Log4jTools
Tools for investigating Log4j CVE-2021-44228
FetchPayload.py (Get java payload from ldap path provided in JNDI lookup).
Example command:
Requirements: curl (system), requests (python)
python FetchPayload.py ldap://maliciouserver:1337/path
[+] getting object from ldap://maliciouserver:1337/path
[+] exploit payload: http://maliciouserver:80/Exploit.class
[+] seeing if attacker left behind un-compile payload http://maliciouserver:80/Exploit.java
[x] failed to find payload Exploit.java
[+] trying to fetch compiled payload http://maliciouserver:80/Exploit.class
[+] found payload and saved to file Exploit.class_
2 Jan 01, 2022
161 Jan 02, 2023
5 Oct 09, 2022
33 Jan 04, 2023
153 Dec 20, 2022
8.3k Jan 08, 2023
136 Dec 13, 2022
9 Feb 15, 2022
263 Jan 01, 2023
21 Dec 27, 2022
2 Dec 02, 2022
65 Nov 17, 2022
8 Jul 05, 2022
43 Dec 23, 2022
53 Dec 31, 2022
2.7k Jan 09, 2023
5 May 18, 2022
5 Apr 04, 2022
315 Dec 28, 2022
28 Oct 28, 2022