google / log4jscanner

Related projects: ⓘ

• proferosec / log4jScanner
  log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services
  ☆490Updated last year
• fullhunt / log4j-scan
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,399Updated last year
• Cybereason / Logout4Shell
  Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
  ☆1,713Updated 2 years ago
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆729Updated 2 years ago
• ycd / dstp
  🧪 Run common networking tests against any site.
  ☆969Updated 2 years ago
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,750Updated this week
• fox-it / log4j-finder
  Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
  ☆435Updated last year
• NCSC-NL / log4shell
  Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
  ☆1,892Updated 2 years ago
• lunasec-io / lunasec
  LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…
  ☆1,435Updated 4 months ago
• praetorian-inc / gokart
  A static analysis tool for securing Go code
  ☆2,177Updated 7 months ago
• YfryTchsGD / Log4jAttackSurface
  ☆2,085Updated 2 years ago
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,118Updated last year
• huntresslabs / log4shell-tester
  ☆360Updated last year
• liamg / traitor
  Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
  ☆6,604Updated 6 months ago
• teler-sh / teler
  Real-time HTTP Intrusion Detection
  ☆3,003Updated 7 months ago
• christophetd / log4shell-vulnerable-app
  Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
  ☆1,101Updated 4 months ago
• projectdiscovery / proxify
  A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.
  ☆2,684Updated this week
• jvns / dnspeep
  spy on the DNS queries your computer is making
  ☆1,347Updated 3 weeks ago
• cisagov / log4j-scanner
  log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…
  ☆1,276Updated last year
• irsl / gcp-dhcp-takeover-code-exec
  Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent
  ☆531Updated 3 years ago
• corretto / hotpatch-for-apache-log4j2
  An agent to hotpatch the log4j RCE from CVE-2021-44228.
  ☆493Updated last year
• ContainerSSH / ContainerSSH
  ContainerSSH: Launch containers on demand
  ☆2,659Updated last month
• v-byte-cpu / sx
  Fast, modern, easy-to-use network scanner
  ☆1,441Updated 11 months ago
• cybersecsi / RAUDI
  A repo to automatically generate and keep updated a series of Docker images through GitHub Actions.
  ☆545Updated this week
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆932Updated 2 years ago
• github / advisory-database
  Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
  ☆1,709Updated this week
• back2root / log4shell-rex
  PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs
  ☆293Updated 2 years ago
• projectdiscovery / uncover
  Quickly discover exposed hosts on the internet using multiple search engines.
  ☆2,374Updated this week
• ovotech / gitoops
  all paths lead to clouds
  ☆635Updated 11 months ago
• cyberark / kubesploit
  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…
  ☆1,113Updated 2 months ago