awesome-log4shell
github.com/snyk-labs/awesome-log4shell ↗An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me examples & proofs of concept resources from awesome-log4shell"
Installation instructions →What's inside
Examples & Proofs of Concept
- Analysis
- CVE-2021-44228 log4j Exploitation in Action: RCE reverse shell on AWS cloud
Log4Shell exploitation with RCE reverse shell on AWS Cloud.
- Gamifying Log4j Vulnerability
Exploit Log4J in example code.
- Log4Shell PoC
Full stack demo including Java LDAP and HTTP servers and vulnerable Java client.
- Log4Shell vulnerable Java application
Spring Boot web application vulnerable to Log4shell for easy reproduction.
- Tool
Detection & Remediation
- AWS daemonset
Daemonset from AWS to mitigate vulnerable instances in Kubernetes.
- Bash IOC scanner
Latest Fenrir supports checking for log4shell compromise and vulnerability.
- Burp Plugin detector
Burp plugin to detect vulnerable hosts.
- Canary tokens
Use a canary token to test for vulnerable systems.
- Community Sourced Log4J Attack Surface
List of Log4j attack vectors in popular manufacturers' products.
- Container scanners
How to detect using container scanners.
Videos
- Blackhat2016 - JNDI manipulation to RCE Dream Land
Blackhat talk from 2016 describing the exploit path.
- Can we find Log4Shell with Java Fuzzing? 🔥 (CVE-2021-44228 - Log4j RCE)
Finding the famous Java Log4Shell RCE (CVE-2021-44228) using fuzzing.
- CVE-2021-44228 - Log4j - MINECRAFT VULNERABLE! (and SO MUCH MORE)
John Hammond, Cybersecurity Researcher @HuntressLabs.
- Log4JShell Vulnerability Explained in Simple Terms
- Log4Shell Deep Dive
breakpoint your way through the JNDI and HTTP calls leading to an RCE.
- The Log4j vulnerability | The Backend Engineering Show
The Backend Engineering Show - Explanation of the Log4Shell vulnerability(CVE-2021-44228).
Explanation
- Cado Security
Analysis of the attacks in the wild.
- Cloudflare
Cloudflare analysis of payloads in the wild.
- Exploiting JNDI injections in Java
Previous article on JNDI injection exploits.
- Fastly Blog
Impact, how it works, and timeline.
- Log4j Vulnerability – Things You Should Know
Redhunt Labs coverage around log4shell: Explanation, detection and remediation. Along with tool for mass scanning targets.
- Luna Sec
Good tips for detection and remediation.
Vulnerable Software
- CISA
CISA list of vulnerable software.
- Elastic
Deep dive into which versions of Elastic are vulnerable and how to fix.
- NCSC-NL repository
National Cyber Security Centrum list of vulnerable/non-vulnerable software.
- Swithak
List of vendor advisories related to log4shell.
Articles
Twitter Discussions
- Incredible discussion around Log4j
Best list of vulnerable software, services and patches
- Log4Shell spreadsheet
Spreadsheet for defenders listing vendors and products.
Memes
- Log4J memes
Sometimes we still need a smile.
Showing a sample of 67 resources. View the full list on GitHub →