issues
search
nccgroup
/
log4j-jndi-be-gone
A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.
https://research.nccgroup.com/2021/12/12/log4j-jndi-be-gone-a-simple-mitigation-for-cve-2021-44228/
Apache License 2.0
71
stars
17
forks
source link
Configurable shading support
#3
Open
cerveada
opened
2 years ago
cerveada
commented
2 years ago
Utilize a ByteBudy matchers to detect JndiLookup classes that have been shaded
matching on class simple name,
Plugin
annotation and it's values, static field and lookup method and it's parameters
DISABLED by default, can be configured to LOG_ONLY or ENABLED
detects JndiLookup from log4j versions affected by CVE-2021-44228 (2.0-beta9 to 2.14.1)
Add a configurable option to exclude classes from search for false positives
Add an optional logging to a file (controlled by an agent argument). Uses stderr by default
keep support for Java 6-17+.
does not attempt to match obfuscated classes this is solution for shading
Pluginannotation and it's values, static field and lookup method and it's parameters