silentsignal/burp-log4shell external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

silentsignal/burp-log4shell

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/silentsignal/burp-log4shell)

Close

silentsignal / burp-log4shellView on GitHubMore

• External links
• Readme badge

Log4Shell scanner for Burp Suite

☆485Sep 24, 2023Updated 2 years ago

Alternatives and similar repositories for burp-log4shell

Users that are interested in burp-log4shell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• whwlsfb / Log4j2Scan

  View on GitHub
  Log4j2 RCE Passive Scanner plugin for BurpSuite
  ☆829Aug 4, 2023Updated 2 years ago
• woodpecker-appstore / log4j-payload-generator

  View on GitHub
  Log4j jndi injects the Payload generator
  ☆486Dec 13, 2021Updated 4 years ago
• cube0x0 / noPac

  View on GitHub
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,398Dec 16, 2021Updated 4 years ago
• jas502n / Log4j2-CVE-2021-44228

  View on GitHub
  Remote Code Injection In Log4j
  ☆469Jan 18, 2022Updated 4 years ago
• pmiaowu / log4j2Scan

  View on GitHub
  用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
  ☆212Apr 18, 2023Updated 2 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• fullhunt / log4j-scan

  View on GitHub
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,435Nov 23, 2022Updated 3 years ago
• f0ng / log4j2burpscanner

  View on GitHub
  CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks
  ☆840Jun 13, 2023Updated 2 years ago
• pimps / JNDI-Exploit-Kit

  View on GitHub
  JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…
  ☆939Sep 2, 2025Updated 6 months ago
• dr0op / shiro-550-with-NoCC

  View on GitHub
  Shiro-550 不依赖CC链利用工具
  ☆450Jun 19, 2024Updated last year
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words

  View on GitHub
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆950Jan 15, 2022Updated 4 years ago
• projectdiscovery / nuclei-burp-plugin

  View on GitHub
  Nuclei plugin for BurpSuite
  ☆1,324Oct 22, 2025Updated 5 months ago
• bigsizeme / fastjson-check

  View on GitHub
  fastjson 被动扫描、不出网payload生成
  ☆367Nov 19, 2021Updated 4 years ago
• pmiaowu / BurpFastJsonScan

  View on GitHub
  一款基于BurpSuite的被动式FastJson检测插件
  ☆1,238Oct 1, 2022Updated 3 years ago
• metaStor / SpringScan

  View on GitHub
  SpringScan 漏洞检测 Burp插件
  ☆606Nov 14, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,015May 21, 2024Updated last year
• veracode-research / rogue-jndi

  View on GitHub
  A malicious LDAP server for JNDI injection attacks
  ☆1,076Sep 28, 2023Updated 2 years ago
• laluka / jolokia-exploitation-toolkit

  View on GitHub
  jolokia-exploitation-toolkit
  ☆311Dec 19, 2024Updated last year
• qtc-de / remote-method-guesser

  View on GitHub
  Java RMI Vulnerability Scanner
  ☆915Jul 3, 2024Updated last year
• ggg4566 / BurpBountyPlus

  View on GitHub
  BurpBounty 魔改版本
  ☆418Mar 21, 2022Updated 4 years ago
• pmiaowu / BurpShiroPassiveScan

  View on GitHub
  一款基于BurpSuite的被动式shiro检测插件
  ☆1,798Dec 14, 2022Updated 3 years ago
• jas502n / Grafana-CVE-2021-43798

  View on GitHub
  Grafana Unauthorized arbitrary file reading vulnerability
  ☆368Feb 14, 2023Updated 3 years ago
• welk1n / JNDI-Injection-Exploit

  View on GitHub
  JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）
  ☆2,795Mar 22, 2023Updated 3 years ago
• F6JO / RouteVulScan

  View on GitHub
  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
  ☆1,313Jun 29, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• 0xDexter0us / Log4J-Scanner

  View on GitHub
  Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.
  ☆102Dec 26, 2021Updated 4 years ago
• sting8k / BurpSuite_403Bypasser

  View on GitHub
  Burpsuite Extension to bypass 403 restricted directory
  ☆1,674Jun 29, 2023Updated 2 years ago
• Rvn0xsy / PassDecode-jar

  View on GitHub
  帆软/致远密码解密工具
  ☆359Jul 29, 2021Updated 4 years ago
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL

  View on GitHub
  ☆342Jun 7, 2022Updated 3 years ago
• depycode / fastjson-c3p0

  View on GitHub
  fastjson不出网利用、c3p0
  ☆256Jul 30, 2021Updated 4 years ago
• l0ggg / VMware_vCenter

  View on GitHub
  VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS
  ☆218Dec 1, 2021Updated 4 years ago
• Maskhe / FastjsonScan

  View on GitHub
  一个简单的Fastjson反序列化检测burp插件
  ☆970Jun 18, 2021Updated 4 years ago
• akabe1 / OAUTHScan

  View on GitHub
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆176Oct 26, 2024Updated last year
• safebuffer / sam-the-admin

  View on GitHub
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆1,045Jul 10, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• duc-nt / RCE-0-day-for-GhostScript-9.50

  View on GitHub
  RCE 0-day for GhostScript 9.50 - Payload generator
  ☆544Sep 8, 2021Updated 4 years ago
• ethicalhackingplayground / TProxer

  View on GitHub
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆183Nov 22, 2021Updated 4 years ago
• SummerSec / SpringExploit

  View on GitHub
  🚀 一款为了学习go而诞生的漏洞利用工具
  ☆451Jun 14, 2022Updated 3 years ago
• yumusb / DNSLog-Platform-Golang

  View on GitHub
  DNSLOG平台 golang
  ☆439Dec 30, 2021Updated 4 years ago
• wyzxxz / aksk_tool

  View on GitHub
  AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
  ☆779Feb 13, 2025Updated last year
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,458Jan 8, 2023Updated 3 years ago
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,436May 21, 2024Updated last year