fullhunt / log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
β3,409Updated 2 years ago
Alternatives and similar repositories for log4j-scan:
Users that are interested in log4j-scan are comparing it to the libraries listed below
- An OOB interaction gathering server and client libraryβ3,636Updated this week
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).β1,115Updated 10 months ago
- π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricksβ933Updated 3 years ago
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ5,652Updated 7 months ago
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,003Updated this week
- Log4j2 RCE Passive Scanner plugin for BurpSuiteβ792Updated last year
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,009Updated this week
- Contextual Content Discovery Toolβ2,764Updated 10 months ago
- HTTP parameter discovery suite.β5,496Updated 3 weeks ago
- a drop-in replacement for Nmap powered by shodan.ioβ2,974Updated 2 weeks ago
- β2,079Updated 3 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,148Updated 5 months ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.β5,551Updated 2 months ago
- Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)β3,238Updated 4 months ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.β1,897Updated 2 years ago
- File upload vulnerability scanner and exploitation tool.β3,170Updated last year
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β9,782Updated this week
- Adversary Emulation Frameworkβ9,018Updated 2 weeks ago
- Web application fuzzerβ6,090Updated 6 months ago
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vulβ¦β1,280Updated 2 years ago
- Detector for Log4Shell exploitation attemptsβ732Updated 3 years ago
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password π‘οΈβ5,971Updated this week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,422Updated last year
- The Swiss Army knife for automated Web Application Testingβ2,202Updated 10 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,226Updated 2 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β6,073Updated last week
- A fast, simple, recursive content discovery tool written in Rust.β6,300Updated this week
- Rockyou for web fuzzingβ2,728Updated 2 weeks ago
- A swiss army knife for pentesting networksβ8,617Updated last year
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.β5,203Updated 4 months ago