At-Bay developed a tool to help identify if a system is running a vulnerable version of Log4j. Once downloaded, run this script in each suspected system and the Command Line Interface (CLI) tool will look for java processes using a vulnerable version of Log4j library and provide an indication if found.
As the ongoing threat of Log4j continues to evolve, please check the At-Bay Security Alert for the latest information.
Please be advised that a negative indication does not guarantee that your system is secure. The tool is intended for testing purposes only, and should only be used on systems you are authorized to test. If a vulnerability is identified, please follow responsible disclosure guidelines.