{"id":13843727,"url":"https://github.com/silentsignal/burp-log4shell","last_synced_at":"2026-01-21T04:03:39.788Z","repository":{"id":44914255,"uuid":"437573862","full_name":"silentsignal/burp-log4shell","owner":"silentsignal","description":"Log4Shell scanner for Burp Suite","archived":false,"fork":false,"pushed_at":"2023-09-24T08:29:56.000Z","size":167,"stargazers_count":481,"open_issues_count":3,"forks_count":72,"subscribers_count":13,"default_branch":"master","last_synced_at":"2024-11-21T15:39:34.287Z","etag":null,"topics":["burp-extensions","burp-plugin","burpsuite","burpsuite-extender","log4j2"],"latest_commit_sha":null,"homepage":"https://blog.silentsignal.eu/2021/12/12/our-new-tool-for-enumerating-hidden-log4shell-affected-hosts/","language":"Kotlin","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/silentsignal.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-12-12T14:52:49.000Z","updated_at":"2024-09-12T15:27:02.000Z","dependencies_parsed_at":"2024-11-21T15:43:28.489Z","dependency_job_id":null,"html_url":"https://github.com/silentsignal/burp-log4shell","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"purl":"pkg:github/silentsignal/burp-log4shell","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/silentsignal%2Fburp-log4shell","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/silentsignal%2Fburp-log4shell/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/silentsignal%2Fburp-log4shell/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/silentsignal%2Fburp-log4shell/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/silentsignal","download_url":"https://codeload.github.com/silentsignal/burp-log4shell/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/silentsignal%2Fburp-log4shell/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":264886624,"owners_count":23678545,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["burp-extensions","burp-plugin","burpsuite","burpsuite-extender","log4j2"],"created_at":"2024-08-04T17:02:25.463Z","updated_at":"2026-01-21T04:03:39.782Z","avatar_url":"https://github.com/silentsignal.png","language":"Kotlin","funding_links":[],"categories":["Kotlin"],"sub_categories":[],"readme":"Log4Shell scanner for Burp Suite\n================================\n\n![screenshot](screenshot.png)\n\nDetailed description can be found [in our blog post about this plugin][1],\nyou can also [▶️ watch a recorded demonstration video][3]. (There's also\n[a bit longer video][7] by @nu11secur1ty that also demonstrates setting up\na vulnerable application.)\n\nNote about detection capabilities: this plugin will only supply the built-in\nactive scanner with payloads, thus for optimal coverage vs. performance, you'll\nhave to configure your scan properly – just as with any other built-in or\nextension-provided scan. See [#3][4] for detailed explanation regarding this matter.\n\nComparison\n----------\n\n| Feature | Log4Shell scanner (this one) | ActiveScan++ ([`b485a07`][5]) |\n| --- | :---: | :---: |\n| Synchronous detection | ✔️ | ✔️ |\n| Asynchronous detection | ✔️ | ❌ |\n| Hostname detection | ✔️ | ❌ |\n| Username detection | ✔️ | ❌ |\n| Ability for single-issue scan (see below) | ✔️ | ❌ |\n\nSingle-issue scan\n-----------------\n\nIf you'd like to scan only for Log4j (and not other things such as XSS or SQLi),\nthis plugin makes it possible.\n\nBy following any of the instruction sets below, the scanner will only\nperform Log4Shell checks on all insertion points if the scan configuration\ncreated as a result is used.\n\n### The easiest way ###\n\nThanks to Hannah at PortSwigger for bringing this to our attention.\n\n1. When creating a new scan, click `Select from library` on the `Scan configuration` tab\n2. Pick `Audit checks - extensions only` which is built into Burp Suite Pro 2.x\n3. Disable every other extension (if applicable) that have an active scan check registered (such as ActiveScan++, Backslash powered scanning, Burp Bounty, etc.) so that only the Log4Shell scanner runs\n\n### The easy way ###\n\nThis is the version that's demonstrated in the above linked video.\n\n1. Save [`extensions-only.json`][2] to your machine\n2. From the leftmost `Burp` menu, select `Configuration library`\n3. Click `Import` on the right side of the window\n4. Select the location where you save the file in step 1.\n5. When creating a new scan, click `Select from library` on the `Scan configuration` tab\n6. Disable every other extension (if applicable) that have an active scan check registered (such as ActiveScan++, Backslash powered scanning, Burp Bounty, etc.) so that only the Log4Shell scanner runs\n\n### The manual way ###\n\nThis one used to be harder, but [@alright21 made it much easier][6].\n\n1. Create a new `Scan Configuration`\n2. Expand `Issues Reported`\n3. Click on one of the issues to move the focus to that list\n4. Press `Ctrl` + `A`\n5. Right click on the list and click on `Enabled`, this will disable all issues\n6. Manually check the box at the last one called `Extension generated issue` to enable that\n7. Disable every other extension (if applicable) that have an active scan check registered (such as ActiveScan++, Backslash powered scanning, Burp Bounty, etc.) so that only the Log4Shell scanner runs\n\nBuilding\n--------\n\nExecute `./gradlew build` and you'll have the plugin ready in\n`build/libs/burp-log4shell.jar`\n\nLicense\n-------\n\nThe whole project is available under the GNU General Public License v3.0,\nsee `LICENSE.md`.\n\n[1]: https://blog.silentsignal.eu/2021/12/12/our-new-tool-for-enumerating-hidden-log4shell-affected-hosts/\n[2]: https://raw.githubusercontent.com/silentsignal/burp-log4shell/master/extensions-only.json\n[3]: https://vimeo.com/656095367/3642ba0859\n[4]: https://github.com/silentsignal/burp-log4shell/issues/3\n[5]: https://github.com/PortSwigger/active-scan-plus-plus/commit/b485a07\n[6]: https://github.com/silentsignal/burp-log4shell/issues/1\n[7]: https://streamable.com/z1qkax\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsilentsignal%2Fburp-log4shell","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsilentsignal%2Fburp-log4shell","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsilentsignal%2Fburp-log4shell/lists"}