Skip to content
/ shellshock-cgi Public

A python script to enumerate CGI scripts vulnerable to CVE-2014-6271 on one specific server

License

GPL-2.0 license
12 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

francisck/shellshock-cgi

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
cgiscripts.txt
cgiscripts.txt
 
 
shellshock_cgi.py
shellshock_cgi.py
 
 

Repository files navigation

shellshock-cgi

A python script to enumerate CGI scripts vulnerable to CVE-2014-6271 on one specific server

Usage

$ python testing.py --server 172.16.255.130 --listen 172.16.255.1

##Example Return:

[+] Testing if 172.16.255.130 is vulnerable to CVE-2014-6271 via CGI

[+] Listening for incoming connections on the following socket 172.16.255.1:4443

[!] The server is vulnerable at the following URL: http://172.16.255.130/cgi-bin/status

[!] The server is vulnerable at the following URI: http://172.16.255.130/cgi-bin/ax.cgi

Contributors

Special thanks to https://github.com/Signus for general assitance with the threading and socket function

Contact

Twitter: @francisckrs

About

A python script to enumerate CGI scripts vulnerable to CVE-2014-6271 on one specific server

Resources

Readme

License

GPL-2.0 license
Activity

Stars

12 stars

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages