Recent Posts
Recent Comments
Link
- 01.Sec.Exploit_milw0rm.com
- 02.FT_moneta.co.kr
- 01.Sec.INfo_KrCERT/CC 보안공지
- 01.Sec.Portal_securityfocus.co…
- 01.Sec.Portal_packetstormsecur…
- 02.FT_삼성경제연구소
- 01.Sec.Virus_Search_virustotal…
- 01.Sec.Tool_foundstone.com
- 01.Sec.Search.attack.IP_myNetW…
- 01.Sec.Search.attack.IP_DShiel…
- 00.Sec.Refer_FIRST.Newsroom
- 00.Sec.Refer_Security.NNOV
- 00.Sec.Refer_OWASP
- 00.Sec.Refer_HITBSecConf
- 00.Sec.Refer_Metasploiit
- 00.Sec.Refer_Xcon
- 00.Sec.Refer_Shmoo
- 00.Sec.Refer_대학CERT연합
- 00.Sec.Refer_Packetstorm
- 01.Sec.Virus_bot.INfo_shadowse…
- 01.Sec.INfo_NCSC_사고사례.기타
- 02.FT_매경.시티라이프
- 03.Etc_Google.Translate.Url
- 03.Etc_Naver.japan.translate.u…
- 01.Sec.Tool_check.ip.info
- 01.Sec.Virus_ahnlab.online.cur…
- 02.FT_다음.아고라
- 02.FT_다음.오로지
- 01.Sec.INfo_KISA_연구보고서
- 02.FT_다음.세일러
- 02.FT_다음.양원석
- 02.FT_한토마.김태동.글모음
- 02.FT_한토마.경제.재테크
- 02.FT_다음.아고라.즐겨찾기
- 01.Sec.Virus_search.malwareURL
- 01.Sec.Virus_anal.script_wepaw…
- 01.Sec.Virus_anal.binary_anubi…
- 03.ETC_고도원의 아침편지
- 02.FT_세이노
- 03.Etc_MyCityLife
- 03.Etc_구본형
- 03.Etc_동국대.논문검색
- 00.Sec.MS_Update
- 01.Sec.INfo_KISA 안전진단
www.ManiaLab.com
shellshock-scanner 본문
# shellshock-scanner, 150117
URL: https://github.com/gry/shellshock-scanner
Ex)
$ python shellshock_scanner.py host_list.txt cgi_list_example.txt
Scanning 6 hosts with 28 CGIs using 20 Threads
Attacks chosen: [1, 2]. Exploit payload: () { _; } >_[$($())] { command; }
1.1.1.1/cgi-bin-sdb/printenv - sleep test - False - 0.0
1.1.1.1/cgi-bin-sdb/printenv - ping test - False - 0.0156002044678
1.1.1.1/cgi-mod/index.cgi - sleep test - False - 0.0
1.1.1.1/cgi-mod/index.cgi - ping test - False - 0.0155999660492
... 중략 ...
If a 100K lines CSV is a bit Long, you can search quickly for Vulnerable lines with the command: $ grep '^[^,],[^,],True'
'1.Sec_Util.Tools' Related Articles
more
Comments