Share 
## https://sploitus.com/exploit?id=547FC254-3B26-59EC-AF4D-E5954678AC3D
# CVE-2021-44228
https://nvd.nist.gov/vuln/detail/CVE-2021-44228

log4j.java - modification of [this PoC] (https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce) to run a bunch of payloads from [JNDIExploit](https://github.com/0x727/JNDIExploit).  
jndi.pcap - a PCAP of each of these payloads being ran.  
snort.rules - Snort rules to detect the LDAP and HTTP connections. Pull requests to make the HTTP ones work are appreciated.

[Accompanying blog post](https://www.kimobu.space/posts/log4j-JDNI-Exploitation/)