Shellshock Burp Scanning

  1. Home
  2. Explore Optiv Insights
  3. Blog
  4. Shellshock Burp Scanning

Shellshock Burp Scanning

 The following is a Java plugin for the web proxy Burp designed to detect CVE-2014-6271, or shellshock, during active scans of web applications. Further versions of the shellshock vulnerability, e.g. CVE-2014-7169, are not detected by this plugin. These versions require an existing code execution exploit against the remote system to trigger, and are therefore not included.

 

https://github.com/AccuvantLABS/burp-shellshock

 

Shellshock Burp

By:
Matthew Gill
Principal Consultant
Matthew Gill is a principal security consultant with Optiv's application security practice. In this role, he provides expertise in penetration testing, application assessment, code review and system architecture design.

Related Insights

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.

RELATED INSIGHTS

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.

 

Subscribe

 

  

Join Our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cybersecurity Events in your area.

 

Image
calendar icon