An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
☆230Aug 25, 2022Updated 3 years ago
Alternatives and similar repositories for awesome-log4shell
Users that are interested in awesome-log4shell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆46Jan 22, 2025Updated last year
- Oracle WebLogic Server 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 Local File Inclusion☆27Jan 25, 2022Updated 4 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,885Jun 15, 2022Updated 3 years ago
- A collection of intelligence about Log4Shell and its exploitation activity.☆182Mar 4, 2022Updated 4 years ago
- Log4Shell scanner for Burp Suite☆485Sep 24, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Enumerate AWS permissions and resources.☆71Jun 23, 2022Updated 3 years ago
- Compiles a list of major CDN and WAF subnets.☆67Jun 5, 2026Updated last week
- Misc stuff from internet☆12Apr 13, 2026Updated last month
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆44Mar 2, 2022Updated 4 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆34Nov 8, 2021Updated 4 years ago
- A Security Tool for Enumerating WebSockets☆374Jan 10, 2022Updated 4 years ago
- ☆12Dec 26, 2021Updated 4 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆426May 31, 2026Updated last week
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).☆1,144Apr 26, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.☆256Dec 21, 2021Updated 4 years ago
- React Suspended is an educational frontend application riddled with security vulnerabilities☆10May 24, 2026Updated 2 weeks ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆11Mar 30, 2021Updated 5 years ago
- ☆11Jul 27, 2023Updated 2 years ago
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.☆126Dec 14, 2021Updated 4 years ago
- [ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains.…☆177Oct 21, 2022Updated 3 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆24Jan 6, 2023Updated 3 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Sep 14, 2021Updated 4 years ago
- A step by step workshop to exploit various vulnerabilities in Node.js and Java applications☆156Mar 17, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- python3 scripts to help with aws triage needs☆15Feb 11, 2022Updated 4 years ago
- 用于WebLogic poc及exp测试的基础脚本,后续将集成各版本poc库☆95Nov 4, 2020Updated 5 years ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Jan 2, 2025Updated last year
- Repository containing a set of policies for aws resources created with terraform☆11Sep 16, 2019Updated 6 years ago
- ☆74Jan 5, 2022Updated 4 years ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆395Dec 11, 2024Updated last year
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆96Oct 18, 2022Updated 3 years ago
- A collection of tools for hackers, pentesters & security researchers.☆18Mar 22, 2022Updated 4 years ago
- Fetch the details of assets hosted on AWS.☆88Dec 4, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆21May 3, 2019Updated 7 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆411Dec 24, 2022Updated 3 years ago
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,280Dec 6, 2022Updated 3 years ago
- To determine if a host is vulnerable to log4j CVE‐2021‐44228☆169Mar 8, 2026Updated 3 months ago
- Vulnerability scanner for Spring4Shell (CVE-2022-22965)☆12Apr 7, 2022Updated 4 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Mar 3, 2021Updated 5 years ago
- Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second修复内存溢出等bug☆15Nov 25, 2023Updated 2 years ago