log4j-scan-turbo
L4sh
log4j-scan-turbo | L4sh | |
---|---|---|
2 | 1 | |
27 | 254 | |
- | 0.0% | |
1.8 | 0.0 | |
over 2 years ago | over 2 years ago | |
Shell | Python | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
log4j-scan-turbo
- Example exploits for MacOS Endpoint Protection assessment
-
Meet log4j-scan-turbo
Sick of slow log4shell scanners? Meet log4j-scan-turbo! This multithreaded pure bash scanner uses curl + nohup to achieve 48 parallel threads while testing all jndi protocols, 84 headers, and the HTTP GET/POST methods. I recently finished building this script and it was able to scan 600 FQDNs/IPs in under an hour. Enjoy! https://github.com/ssstonebraker/log4j-scan-turbo
L4sh
What are some alternatives?
jailbox - Torify the system with multiple tor exit nodes and load balance.
log4j-shell-poc - A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
Log4j-RCE-Scanner - Remote command execution vulnerability scanner for Log4j.
py4jshell - Simulating Log4j Remote Code Execution (RCE) vulnerability in a flask web server using python's logging library with custom formatter that simulates lookup substitution by executing remote exploit code.
log4jshield - Log4j Shield - fast ⚡, scalable and easy to use Log4j vulnerability CVE-2021-44228 finder and patcher
log4jpwn - log4j rce test environment and poc
how-to-check-patch-secure-log4j-CVE-2021-44228 - A one-stop repo/ information hub for all log4j vulnerability-related information.
Log4Shell-IOCs - A collection of intelligence about Log4Shell and its exploitation activity.
webrecon - Automated Web Recon Shell Scripts
Penetration-Testing-Helper-Scripts - Some scripts to improve the Quality of Life for a penetration tester when working
airgeddon - This is a multi-use bash script for Linux systems to audit wireless networks.
Sudomy - Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting