With this script you can search, scrape and scan for Apache Log4j CVE-2021-44228 affected files using Google dorks, it is an automated script to detect the effected applications, and test again them directly with a Google Search Dork.

Installation

Run the following commands to install the script:

1
2
3
git clone https://github.com/JagarYousef/log4j-dork-scanner
cd  log4j-dork-scanner
pip install -r requirments.txt

Scanning

To scan against a google dork, you can run the following command in the script folder:

1
 python scanner.py -d YOUR_SEARCH_DORK -n NUMBER_OF_GOOGLE_RESULTS_PAGES

Example

This is an example of the scanning command:

1
python scanner.py -d inurl:member.jsp -n 15

This script is for educational purposes and should not be used in anyway that may violate the locale regulations and laws!