# XSYS-Log4J2Shell-Ex
`CVE-2021-44228 (log4j2shell)` PoC as part of a security research for a vulnerability patch

## Overview

In this repository I will cover several topics and implementations

which provide a PROOF OF CONCEPT regarding the Log4J 2.17.0 vulnerability .

The main goal is to provide a PATCH for CVE-2021-44228 and ensure 

a JNDI RCE bypass via Headers and/or Body payloads.


I will provide two types of application for this PoC . 

1. Apache J2EE application which is vulnerable .

2. Apache J2EE application which were patched .