This is Y-Sec’s @PortSwigger Burp Plugin for the Log4j CVE-2021-44228 vulnerability. The focus of yLog4j is to support mass-scanning of the Log4j vulnerability CVE-2021-44228. Please see our Blog post for details and backgrounds. PortSwigger Burp Professional Jython 2.x It is recommended, but not required, to use a dedicated Scanning Profile. See Y-Security-Log4j-Scan.json as an example. GitHub View Github