log4j.java - modification of [this PoC] (https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce) to run a bunch of payloads from [JNDIExploit](https://github.com/0x727/JNDIExploit).
jndi.pcap - a PCAP of each of these payloads being ran.
snort.rules - Snort rules to detect the LDAP and HTTP connections. Pull requests to make the HTTP ones work are appreciated.
[Accompanying blog post](https://www.kimobu.space/posts/log4j-JDNI-Exploitation/)