log4j-scan-turbo
how-to-check-patch-secure-log4j-CVE-2021-44228
log4j-scan-turbo | how-to-check-patch-secure-log4j-CVE-2021-44228 | |
---|---|---|
2 | 1 | |
27 | 2 | |
- | - | |
1.8 | 1.8 | |
over 2 years ago | over 2 years ago | |
Shell | Shell | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
log4j-scan-turbo
- Example exploits for MacOS Endpoint Protection assessment
-
Meet log4j-scan-turbo
Sick of slow log4shell scanners? Meet log4j-scan-turbo! This multithreaded pure bash scanner uses curl + nohup to achieve 48 parallel threads while testing all jndi protocols, 84 headers, and the HTTP GET/POST methods. I recently finished building this script and it was able to scan 600 FQDNs/IPs in under an hour. Enjoy! https://github.com/ssstonebraker/log4j-scan-turbo
how-to-check-patch-secure-log4j-CVE-2021-44228
-
log4j Hub - Everything related to log4j-CVE-2021-44228.
This was originally posted and will be regularly updated on my GitHub page
What are some alternatives?
jailbox - Torify the system with multiple tor exit nodes and load balance.
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
L4sh - Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.
LogMePwn - A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
Log4j-RCE-Scanner - Remote command execution vulnerability scanner for Log4j.
log4jshield - Log4j Shield - fast ⚡, scalable and easy to use Log4j vulnerability CVE-2021-44228 finder and patcher
webrecon - Automated Web Recon Shell Scripts
Penetration-Testing-Helper-Scripts - Some scripts to improve the Quality of Life for a penetration tester when working
airgeddon - This is a multi-use bash script for Linux systems to audit wireless networks.
Sudomy - Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
checksum.sh - Verify every install script. Checksum.sh is a simple way to download, review, and verify install scripts.