POC详情: 9a7b05f23231af841f61a93335e8c25122c1c8a5

来源
https://github.com/Joefreedy/Log4j-Windows-Scanner
关联漏洞
标题: Apache Log4j 代码问题漏洞 (CVE-2021-44228)
描述:Apache Log4j是美国阿帕奇(Apache)基金会的一款基于Java的开源日志记录工具。 Apache Log4J 存在代码问题漏洞,攻击者可设计一个数据请求发送给使用 Apache Log4j工具的服务器,当该请求被打印成日志时就会触发远程代码执行。
描述
CVE-2021-44228 vulnerability in Apache Log4j library | Log4j vulnerability scanner on Windows machines.
介绍
# Log4j-Windows-Scanner
CVE-2021-44228 vulnerability in Apache Log4j library | Log4j vulnerability scanner on Windows machines.


## How does it work

It detects the vulnerable versions of log4j by following the folders in the C Directory. 

When it exposes vulnerable files, it reveals ".TXT" files as output. Unable to scan file "log.txt". 

In other words, it will list the directories whose contents cannot be read because it cannot access a directory due to its privileges. 

Please follow these folders. Make sure you run it with administrator privilege. 

At the next stage, it will search inside the "JndiLookup.class" file in vulnerable versions.

![alt text](https://i.imgur.com/CmRuyIX.png)


## Usage

```none
on any command screen > Log4j.exe
```


## Suggestion

It is useful to remember that. With this scanner, it only makes short-term scans and tries to guess the vulnerable files by acting on the versions announced today. 
Please do your necessary simultaneous tests.


## CVE-2021-44228

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228

- https://nvd.nist.gov/vuln/detail/CVE-2021-44228

This is not PoC

## Contact

Twitter: [@oulusoyum](https://twitter.com/oulusoyum)
文件快照

 [4.0K]  /data/pocs/9a7b05f23231af841f61a93335e8c25122c1c8a5
├── [4.0K]  Log4j Scanner
│   ├── [124K]  Log4j.exe
│   ├── [7.7K]  Program.cs
│   └── [ 10K]  Proje1.dll
└── [1.2K]  README.md

1 directory, 4 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。