Skip to content

Instantly share code, notes, and snippets.

@p4lsec

p4lsec/log4j.yara

Created January 31, 2023 16:38
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save p4lsec/db517b49a1c2900ca6e1725df5d29642 to your computer and use it in GitHub Desktop.
Save p4lsec/db517b49a1c2900ca6e1725df5d29642 to your computer and use it in GitHub Desktop.
Download ZIP
YARA rule for detecting references to Log4j
Raw
log4j.yara
rule log4j {
meta:
author = "Jace Powell"
description = "Searches for references to Log4j. Only used as a prelimiary/triage search, not a definitive result."
creation_date = "10 Dec 2021"
strings:
$a = /log4j/ nocase ascii wide
condition:
any of them
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment