Vulnerability — CVE-2021-44228

CVE-2021-44228

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2021-44228
Description:: Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.
Last updated date:: 07/24/2024

Reports

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://twitter.com/Balgan/status/1469298678963834892

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 12/21/2021
Reference url to background: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/09/2021
Reference url to background: https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/09/2021
Reference url to background: https://github.com/Glease/Healer

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/jacobtread/L4J-Vuln-Patch

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/jas502n/Log4j2-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/HyCraftHD/Log4J-RCE-Proof-Of-Concept

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/boundaryx/cloudrasp-log4j2

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/CreeperHost/Log4jPatcher

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/DragonSurvivalEU/RCE

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/simonis/Log4jPatch

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/zlepper/CVE-2021-44228-Test-Server

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/christophetd/log4shell-vulnerable-app

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/NorthwaveSecurity/log4jcheck

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/nkoneko/VictimApp

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/KosmX/CVE-2021-44228-example

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/greymd/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/mubix/CVE-2021-44228-Log4Shell-Hashes

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/OopsieWoopsie/mc-log4j-patcher

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/0xst4n/CVE-2021-44228-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/StandB/CVE-2021-44228-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/standb/CVE-2021-44228-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/takito1812/log4j-detect

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/winnpixie/log4noshell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/Azeemering/CVE-2021-44228-DFIR-Notes

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/kozmer/log4j-shell-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/alexandreroman/cve-2021-44228-workaround-buildpack

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/10/2021
Reference url to background: https://github.com/Adikso/minecraft-log4j-honeypot

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/1lann/log4shelldetect

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/phoswald/sample-ldap-exploit

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/rakutentech/jndi-ldap-test-server

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/ssstonebraker/log4j_CVE-2021-44228_tester

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/saharNooby/log4j-vulnerability-patcher-agent

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/f0ng/log4j2burpscanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/M1ngGod/CVE-2021-44228-Log4j-lookup-Rce

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/lhotari/log4shell-mitigation-tester

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/toramanemre/log4j-rce-detect-waf-bypass

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/logpresso/CVE-2021-44228-Scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/vorburger/Log4j_CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/b-abderrahmane/CVE-2021-44228-playground

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/js-on/jndiRep

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/PwnC00re/Log4J_0day_RCE

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/Mormoroth/log4j-vulnerable-app-cve-2021-44228-terraform

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/Sh0ckFR/log4j-CVE-2021-44228-Public-IoCs

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/zzzz0317/log4j2-vulnerable-spring-app

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/darkarnium/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/darkarnium/Log4j-CVE-Detect

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/11/2021
Reference url to background: https://github.com/irgoncalves/f5-waf-enforce-sig-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/mergebase/log4j-detector

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/unlimitedsola/log4j2-rce-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/Jeromeyoung/log4j2burpscanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/corretto/hotpatch-for-apache-log4j2

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/alexandre-lavoie/python-log4rce

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/RedDrip7/Log4Shell_CVE-2021-44228_related_attacks_IOCs

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/mzlogin/CVE-2021-44228-Demo

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/blake-fm/vcenter-log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/sud0x00/log4j-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/myyxl/cve-2021-44228-minecraft-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/0-x-2-2/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/future-client/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/CodeShield-Security/Log4JShell-Bytecode-Detector

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/dtact/divd-2021-00038--log4j-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/Malwar3Ninja/Exploitation-of-Log4j2-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/ssl/scan4log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/infiniroot/nginx-mitigate-log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/authomize/log4j-log4shell-affected

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/qingtengyun/cve-2021-44228-qingteng-patch

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/nccgroup/log4j-jndi-be-gone

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/qingtengyun/cve-2021-44228-qingteng-online-patch

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/Hydragyrum/evil-rmi-server

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/twseptian/Spring-Boot-Log4j-CVE-2021-44228-Docker-Lab

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/twseptian/spring-boot-log4j-cve-2021-44228-docker-lab

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/OlafHaalstra/log4jcheck

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/momos1337/Log4j-RCE

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/cyberxml/log4j-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/corneacristian/Log4J-CVE-2021-44228-RCE

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/Diverto/nse-log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/dotPY-hax/log4py

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/12/2021
Reference url to background: https://github.com/sunnyvale-it/CVE-2021-44228-PoC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/atnetws/fail2ban-log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/bigsizeme/Log4j-check

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/pedrohavay/exploit-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/0xRyan/log4j-nullroute

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/fireeye/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/fullhunt/log4j-scan

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/rubo77/log4j_checker_beta

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/hupe1980/scan4log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/thecyberneh/Log4j-RCE-Exploiter

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/ycdxsb/Log4Shell-CVE-2021-44228-ENV

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/kek-Sec/log4j-scanner-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/sinakeshmiri/log4jScan

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/0xDexter0us/Log4J-Scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/0xsyr0/CVE-2021-44228-log4j-log4shell-Security-Research-Summary

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/0xsyr0/Log4Shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/ahmad4fifz/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/jeffli1024/log4j-rce-test

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/zsolt-halo/CVE-2021-44228-Spring-Boot-Test-Service

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/zsolt-halo/Log4J-Log4Shell-CVE-2021-44228-Spring-Boot-Test-Service

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/manuel-alvarez-alvarez/log4j-cve-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/justakazh/Log4j-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/irgoncalves/f5-waf-quick-patch-cve-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/madCdan/JndiLookup

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/Koupah/MC-Log4j-Patcher

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/AlexandreHeroux/Fix-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/hackinghippo/log4shell_ioc_ips

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/claranet/ansible-role-log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/corelight/cve-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/lfama/log4j_checker

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/threatmonit/Log4j-IOCs

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/giterlizzi/nmap-log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/Occamsec/log4j-checker

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/back2root/log4shell-rex

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/alexbakker/log4shell-tools

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/13/2021
Reference url to background: https://github.com/name/log4j-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/faisalfs10x/Log4j2-CVE-2021-44228-revshell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/0xInfection/LogMePwn

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/toramanemre/apache-solr-log4j-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/codiobert/log4j-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/zhzyker/logmap

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/fox-it/log4j-finder

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/rwincey/CVE-2021-44228-Log4j-Payloads

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/wortell/log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/BinaryDefense/log4j-honeypot-flask

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/MalwareTech/Log4jTools

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/mufeedvh/log4jail

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/ab0x90/CVE-2021-44228_PoC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/stripe/log4j-remediation-tools

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/razz0r/CVE-2021-44228-Mass-RCE

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/xsultan/log4jshield

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/HynekPetrak/log4shell-finder

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/HynekPetrak/log4shell_finder

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/14/2021
Reference url to background: https://github.com/CERTCC/CVE-2021-44228_scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/CrackerCat/CVE-2021-44228-Log4j-Payloads

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/dbzoo/log4j_scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/KeysAU/Get-log4j-Windows.ps1

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/kubearmor/log4j-CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/redhuntlabs/Log4JHunt

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/mss/log4shell-hotfix-side-effect

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/mitiga/log4shell-cloud-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/isuruwa/Log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/inettgmbh/checkmk-log4j-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/pmontesd/log4j-cve-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/LiveOverflow/log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/aws-samples/kubernetes-log4j-cve-2021-44228-node-agent

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/michaelsanford/Log4Shell-Honeypot

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/thomaspatzke/Log4Pot

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/15/2021
Reference url to background: https://github.com/ubitech/cve-2021-44228-rce-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/roxas-tan/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/shamo0/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/snow0715/log4j-Scan-Burpsuite

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/Joefreedy/Log4j-Windows-Scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/log4shell_scanner.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/Nanitor/log4fix

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/DXC-StrikeForce/Burp-Log4j-HammerTime

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: http://packetstormsecurity.com/files/165261/Apache-Log4j2-2.14.1-Information-Disclosure.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: http://packetstormsecurity.com/files/165270/Apache-Log4j2-2.14.1-Remote-Code-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://twitter.com/kurtseifried/status/1469345530182455296

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/Kr0ff/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/16/2021
Reference url to background: https://github.com/suuhm/log4shell4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/17/2021
Reference url to background: https://github.com/obscuritylabs/log4shell-poc-lab

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/17/2021
Reference url to background: https://github.com/ankur-katiyar/log4j-docker

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/17/2021
Reference url to background: https://github.com/immunityinc/Log4j-JNDIServer

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2021
Reference url to background: https://github.com/TheInterception/Log4J-Simulation-Tool

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2021
Reference url to background: https://github.com/KeysAU/Get-log4j-Windows-local

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2021
Reference url to background: https://github.com/mschmnet/Log4Shell-demo

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2021
Reference url to background: https://github.com/puzzlepeaches/Log4jCenter

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2021
Reference url to background: https://github.com/Labout/log4shell-rmi-poc

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2021
Reference url to background: https://github.com/JagarYousef/log4j-dork-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2021
Reference url to background: https://github.com/cergo123/log4j-dork-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2021
Reference url to background: https://github.com/Y0-kan/Log4jShell-Scan

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2021
Reference url to background: https://github.com/julian911015/Log4j-Scanner-Exploit

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2021
Reference url to background: https://github.com/snapattack/damn-vulnerable-log4j-app

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/21/2021
Reference url to background: https://github.com/sassoftware/loguccino

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/21/2021
Reference url to background: https://github.com/lucab85/log4j-cve-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/22/2021
Reference url to background: https://github.com/ossie-git/log4shell_sentinel

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/22/2021
Reference url to background: https://github.com/r00thunter/Log4Shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/22/2021
Reference url to background: https://github.com/0x3SC4L4T3/Apache-Log4j-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/22/2021
Reference url to background: https://github.com/badb33f/Apache-Log4j-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/23/2021
Reference url to background: https://github.com/TaroballzChen/CVE-2021-44228-log4jVulnScanner-metasploit

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/23/2021
Reference url to background: https://github.com/lucab85/ansible-role-log4shell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/ainrm/log4j-scan

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/cybersecurityworks553/log4j-shell-csw

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/puzzlepeaches/Log4jUnifi

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/many-fac3d-g0d/apache-tomcat-log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/marcourbano/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/24/2021
Reference url to background: https://github.com/marcourbano/Log4Shell_PoC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/27/2021
Reference url to background: https://github.com/yesspider-hacker/log4j-payload-generator

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/28/2021
Reference url to background: https://github.com/NS-Sp4ce/Vm4J

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/04/2022
Reference url to background: https://github.com/4jfinder/4jfinder.github.io

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/05/2022
Reference url to background: https://github.com/mr-r3b00t/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/05/2022
Reference url to background: https://github.com/puzzlepeaches/Log4jHorizon

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/08/2022
Reference url to background: https://github.com/mr-vill4in/log4j-fuzzer

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/09/2022
Reference url to background: https://github.com/maximofernandezriera/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/11/2022
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/log4shell_header_injection.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/13/2022
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vmware_vcenter_log4shell.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/18/2022
Reference url to background: https://github.com/ColdFusionX/CVE-2021-44228-Log4Shell-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/21/2022
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/ubiquiti_unifi_log4shell.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/12/2022
Reference url to background: https://github.com/hotpotcookie/CVE-2021-44228-white-box

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/12/2022
Reference url to background: https://github.com/hotpotcookie/log4shell-white-box

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/24/2022
Reference url to background: https://github.com/Ananya-0306/Log-4j-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/18/2022
Reference url to background: https://github.com/ExploitPwner/CVE-2021-44228-Mass-RCE-Log4j

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/09/2022
Reference url to background: https://github.com/r3kind1e/Log4Shell-obfuscated-payloads-generator

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/30/2022
Reference url to background: https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/30/2022
Reference url to background: https://www.nu11secur1ty.com/2021/12/cve-2021-44228.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/02/2022
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/mobileiron_core_log4shell.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/09/2022
Reference url to background: http://packetstormsecurity.com/files/167917/MobileIron-Log4Shell-Remote-Command-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/31/2023
Reference url to background: https://github.com/demining/Log4j-Vulnerability

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/06/2023
Reference url to background: http://seclists.org/fulldisclosure/2022/Dec/2

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/29/2023
Reference url to background: https://github.com/MrHarshvardhan/PY-Log4j-RCE-Scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/06/2023
Reference url to background: https://github.com/Tai-e/CVE-2021-44228

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/24/2024
Reference url to background: http://packetstormsecurity.com/files/165371/VMware-Security-Advisory-2021-0028.4.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/24/2024
Reference url to background: http://packetstormsecurity.com/files/165532/Log4Shell-HTTP-Header-Injection.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/24/2024
Reference url to background: http://packetstormsecurity.com/files/165642/VMware-vCenter-Server-Unauthenticated-Log4Shell-JNDI-Injection-Remote-Code-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/24/2024
Reference url to background: http://packetstormsecurity.com/files/165673/UniFi-Network-Application-Unauthenticated-Log4Shell-Remote-Code-Execution.html