Alternatives and similar repositories for log4shell:

Users that are interested in log4shell are comparing it to the libraries listed below

• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆732Updated 3 years ago
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,121Updated 2 years ago
• cisagov / log4j-scanner
  log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…
  ☆1,279Updated 2 years ago
• fullhunt / log4j-scan
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,411Updated 2 years ago
• huntresslabs / log4shell-tester
  ☆362Updated 2 years ago
• Cybereason / Logout4Shell
  Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
  ☆1,708Updated 3 years ago
• hillu / local-log4j-vuln-scanner
  Simple local scanner for vulnerable log4j instances
  ☆374Updated 2 years ago
• fox-it / log4j-finder
  Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
  ☆436Updated 2 years ago
• christophetd / log4shell-vulnerable-app
  Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
  ☆1,116Updated 11 months ago
• YfryTchsGD / Log4jAttackSurface
  ☆2,079Updated 3 years ago
• mergebase / log4j-detector
  A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-syst…
  ☆637Updated 3 years ago
• lunasec-io / lunasec
  LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…
  ☆1,444Updated 10 months ago
• Diverto / nse-log4shell
  Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)
  ☆349Updated 3 years ago
• CERTCC / CVE-2021-44228_scanner
  Scanners for Jar files that may be vulnerable to CVE-2021-44228
  ☆345Updated 3 years ago
• NCSC-NL / OpenSSL-2022
  Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3
  ☆530Updated 2 years ago
• proferosec / log4jScanner
  log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services
  ☆487Updated 2 years ago
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆932Updated 3 years ago
• leonjza / log4jpwn
  log4j rce test environment and poc
  ☆309Updated 3 years ago
• google / log4jscanner
  A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
  ☆1,568Updated 2 years ago
• roottusk / vapi
  vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
  ☆1,216Updated 2 months ago
• mandiant / Mandiant-Azure-AD-Investigator
  ☆622Updated last year
• kozmer / log4j-shell-poc
  A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
  ☆1,822Updated last year
• punk-security / dnsReaper
  dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!
  ☆2,087Updated 5 months ago
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆724Updated 2 years ago
• veracode-research / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆1,026Updated last year
• github / advisory-database
  Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
  ☆1,837Updated this week
• ovotech / gitoops
  all paths lead to clouds
  ☆638Updated last year
• BugAlertDotOrg / bugalert
  ☆205Updated last year
• pwnesia / dnstake
  DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
  ☆839Updated 2 years ago
• Puliczek / awesome-list-of-secrets-in-environment-variables
  🦄🔒 Awesome list of secrets in environment variables 🖥️
  ☆881Updated 2 years ago