Remote scan
xxxdebug opened this issue · 2 comments
xxxdebug commented
Can we somehow use this to remotely scan (internal) servers? Like foreach server in .txt or from an AD filter?
yunzheng commented
Yes, as some people have already done so, see #8
I think you could deploy the windows executable (if AV blocks it, you might want to create your own binary) via SSCM and let it write the logs to a share. I would also recommend to lock down the share if possible that not everyone can just list and read files from it.
yunzheng commented
I have opened GitHub discussions https://github.com/fox-it/log4j-finder/discussions, feel free to start a thread there so we don't have discussions in closed tickets and lose visibility. I hope other people can share their experiences on how they used and deployed it.