Learn how to gain backdoor access by exploiting the Log4j vulnerability! Log4j is an open-source framework that helps developers store various types of logs produced by users. Log4j, also known as Log4shell and LogJam, is a zero-day RCE (Remote Code Execution) vulnerability tracked under CVE-2021–44228. Log4j enables insecure lookups and can be exploited to exfiltrate data or execute arbitrary code.
Note: Here, we will install a vulnerable application in a Ubuntu machine and use a Parrot Security machine to target the application.
