A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
Hi, just to let you know I ported your work to Python: https://github.com/HynekPetrak/log4shell_finder
Thanks for the work and excellent research on this vulnerability.
Let me know if you eventually want to maintain the Python version in your repository, along with the Java one. I would create a pull request to yours.