kbash

Exploit GNU Bash Env Command Injection via Google.

CVE-2014-6271

Version 2.1

usage

Batch Exploit GNU Bash Env Command Injection base on Google. Version 2.1 

optional arguments:
  -h, --help       show this help message and exit
  -u URL           specific a single Target Url
  -d DORK          Custom Google Dork,Using Google Search to find targets
  -t THREAD_COUNT  thread count
  -c PAGE_COUNT    crawl google page count
  -e CMD           Command to Execute
  -p PROXY         proxy,support:socks4,socks5,http eg:
                   socks5://127.0.0.1:1234

License, requests, etc: https://github.com/KxCode

kbash will print the status_code and url for each target responsed to exploitation.

proxy

For socks proxy support.

Download Sockipy project from http://sourceforge.net/projects/socksipy/?source=directory.
Copy the socks.py into the same directory as kbash.py

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
README.md		README.md
kbash.py		kbash.py
socks.py		socks.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

kbash

usage

proxy

About

Releases

Packages

Languages

kxcode/kbash

Folders and files

Latest commit

History

Repository files navigation

kbash

usage

proxy

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages