Remote scan

[xxxdebug]

Can we somehow use this to remotely scan (internal) servers? Like foreach server in .txt or from an AD filter?

[yunzheng]

Yes, as some people have already done so, see #8

I think you could deploy the windows executable (if AV blocks it, you might want to create your own binary) via SSCM and let it write the logs to a share. I would also recommend to lock down the share if possible that not everyone can just list and read files from it.

[yunzheng]

I have opened GitHub discussions https://github.com/fox-it/log4j-finder/discussions, feel free to start a thread there so we don't have discussions in closed tickets and lose visibility. I hope other people can share their experiences on how they used and deployed it.