log4j-finder
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105) (by fox-it)
log4jpwn
log4j rce test environment and poc (by leonjza)
log4j-finder | log4jpwn | |
---|---|---|
2 | 1 | |
435 | 308 | |
0.0% | - | |
0.0 | 0.0 | |
over 1 year ago | over 2 years ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 only |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
log4j-finder
Posts with mentions or reviews of log4j-finder.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-18.
-
Well it's Log4J Patch Day. Again. (2.17 now available to fix infinite recursion bug)
I customized a copy of log4j-finder a bit and we used it to scan Linux and Windows machines pretty quickly.
-
Scan for log4j/log4shell
I prefer https://github.com/fox-it/log4j-finder
log4jpwn
Posts with mentions or reviews of log4jpwn.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-14.
What are some alternatives?
When comparing log4j-finder and log4jpwn you can also consider the following projects:
log4j-shell-poc - A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
Log4j-RCE-Scanner - Remote command execution vulnerability scanner for Log4j.
log4shell - Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
log4j-scan - A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
CVE-2021-44228-Scanner - Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228
L4sh - Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.
canarytokens - Canarytokens helps track activity and actions on your network.
log4shell-vulnerable-app - Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).