Projects in Awesome Lists tagged with log4shell
A curated list of projects in awesome lists tagged with log4shell .
https://github.com/ncsc-nl/log4shell
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
cve-2021-4104 cve-2021-44228 cve-2021-45046 cve-2021-45105 log4j log4shell vulnerability
Last synced: 29 Sep 2025
https://github.com/NCSC-NL/log4shell
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
cve-2021-4104 cve-2021-44228 cve-2021-45046 cve-2021-45105 log4j log4shell vulnerability
Last synced: 30 Apr 2025
https://github.com/lunasec-io/lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
compliance continuous-delivery cve-scanning cybersecurity dependency-analysis devsecops gdpr log4shell pci-dss sbom sbom-generator scanning scanning-tool security security-tools soc2 software-composition-analysis tokenization web-security zero-trust
Last synced: 15 May 2025
https://github.com/christophetd/log4shell-vulnerable-app
Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
Last synced: 08 Apr 2025
https://github.com/mergebase/log4j-detector
A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
cve-2021-44228 cve-2021-45046 cve-2021-45105 cybersecurity detector log4j log4shell pentest sca scanner vulnerability-scanner
Last synced: 10 Jul 2025
https://github.com/fox-it/log4j-finder
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
cve-2021-44228 cve-2021-45046 cve-2021-45105 log4j log4j-finder log4j2 log4shell python
Last synced: 02 Jul 2025
https://github.com/hillu/local-log4j-vuln-scanner
Simple local scanner for vulnerable log4j instances
cve-2019-17571 cve-2021-44228 log4j2 log4shell scanner security security-tools
Last synced: 05 Apr 2025
https://github.com/leonjza/log4jpwn
log4j rce test environment and poc
cve-2021-44228 log4j log4shell rce
Last synced: 15 Aug 2025
https://github.com/adilsoybali/Log4j-RCE-Scanner
Remote command execution vulnerability scanner for Log4j.
checker cve-2021-44228 log4j log4j2 log4shell rce scanner vulnerability-scanners
Last synced: 12 Jul 2025
https://github.com/cyberstruggle/L4sh
Log4Shell RCE Exploit - fully independent exploit does not require any 3rd party binaries.
Last synced: 12 Jul 2025
https://github.com/hackjava/log4j2
《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!
0e0w cve-2021-44228 goqi hacklog4j log4j log4j2 log4shell
Last synced: 26 Feb 2025
https://github.com/HackJava/Log4j2
《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!
0e0w cve-2021-44228 goqi hacklog4j log4j log4j2 log4shell
Last synced: 11 Jul 2025
https://github.com/curated-intel/Log4Shell-IOCs
A collection of intelligence about Log4Shell and its exploitation activity.
cobalt-strike cti cve-2021-44228 cybersecurity ioc java khonsari kinsing kirabash log4j log4j2 log4shell m8220 mirai muhstik sitesloader swrort threatintel threatintelligence ttp
Last synced: 10 Jul 2025
https://github.com/ox-eye/Ox4Shell
Deobfuscate Log4Shell payloads with ease.
deobfuscation deobfuscator log4j log4shell oxeye
Last synced: 12 Jul 2025
https://github.com/alexbakker/log4shell-tools
Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046
cve-2021-44228 cve-2021-45046 dns jndi ldap log4j log4shell
Last synced: 04 Apr 2025
https://github.com/giterlizzi/nmap-log4shell
Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)
cve-2021-44228 log4j log4shell nmap nmap-scripts vulnerability
Last synced: 23 Aug 2025
https://github.com/zhzyker/logmap
Log4j jndi injection fuzz tool
cve-2021-44228 cve-2021-45046 fuzz-testing injection jndi log4j2 log4shell
Last synced: 22 Apr 2025
https://github.com/cyberxml/log4j-poc
A Docker based LDAP RCE exploit demo for CVE-2021-44228 Log4Shell
cve-2021-44228 exploit log4j log4shell poc
Last synced: 19 Jan 2026
https://github.com/for-acgn/log4shell
Check, exploit, generate class, obfuscate, TLS, ACME about log4j2 vulnerability in one Go program.
acme cve-2021-44228 exploits java jndi ldap log4j2 log4j2-exp log4shell obfuscate poc
Last synced: 17 Aug 2025
https://github.com/CodeShield-Security/Log4JShell-Bytecode-Detector
Local Bytecode Scanner for the Log4JShell Vulnerability (CVE-2021-44228)
bytecode cve-2021-44228 log4j2 log4jshell log4shell scanner security
Last synced: 10 Jul 2025
https://github.com/1lann/log4shelldetect
Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files
cve-2021-44228 cve-2021-45046 log4j log4j2 log4shell scanner vulnerability-scanners
Last synced: 17 Jun 2025
https://github.com/contrast-security-oss/safelog4j
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
iast java log4j log4shell rasp security security-testing vulnerability vulnerability-scanner
Last synced: 11 Sep 2025
https://github.com/Contrast-Security-OSS/safelog4j
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
iast java log4j log4shell rasp security security-testing vulnerability vulnerability-scanner
Last synced: 11 Jul 2025
https://github.com/hackinghippo/log4shell_ioc_ips
log4j / log4shell IoCs from multiple sources put together in one big file (IPs) more coming soon (CVE-2021-44228)
cve cve-2021-44228 ioc list log4j log4shell shell4log
Last synced: 12 Jul 2025
https://github.com/righettod/log4shell-analysis
Contains all my research and content produced regarding the log4shell vulnerability
Last synced: 10 Jul 2025
https://github.com/ssstonebraker/log4j-scan-turbo
Multithreaded log4j vulnerability scanner using only bash! Tests all JNDI protocols, HTTP GET/POST, and 84 headers.
bash kali log4j log4shell oscp oscp-tools osint pentesting security securty-tools shell
Last synced: 12 Jul 2025
https://github.com/ravro-ir/log4shell-looker
log4jshell vulnerability scanner for bug bounty
bugbounty bugs java java-8 log4j log4j2 log4shell logger logging secuurity vulnerabilities vulnerability vulnerability-detection vulnerability-scanners
Last synced: 13 Oct 2025
https://github.com/securestackco/actions-log4j
A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
devsecops github-actions java java-vulnerability java8 jre log4j log4j-rce log4j2 log4js log4shell scanning security security-automation security-tools software-composition-analysis static-analysis vulnerabilities vulnerability-assessment vulnerability-scanner
Last synced: 30 Jul 2025
https://github.com/hupe1980/scan4log4shell
Scanner to send specially crafted requests and catch callbacks of systems that are impacted by log4j log4shell vulnerability and to detect vulnerable log4j versions on your local file-system
auth blue-team cve-2021-44228 cve-2021-45046 cve-2021-45105 dns form-detection fuzzing log4j log4shell rce red-team scanner vulnerability waf-bypass
Last synced: 09 Aug 2025
https://github.com/robertdebock/ansible-role-cve_2021_44228
Check and report for cve_2021_44228 (log4shell) on your system.
ansible cve202144228 log4j log4shell molecule playbook security tox
Last synced: 16 May 2025
https://github.com/0xsyr0/log4shell
This repository contains all gathered resources we used during our Incident Reponse on CVE-2021-44228 and CVE-2021-45046 aka Log4Shell.
cve cve-2021-44228 log4j log4shell
Last synced: 26 Jan 2026
https://github.com/riteshpuvvada/riteshpuvvada.github.io
Vulnerability Walkthrough
bypassing-upload-filters cyber-security-awareness cybersecurity log4j log4shell sql-injection-exploitation ssti
Last synced: 25 Jan 2026
https://github.com/pfichtner/log4shell-hunter
Scanner that scans local files for log4shell vulnerability. Does bytecode analysis so it does not rely on metadata. Will find vulnerable log4j even it has been self-compiled/repackaged/shaded/nested (e.g. uberjar, fatjar) and even obfuscated.
cve-2021-44228 cve-2021-45046 cve-2021-45105 java log4j log4j-rce log4shell scanner vulnerability-scanner
Last synced: 15 Jul 2025
https://github.com/demining/log4j-vulnerability
Vulnerability CVE-2021-44228 allows remote code execution without authentication for several versions of Apache Log4j2 (Log4Shell). Attackers can exploit vulnerable servers by connecting over any protocol, such as HTTPS, and sending a specially crafted string.
attack bitcoin blockchain cve-2021-44228 hack hacking log4j log4js log4shell mining vulnerability vulnerability-scanner vulnerable
Last synced: 06 Sep 2025
https://github.com/doenerstyle/1.7.10-modded-bukkit-servers
Guide/general info on managing modded Bukkit-compatible servers in Minecraft 1.7.10 in 2022
1-7-10 1710 bukkit cauldron crucible forge guide industrialcraft industrialcraft2 kcauldron log4j log4shell magma mcpc minecraft minecraft-server modding mohist spigot
Last synced: 30 Apr 2025
https://github.com/mrjameshamilton/log4shell-detector
A log4shell detector using ProGuardCORE
cve-2021-44228 detector log4j log4shell proguard-core security
Last synced: 09 Apr 2025
https://github.com/suuhm/log4shell4shell
Log4shell - Multi-Toolkit. Find, Fix & Test possible CVE-2021-44228 vulneraries - provides a complete LOG4SHELL test/attack environment on shell
checker hacking linux log4j log4j2 log4shell macos patch penetration-testing pentesting proof-of-concept scanner security tomcat vulnerability-scanners windows
Last synced: 13 Oct 2025
https://github.com/righettod/log4shell-payload-grabber
Tool to try to retrieve the java class used as dropper for the RCE in the context of log4shell vulnerability.
incident-response-tooling java-8 log4shell
Last synced: 10 Jul 2025
https://github.com/anthonyg-1/log4jvulnscripts
A collection of PowerShell scripts to detect and mitigate the log4j vulnerability on Windows servers with Sitecore installed.
log4j log4shell powershell sitecore
Last synced: 28 Feb 2025
https://github.com/codexlynx/envoy-filter-log4shell
:syringe: Plugable Envoy WebAssembly L7 (HTTP) firewall to prevent log4shell vulnerability injections.
blue-team cve-2021-44228 envoy istio log4shell waf wasm webassembly
Last synced: 20 Sep 2025
https://github.com/alex-ilgayev/log4shell-dockerized
Log4Shell dockerized full chain
Last synced: 17 Mar 2025
https://github.com/nyg/dependabot-vuln-viewer
Displays Dependabot security alerts for multiple GitHub repositories.
apollo-client dependabot github github-api graphql log4shell security vulnerabilities
Last synced: 30 Apr 2025
https://github.com/thecodesmith/unzip-recursive
Unzip .jar, .tgz and .zip files recursively
Last synced: 08 Aug 2025
https://github.com/spasam/log4j2-exploit
log4j2 Log4Shell CVE-2021-44228 proof of concept
Last synced: 28 Oct 2025
https://github.com/yezzfusl/rustylog4jguard
Effortless Log4j vulnerability detection.
cve-2021-44228 cybersecurity exploit-detection infosec log4j log4shell malware-detection open-source penetration-testing rust rust-security security security-tools vulnerability-scanner
Last synced: 04 Mar 2025
https://github.com/rgl/log4j-log4shell-playground
A playground for poking at the Log4Shell (CVE-2021-44228) vulnerability mitigations
Last synced: 17 Aug 2025
https://github.com/broadinstitute/trivy-cve-scan
Scan multiple Docker images with Trivy for a specific CVE
Last synced: 15 Sep 2025
https://github.com/gcmurphy/chk_log4j
Some siimple checks to see if JAR file is vulnerable to CVE-2021-44228
cve-2021-44228 jar log4j log4shell rust
Last synced: 24 Mar 2025
https://github.com/lhotari/pulsar-docker-images-patch-cve-2021-44228
Patch Pulsar Docker images with Log4J 2.17.1 update to mitigate Apache Log4J Security Vulnerabilities including Log4Shell
Last synced: 25 Jan 2026
https://github.com/nuriofernandez/simple-log4shell-ldap-server
Simple proof of concept of the famous Java's Log4Shell vulnerability 💣
expoit hacking java log4shell poo proof-of-concept vulnerability
Last synced: 09 Oct 2025
https://github.com/yandex-cloud-examples/yc-webinar-secure-cicd-with-gitlab
Материалы к вебинару «Обнаружение Log4shell в CI/CD с помощью GitLab».
cicd devsecops gitlab log4shell yandex-cloud yandexcloud
Last synced: 29 Dec 2025
