#
# Copyright (c) 2006-2014 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
beef:
    module:
        shell_shock_scanner:
            enable: true
            category: "Exploits"
            name: "Shell Shock Scanner (Reverse Shell)"
            description: "This module attempts to get a reverse shell on the specified web server, blindly, by requesting ~400 potentially vulnerable CGI scripts. Each CGI is requested with a shellshock payload in the 'Accept' HTTP header.<br/>The list of CGI scripts was taken from <a href='https://github.com/nccgroup/shocker'>Shocker</a>."
            authors: ["Stephane Chazelas", "mz", "bmantra", "bcoles"]
            target:
                working: ["ALL"]