log4j-finder
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105) (by fox-it)
Log4Shell-IOCs
A collection of intelligence about Log4Shell and its exploitation activity. (by curated-intel)
log4j-finder | Log4Shell-IOCs | |
---|---|---|
2 | 1 | |
435 | 184 | |
0.0% | 0.0% | |
0.0 | 3.6 | |
over 1 year ago | about 2 years ago | |
Python | Python | |
MIT License | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
log4j-finder
Posts with mentions or reviews of log4j-finder.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-18.
-
Well it's Log4J Patch Day. Again. (2.17 now available to fix infinite recursion bug)
I customized a copy of log4j-finder a bit and we used it to scan Linux and Windows machines pretty quickly.
-
Scan for log4j/log4shell
I prefer https://github.com/fox-it/log4j-finder
Log4Shell-IOCs
Posts with mentions or reviews of Log4Shell-IOCs.
We have used some of these posts to build our list of alternatives
and similar projects.
What are some alternatives?
When comparing log4j-finder and Log4Shell-IOCs you can also consider the following projects:
log4j-shell-poc - A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
L4sh - Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.
log4jpwn - log4j rce test environment and poc
Burp2Malleable - Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
log4shell - Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
CVE-2021-44228-Scanner - Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228
Log4j-RCE-Scanner - Remote command execution vulnerability scanner for Log4j.