apache-log4j-poc VS jdk8u_jdk

Compare apache-log4j-poc vs jdk8u_jdk and see what are their differences.

apache-log4j-poc

Apache Log4j 远程代码执行 (by tangxiaofeng7)
Suggest topics

DISCONTINUED

Suggest alternative
Edit details

jdk8u_jdk

By JetBrains
Suggest topics

DISCONTINUED

Suggest alternative
Edit details
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
apache-log4j-poc jdk8u_jdk
3 1
105 209
- -
3.8 0.0
over 2 years ago about 3 years ago
Java Java
- GNU General Public License v3.0 only
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

apache-log4j-poc

Posts with mentions or reviews of apache-log4j-poc. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-12-10.

jdk8u_jdk

Posts with mentions or reviews of jdk8u_jdk. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-12-09.
  • Log4j RCE Found
    32 projects | news.ycombinator.com | 9 Dec 2021
    Out of the box (at least on my text 1.8 JVM): corbaname, dns, iiop, iiopname, ldap, ldaps, rmi

    For full details of how this works, use a vulnerable log4j version, log a simple (bad) lookup, and step through with a debugger for a while.

    Sources:

    * https://github.com/JetBrains/jdk8u_jdk/blob/master/src/share...

What are some alternatives?

When comparing apache-log4j-poc and jdk8u_jdk you can also consider the following projects:

nuclei-templates - Community curated list of templates for the nuclei engine to find security vulnerabilities.

jdk8u - https://wiki.openjdk.org/display/jdk8u

rogue-jndi - A malicious LDAP server for JNDI injection attacks

tsunami-security-scanner-plugins - This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

lunasec - LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

log4shell_ioc_ips - log4j / log4shell IoCs from multiple sources put together in one big file (IPs) more coming soon (CVE-2021-44228)

CVE-2021-44228-Scanner - Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228

go-cache - An in-memory key:value store/cache (similar to Memcached) library for Go, suitable for single-machine applications.

CVE-2021-44228-Log4Shell-Hashes - Hashes for vulnerable LOG4J versions

marshalsec

apache-log4j-poc vs nuclei-templates jdk8u_jdk vs jdk8u apache-log4j-poc vs rogue-jndi jdk8u_jdk vs tsunami-security-scanner-plugins apache-log4j-poc vs lunasec jdk8u_jdk vs rogue-jndi apache-log4j-poc vs log4shell_ioc_ips jdk8u_jdk vs nuclei-templates apache-log4j-poc vs CVE-2021-44228-Scanner jdk8u_jdk vs go-cache apache-log4j-poc vs CVE-2021-44228-Log4Shell-Hashes jdk8u_jdk vs marshalsec