653 Open source projects that are alternatives of or similar to log4jscanwin

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint.

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Log4j Shield - fast ⚡, scalable and easy to use Log4j vulnerability CVE-2021-44228 finder and patcher

Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)

Remote command execution vulnerability scanner for Log4j.

Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046

log4j rce test environment and poc

log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vulnerable web services affected by the log4j vulnerabilities.

Ansible detector scanner playbook to verify target Linux hosts using the official Red Hat Log4j detector script RHSB-2021-009 Remote Code Execution - log4j (CVE-2021-44228)

Log4j jndi injection fuzz tool

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

A mitigation for CVE-2021-44228 (log4shell) that works by patching the vulnerability at runtime. (Works with any vulnerable java software, tested with java 6 and newer)

An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒

《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库！Tribute to the most invincible Java logging library in the universe!

Auto Scanning to SSL Vulnerability

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

It's a simple tool for test vulnerability shellshock

A web crawler (for bug hunting) that gathers more than you can imagine.

🦄🔒 Awesome list of secrets in environment variables 🖥️

A tool that scans archives to check for vulnerable log4j versions

Extraction of iMessage Data via XSS

hacker, ready for more of our story ! 🚀

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A Proof-Of-Concept for the CVE-2021-44228 vulnerability.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Vulners Python API wrapper

Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.

Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.

log4j2 remote code execution or IP leakage exploit (with examples)

👨‍💻 A work-in-progress web services mass scanner written in Rust

Adobe Experience Manager Vulnerability Scanner

A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

(deprecated) Android application vulnerability analysis and Android pentest tool

汽车/安卓/固件/代码安全测试工具集

A static binary vulnerability scanner

REST API backend for Reconmap

A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations Manager

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Lists of affected components and affected apps/vendors by CVE-2021-44228 (aka Log4shell or Log4j RCE). This list is meant as a resource for security responders to be able to find and address the vulnerability

An All-In-One Pure Python PoC for CVE-2021-44228

一些漏洞分析

A collection of my quick and dirty scripts for vulnerability POC and detections

Detections for CVE-2021-44228 inside of nested binaries

A collection of my public security advisories.

Extensible framework for analyzing publicly available information about vulnerabilities

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

🕵️‍♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).

漏洞研究

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/