proferosec / log4jScanner
log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services
☆490Updated last year
Related projects: ⓘ
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆435Updated last year
- Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)☆347Updated 2 years ago
- Detector for Log4Shell exploitation attempts☆729Updated 2 years ago
- Log4j Vulnerability Scanner for Windows☆153Updated last year
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,276Updated last year
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆655Updated 2 years ago
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.☆126Updated 2 years ago
- ☆360Updated last year
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆973Updated 2 years ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,561Updated 2 years ago
- Simple local scanner for vulnerable log4j instances☆378Updated 2 years ago
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆382Updated 4 months ago
- Burpsuite extension for log4j2rce☆28Updated 2 years ago
- PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs☆293Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,513Updated 2 years ago
- A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE☆777Updated 4 months ago
- DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover☆827Updated last year
- A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. T…☆933Updated 3 years ago
- Scanners for Jar files that may be vulnerable to CVE-2021-44228☆343Updated 2 years ago
- Log4Shell scanner for Burp Suite☆481Updated 11 months ago
- Exploit allowing you to read registry hives as non-admin on Windows 10 and 11☆706Updated 3 years ago
- A list of useful Powershell scripts with 100% AV bypass (At the time of publication).☆998Updated 2 years ago
- A community sourced list of log4j-affected software☆1,118Updated last year
- Gives you instant SYSTEM command prompt on all supported and legacy versions of Windows☆377Updated 3 years ago
- Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.☆825Updated 3 years ago
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆3,399Updated last year
- ☆112Updated last year
- ☆265Updated this week
- Nginx 18.1 04/09/22 zero-day repo☆367Updated 2 years ago
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,327Updated 2 years ago