fox-it/log4j-finder
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
10 Commits 1 Branch 0 Tags
d4ba43df9a9bdf461629a184fcf70eb5c769296e
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Yun Zheng Hu d4ba43df9a Whitespace
2021-12-14 23:51:06 +01:00
.github/workflows
Update artifact names
2021-12-14 20:43:10 +01:00
log4j-finder.py
Add colorama to Pyinstaller spec and requirements.txt
2021-12-14 23:46:58 +01:00
log4j-finder.spec
Whitespace
2021-12-14 23:51:06 +01:00
README.md
Initial commit
2021-12-14 11:40:57 +01:00
requirements.txt
Add colorama to Pyinstaller spec and requirements.txt
2021-12-14 23:46:58 +01:00
screenshot.png
Initial commit
2021-12-14 11:40:57 +01:00

README.md

log4j-finder

A Python3 script to scan the filesystem to find Log4j2 that is vulnerable to Log4Shell (CVE-2021-44228) It scans recursively both on disk and inside Java Archive files (JARs).

log4j-finder results

Usage

Example usage to scan a path (defaults to /):

$ python3 log4j-finder.py /path/to/scan

Or directly a JAR file:

$ python3 log4j-finder.py /path/to/jarfile.jar

Or multiple directories and or files:

$ python3 log4j-finder.py /path/to/dir1 /path/to/dir2 /path/to/jarfile.jar

Files or directories that cannot be accessed (Permission denied errors) are not printed. If you want to see more output, you can give the -v flag for verbose, or -vv for debug mode (only recommended for debugging purposes).

Description
No description provided
Readme 2.8 MiB
Languages
Python 100%