pfichtner / log4shell-hunter Goto Github PK
View Code? Open in Web Editor NEWScanner that scans local files for log4shell vulnerability. Does bytecode analysis so it does not rely on metadata. Will find vulnerable log4j even it has been self-compiled/repackaged/shaded/nested (e.g. uberjar, fatjar) and even obfuscated.
License: GNU General Public License v3.0