Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
-
Updated
Jun 15, 2022 - Python
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
Simple local scanner for vulnerable log4j instances
Remote command execution vulnerability scanner for Log4j.
An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
A collection of intelligence about Log4Shell and its exploitation activity.
A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations Manager
A Docker based LDAP RCE exploit demo for CVE-2021-44228 Log4Shell
Log4j Vulnerability Scanner for Windows
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)
Add a description, image, and links to the log4shell topic page so that developers can more easily learn about it.
To associate your repository with the log4shell topic, visit your repo's landing page and select "manage topics."