A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
☆640Mar 10, 2022Updated 4 years ago
Alternatives and similar repositories for log4j-detector
Users that are interested in log4j-detector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Public testing data. Samples of log4j library versions to help log4j scanners / detectors improve their accuracy for detecting CVE-2021-…☆14Dec 30, 2021Updated 4 years ago
- [Moved to Codeberg] Simple local scanner for vulnerable log4j instances☆374Aug 1, 2022Updated 3 years ago
- Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)☆352Dec 20, 2021Updated 4 years ago
- An agent to hotpatch the log4j RCE from CVE-2021-44228.☆496Oct 24, 2022Updated 3 years ago
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆3,430Nov 23, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Detector for Log4Shell exploitation attempts☆727Feb 12, 2022Updated 4 years ago
- log4j rce test environment and poc☆311Dec 15, 2021Updated 4 years ago
- Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-2…☆39Jun 21, 2023Updated 2 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,886Jun 15, 2022Updated 3 years ago
- An All-In-One Pure Python PoC for CVE-2021-44228☆178Dec 16, 2021Updated 4 years ago
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆439Dec 27, 2022Updated 3 years ago
- ☆172Feb 14, 2025Updated last year
- A Proof-Of-Concept for the CVE-2021-44228 vulnerability.☆1,852Feb 12, 2024Updated 2 years ago
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,281Dec 6, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆2,078Dec 13, 2021Updated 4 years ago
- A community sourced list of log4j-affected software☆1,124Nov 9, 2022Updated 3 years ago
- LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…☆1,469May 2, 2024Updated 2 years ago
- Detection rules to look for Log4J usage and exploitation☆18Jun 21, 2025Updated 10 months ago
- Scanners for Jar files that may be vulnerable to CVE-2021-44228☆350Mar 23, 2022Updated 4 years ago
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.☆126Dec 14, 2021Updated 4 years ago
- Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell☆1,695Dec 22, 2021Updated 4 years ago
- nse script to inject jndi payloads☆47Dec 13, 2021Updated 4 years ago
- ☆108Apr 14, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services☆490Feb 25, 2023Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,055Jul 10, 2022Updated 3 years ago
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆952Jan 15, 2022Updated 4 years ago
- An example of bytecode modifying Java agents done with Javassist and Byte Buddy☆10Nov 4, 2017Updated 8 years ago
- Log4j-Scanner with Bind-Receipt and custom hostnames☆18Dec 27, 2021Updated 4 years ago
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆656Apr 7, 2022Updated 4 years ago
- Scans and catches callbacks of systems that are impacted by Log4J Log4Shell vulnerability across specific headers.☆59Dec 11, 2021Updated 4 years ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆397Dec 11, 2024Updated last year
- An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒☆230Aug 25, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Remote command execution vulnerability scanner for Log4j.☆251Aug 1, 2023Updated 2 years ago
- JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…☆939Sep 2, 2025Updated 8 months ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,565Jun 30, 2022Updated 3 years ago
- Misc resources for my daily pentesting...☆19Mar 26, 2025Updated last year
- Apache Log4j 远程代码执行☆90May 14, 2023Updated 2 years ago
- Tool to find SMTP servers vulnerable to open relay☆82Feb 13, 2020Updated 6 years ago
- Screenshot Shenanigans☆25Nov 20, 2017Updated 8 years ago