2.5.0 Release

• Added --restore [backup_file_path] option. See #150
  • Scanner archive all .bak files into the single log4j2_scan_backup_yyyyMMdd_HHmmss.zip file, then delete all .bak files automatically since v2.5.0.
  • If you ensure that application works well after mitigation patch, you can delete .zip backup file.
  • If you want to restore original vulnerable files, you can easily restore files using --restore option.
• Added --syslog-udp [remote_ip:port] option.
  • Integrate this scanner into your SIEM. e.g. Logpresso, Splunk, or Elastic. See #183
  • Example: {"time": "2021-12-21 00:00:36+0900", "hostname": "XERAPH", "path": "/path/to/log4j-core-2.16.0.jar", "entry": "", "product": "Log4j 2", "version": "2.16.0", "cve": "CVE-2021-45105", "status": "VULNERABLE", "fixed": false}