Skip to content
/ log4j-scanner Public

Log4j 2 (CVE-2021-44228) vulnerability scanner for Windows OS

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

BJLIYANLIANG/log4j-scanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
scanner
scanner
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
log4j.go
log4j.go
 
 

Repository files navigation

log4j-scanner

Log4j 2 (CVE-2021-44228) vulnerability scanner for Windows OS.

Example Usage

Terminal output from running .\log4j-scanner.exe in a terminal

Usage

.\log4j-scanner.exe

Terminal is used to output results, deploy this to machines via RMM and Start/Report from PowerShell or CMD Prompt.

Build from source

git clone https://github.com/name/log4j-scanner.git
cd log4j-scanner/
go get github.com/shirou/gopsutil/disk
go build .

How does it work?

After finding each avialable drive on the system this will find all .jar files that belong to 'log4j-core' and expand the jar archive to check if the vulnerable file 'JndiLookup.class' exists, if the file is present the path to the .jar file is reported back to the terminal.

Changes?

I'm still in the early stages of learning GO so feel free to create a pull request with any changes!

Compatibility

Compatible with Windows Server 2012+, Windows 7-10 and Windows Core.

About

Log4j 2 (CVE-2021-44228) vulnerability scanner for Windows OS

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

 
 
 

Languages