An Awesome List of Log4Shell resources to help you stay informed and secure! π
β230Aug 25, 2022Updated 3 years ago
Alternatives and similar repositories for awesome-log4shell
Users that are interested in awesome-log4shell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- β24Jul 31, 2022Updated 3 years ago
- Oracle WebLogic Server 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 Local File Inclusionβ27Jan 25, 2022Updated 4 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.β1,885Jun 15, 2022Updated 4 years ago
- A collection of intelligence about Log4Shell and its exploitation activity.β182Mar 4, 2022Updated 4 years ago
- Log4Shell scanner for Burp Suiteβ484Sep 24, 2023Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.β18Dec 4, 2021Updated 4 years ago
- Recon scripts for bug huntingβ10Nov 19, 2021Updated 4 years ago
- Enumerate AWS permissions and resources.β71Jun 23, 2022Updated 4 years ago
- Compiles a list of major CDN and WAF subnets.β67Jun 25, 2026Updated last week
- Misc stuff from internetβ12Apr 13, 2026Updated 2 months ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVEβ2021β44228)?β44Mar 2, 2022Updated 4 years ago
- π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricksβ950Jan 15, 2022Updated 4 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.β34Nov 8, 2021Updated 4 years ago
- Resources About Persistence, Multiple Platforms. Including ~80 Tools and 300+ Posts.β109Jun 1, 2020Updated 6 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A Security Tool for Enumerating WebSocketsβ377Jan 10, 2022Updated 4 years ago
- β12Dec 26, 2021Updated 4 years ago
- π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.β429Jun 23, 2026Updated last week
- JNDI-Exploitation-KitοΌA modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Sβ¦β941Sep 2, 2025Updated 10 months ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).β1,142Apr 26, 2024Updated 2 years ago
- Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.β255Dec 21, 2021Updated 4 years ago
- React Suspended is an educational frontend application riddled with security vulnerabilitiesβ10Jun 14, 2026Updated 2 weeks ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.β11Mar 30, 2021Updated 5 years ago
- β12Jul 27, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.β126Dec 14, 2021Updated 4 years ago
- [ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains.β¦β177Oct 21, 2022Updated 3 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.β24Jan 6, 2023Updated 3 years ago
- Public testing data. Samples of log4j library versions to help log4j scanners / detectors improve their accuracy for detecting CVE-2021-β¦β14Dec 30, 2021Updated 4 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ139Sep 14, 2021Updated 4 years ago
- python3 scripts to help with aws triage needsβ15Feb 11, 2022Updated 4 years ago
- η¨δΊWebLogic pocεexpζ΅θ―ηεΊη‘θζ¬οΌεη»ε°ιζεηζ¬pocεΊβ95Nov 4, 2020Updated 5 years ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.β97Jan 2, 2025Updated last year
- Repository containing a set of policies for aws resources created with terraformβ11Sep 16, 2019Updated 6 years ago
- Virtual machines for every use case on DigitalOcean β’ AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- β74Jan 5, 2022Updated 4 years ago
- A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.β395Dec 11, 2024Updated last year
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.β35Feb 12, 2022Updated 4 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12β96Oct 18, 2022Updated 3 years ago
- A collection of tools for hackers, pentesters & security researchers.β18Mar 22, 2022Updated 4 years ago
- Fetch the details of assets hosted on AWS.β88Dec 4, 2023Updated 2 years ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stackβ21May 3, 2019Updated 7 years ago