log4j-log4shell-affected
awesome-list-of-secrets-in-environment-variables
log4j-log4shell-affected | awesome-list-of-secrets-in-environment-variables | |
---|---|---|
3 | 8 | |
53 | 843 | |
- | - | |
0.0 | 0.0 | |
over 2 years ago | over 1 year ago | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
log4j-log4shell-affected
-
Known applications that use Spring Framework
When Log4J hit, someone had the forethought to publish a list of affected applications on GITHUB.
- Given the recent Log4J exploit, what widely used linux apps should we be careful with until they are patched?
-
US warns hundreds of millions of devices at risk from newly revealed software vulnerability
That being said, I've been keeping an eye out on this Github tracker that consolidates responses from vendors so at least we can see their statements: https://github.com/authomize/log4j-log4shell-affected
awesome-list-of-secrets-in-environment-variables
What are some alternatives?
CVE-2021-44228-PoC-log4j-bypass-words - 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera - 🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
spring4shell - Operational information regarding the Spring4Shell vulnerability in the Spring Core Framework
krnlcracked - A cracked keyless version of the krnl roblox exploit for roblox.
log4shell-tools - Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046
PACS-Recon-Flashcards - Physical Access Control Systems (PACS) Reconnaissance Flashcards
log4j-shell-poc - A Proof-Of-Concept for the CVE-2021-44228 vulnerability.