Scan for log4j/log4shell

This page summarizes the projects mentioned and recommended in the original post on /r/HomeNetworking
cve-2021-44228 log4shell Log4j2 Scanner Patch

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • log4shell

    Discontinued Operational information regarding the log4shell vulnerabilities in the Log4j logging library.

  • log4j-finder

    Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

    • I prefer https://github.com/fox-it/log4j-finder

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • CVE-2021-44228-Scanner

    Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228

    • It's quite tricky and there is a lot of dubious advice around. This tool is very quick: https://github.com/logpresso/CVE-2021-44228-Scanner Download a binary release from the releases section at the right of the page. I've run it over many, many, many machines so far.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts