Shellshock Attack (Let's Defend)

Lessons Learned:

Analyze ShellShock attack using WireShark.

The Challenge:

The victim found out their private info was out there for everyone to see, and things got worse – the bad guys got into their money stuff, social media, and personal emails. We got an image of his machine so you can tell us what happened.

Answers

1. What is the server operating system? Ubuntu

Method: Filter http traffic and follow HTTP stream.

2. What is the application server and version running on the target system? Apache/2.2.22

Method: Filter http traffic and follow HTTP stream.

3. What is the exact command that the attacker wants to run on the target server? /bin/ping -c1 10.246.50.2

Method: Filter http traffic and follow HTTP stream.