HackDig : Dig high-quality web security articles for hackers

Shell Shocked: Bash Bug Detection Tools (CVE-2014-6271)

2014-09-25 18:00

The Bash Bug/Shell Shocked (CVE-2014-6271) vulnerability is proving to be as big if not bigger than the the Heartbleed vulnerability proved to be. Tripwire’s Vulnerability and Exposure Team (VERT) and supporting teams have been working to rapidly get tools into the hands of customers and the community to help mitigate the risks that this exploitable vulnerability poses.

Free Python Detection Script

Even if you are not a Tripwire customer, we wanted to provide a tool that users can use to test systems in their environment for the vulnerability. We have published a Python script on the Tripwire’s Github page that allows you to test for the vulnerability both locally and remotely.

Usage: shellshock_test.py [-h] [--path [PATH]] [--paths [PATHS]]
[--target [TARGET]] [--targets [TARGETS]]
[--spider [SPIDER]] [--url [URL]] [--log [LOG]]
[--ssl [SSL]]

Additional information can be found on the Tripwire Github page.

Tripwire VERT & IP360 Coverage

For Tripwire IP360 customers, Tripwire VERT is actively researching and investigating the many facets of the new ‘BashBug/ShellShock’ BASH vulnerability (CVE-2014-6271) and expects to deliver robust coverage in ASPL-582 on Friday, September 25.

In addition, the team has published remote and local checks for detecting ShellShock using Tripwire IP360 that can be deployed now. The rules and additional information are available here.

Tripwire Enterprise

Content has been made available in for detecting if a system is vulnerable. The content provides a Tripwire Enterprise rule to see if your Bash version is vulnerable, as well as a Tripwire Enterprise policy test to now in the Tripwire Customer Center.evaluate the rule results to identify vulnerable nodes. This content is available to Tripwire Enterprise customers



Source: /cXl4tQx7OJC/3~/ytiruces-fo-etats-eriwpirt/r~/moc.elgoog.yxorpdeef

“Shell Shocked: Bash Bug Detection Tools (CVE-2014-6271)”0 Comments

Submit A Comment



Blog :

Verification Code: