A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
☆640Mar 10, 2022Updated 4 years ago
Alternatives and similar repositories for log4j-detector
Users that are interested in log4j-detector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Public testing data. Samples of log4j library versions to help log4j scanners / detectors improve their accuracy for detecting CVE-2021-…☆14Dec 30, 2021Updated 4 years ago
- [Moved to Codeberg] Simple local scanner for vulnerable log4j instances☆372Aug 1, 2022Updated 3 years ago
- Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)☆352Dec 20, 2021Updated 4 years ago
- An agent to hotpatch the log4j RCE from CVE-2021-44228.☆497Oct 24, 2022Updated 3 years ago
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆3,428Nov 23, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Detector for Log4Shell exploitation attempts☆726Feb 12, 2022Updated 4 years ago
- log4j rce test environment and poc☆311Dec 15, 2021Updated 4 years ago
- Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-2…☆39Jun 21, 2023Updated 2 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,885Jun 15, 2022Updated 3 years ago
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆440Dec 27, 2022Updated 3 years ago
- ☆172Feb 14, 2025Updated last year
- A Proof-Of-Concept for the CVE-2021-44228 vulnerability.☆1,848Feb 12, 2024Updated 2 years ago
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,280Dec 6, 2022Updated 3 years ago
- ☆2,074Dec 13, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A community sourced list of log4j-affected software☆1,123Nov 9, 2022Updated 3 years ago
- LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…☆1,469May 2, 2024Updated 2 years ago
- Detection rules to look for Log4J usage and exploitation☆18Jun 21, 2025Updated 11 months ago
- Scanners for Jar files that may be vulnerable to CVE-2021-44228☆349Mar 23, 2022Updated 4 years ago
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.☆126Dec 14, 2021Updated 4 years ago
- Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell☆1,694Dec 22, 2021Updated 4 years ago
- nse script to inject jndi payloads☆47Dec 13, 2021Updated 4 years ago
- ☆108Apr 14, 2023Updated 3 years ago
- log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services☆489Feb 25, 2023Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,060Jul 10, 2022Updated 3 years ago
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆950Jan 15, 2022Updated 4 years ago
- An example of bytecode modifying Java agents done with Javassist and Byte Buddy☆10Nov 4, 2017Updated 8 years ago
- Log4j-Scanner with Bind-Receipt and custom hostnames☆18Dec 27, 2021Updated 4 years ago
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆657Apr 7, 2022Updated 4 years ago
- Scans and catches callbacks of systems that are impacted by Log4J Log4Shell vulnerability across specific headers.☆59Dec 11, 2021Updated 4 years ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆395Dec 11, 2024Updated last year
- An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒☆230Aug 25, 2022Updated 3 years ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).☆1,144Apr 26, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Remote command execution vulnerability scanner for Log4j.☆251Aug 1, 2023Updated 2 years ago
- JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…☆939Sep 2, 2025Updated 9 months ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,563Jun 30, 2022Updated 3 years ago
- ☆30Jan 13, 2026Updated 5 months ago
- Misc resources for my daily pentesting...☆19Mar 26, 2025Updated last year
- Apache Log4j 远程代码执行☆89May 14, 2023Updated 3 years ago
- Dump Windows registry hives as text.☆17Feb 9, 2019Updated 7 years ago