Lab: Shell Shock
Lab: Shell Shock
Short Description
The purpose of this lab is to introduce you to the shell shock vulnerability.
Goals
The goals of this lab are to help you understand
- How a programming error can introduce a vulnerability.
- The importance of scrubbing your input.
- The importance of patching your software
Acknowledgment
- This lab is based on the Seed labs by Wenliang Du
Copyright © 2006- 226 Wenliang Du, All rights reserved. Free to use for non-commercial educational purposes. Commercial uses of the materials are prohibited. The SEED project was funded by multiple grants from the US National Science Foundation.
- I have modified this lab for our use.
The Lab
- Setup and Background
- The shellshock vulnerability
- Introduction to netcat
- I/O Redirection in the bash shell
- A cgi-bin program