Burp Extension

PortSwigger Burp Plugin for the Log4j (CVE-2021-44228)

This is Y-Sec’s @PortSwigger Burp Plugin for the Log4j CVE-2021-44228 vulnerability. The focus of yLog4j is to support mass-scanning of the Log4j vulnerability CVE-2021-44228.

Please see our Blog post for details and backgrounds.

  • PortSwigger Burp Professional
  • Jython 2.x

It is recommended, but not required, to use a dedicated Scanning Profile. See Y-Security-Log4j-Scan.json as an example.

GitHub

View Github

 

 

 

To finish reading, please visit source site