirements: curl (system), requests (python)
python FetchPayload.py ldap://maliciouserver:1337/path
[+] getting object from ldap://maliciouserver:1337/path
[+] exploit payload: http://maliciouserver:80/Exploit.class
[+] seeing if attacker left behind un-compile payload http://maliciouserver:80/Exploit.java
[x] failed to find payload Exploit.java
[+] trying to fetch compiled payload http://maliciouserver:80/Exploit.class
[+] found payload and saved to file Exploit.class_
14 Aug 17, 2022
168 Nov 09, 2022
14 Jun 24, 2022
103 Aug 20, 2022
4.9k Jan 08, 2023
1.7k Dec 28, 2022
1 Nov 28, 2021
295 Jan 06, 2023
263 Jan 01, 2023
6 Sep 22, 2022
118 Dec 24, 2022
1 Oct 28, 2021
7 Mar 08, 2022
48 Jun 20, 2022
6 Jun 29, 2022
2.7k Jan 09, 2023
216 Jan 08, 2023
133 Dec 24, 2022
1.2k Dec 25, 2022
3 Feb 03, 2022