HOW TO DETECT CVE-2021-44228 LOG4SHELL VULNERABILITY IN YOUR SERVER?
THESECMASTER
We have created this post to let all of you know how to detect the CVE-2021-44228 Log4Shell Vulnerability on your network. The vulnerability affects anybody who’s using the log4j packages log4j-core, log4j-api.
# wget https://github.com/lunasec-io/lunasec/releases/download/v1.0.0-log4shell/lunasec_1.0.0-log4shell_Linux_x86
_64.tar.gz
# find / -name log4j*
Linux:
# ./log4shell scan /opt/splunk/
Windows:
> log4shell.exe scan /opt/splunk/
# tar -xzf lunasec_1.0.0-log4shell_Linux_x86_
64.tar.gz
# ./find-bad-deps.sh /path/to/folder/to/scan
# git clone https://github.com/lunasec-io/lunasec.git
Tumblr
Telegram
Medium
Twitter
LinkedIn
Facebook
FOLLOW US:
THESECMASTER