A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
juliusmusseau
commented
2 years ago
Hi,
for log4j 1.x mitigation it could be important, to scan for the file log4j.properties contens the string "JMS" because of
content like
configuring the custom logger
log4j.logger.com.apress.logging.log4j=DEBUG, JMS
configuring the JMS appender
log4j.appender.JMS=org.apache.log4j.net.JMSAppender log4j.appender.JMS.topicConnectionFactoryBindingName=TopicConnectionFactory log4j.appender.JMS.topicBindingName=loggingTopic
in log4j.properties could be a vulnaribility for log4j 1.x
And log4j.properties can be part of a jar or war file
Thx a lot 4 log4j_detector!
Andreas