A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
☆640Mar 10, 2022Updated 4 years ago
Alternatives and similar repositories for log4j-detector
Users that are interested in log4j-detector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Public testing data. Samples of log4j library versions to help log4j scanners / detectors improve their accuracy for detecting CVE-2021-…☆14Dec 30, 2021Updated 4 years ago
- [Moved to Codeberg] Simple local scanner for vulnerable log4j instances☆373Aug 1, 2022Updated 3 years ago
- Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)☆352Dec 20, 2021Updated 4 years ago
- An agent to hotpatch the log4j RCE from CVE-2021-44228.☆496Oct 24, 2022Updated 3 years ago
- Detector for Log4Shell exploitation attempts☆727Feb 12, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- log4j rce test environment and poc☆311Dec 15, 2021Updated 4 years ago
- Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-2…☆39Jun 21, 2023Updated 2 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,887Jun 15, 2022Updated 3 years ago
- An All-In-One Pure Python PoC for CVE-2021-44228☆178Dec 16, 2021Updated 4 years ago
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆439Dec 27, 2022Updated 3 years ago
- ☆172Feb 14, 2025Updated last year
- A Proof-Of-Concept for the CVE-2021-44228 vulnerability.☆1,849Feb 12, 2024Updated 2 years ago
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,280Dec 6, 2022Updated 3 years ago
- ☆2,075Dec 13, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A community sourced list of log4j-affected software☆1,124Nov 9, 2022Updated 3 years ago
- LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Reque…☆1,469May 2, 2024Updated 2 years ago
- Detection rules to look for Log4J usage and exploitation☆18Jun 21, 2025Updated 11 months ago
- Scanners for Jar files that may be vulnerable to CVE-2021-44228☆350Mar 23, 2022Updated 4 years ago
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.☆126Dec 14, 2021Updated 4 years ago
- Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell☆1,694Dec 22, 2021Updated 4 years ago
- nse script to inject jndi payloads☆47Dec 13, 2021Updated 4 years ago
- A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.☆72Jan 4, 2022Updated 4 years ago
- ☆108Apr 14, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services☆490Feb 25, 2023Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,057Jul 10, 2022Updated 3 years ago
- An example of bytecode modifying Java agents done with Javassist and Byte Buddy☆10Nov 4, 2017Updated 8 years ago
- Log4j-Scanner with Bind-Receipt and custom hostnames☆18Dec 27, 2021Updated 4 years ago
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆657Apr 7, 2022Updated 4 years ago
- Scans and catches callbacks of systems that are impacted by Log4J Log4Shell vulnerability across specific headers.☆59Dec 11, 2021Updated 4 years ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆396Dec 11, 2024Updated last year
- An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒☆230Aug 25, 2022Updated 3 years ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).☆1,144Apr 26, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ZAP Website☆20Updated this week
- Remote command execution vulnerability scanner for Log4j.☆251Aug 1, 2023Updated 2 years ago
- JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…☆941Sep 2, 2025Updated 8 months ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,564Jun 30, 2022Updated 3 years ago
- A script that utilises a Trello board to manage the promotion of Munki items☆21Apr 18, 2024Updated 2 years ago
- ☆30Jan 13, 2026Updated 4 months ago
- Apache Log4j 远程代码执行☆90May 14, 2023Updated 3 years ago