Detecting CVE-2021-44228 aka Log4Shell
I wrote a script that will scan a list of IPs/Domains for CVE-2021-44228 (the recent Log4J exploit). Enjoy!
Tag scripts
kill orphaned httpd processes
to kill orphaned httpd processes create a script called killhttpd.sh with the following code #!/bin/bash for pid in `ps -C httpd|sed -e ‘s/^\ \+//g’ | grep httpd|awk ‘{print $1}’` do kill $pid done
Howto: Change siteid of website in IIS 6.0
The easiest way to change the IIS site id is to create a .bat file like this: (Assuming that 1135282223 was the id of your current site and 5 was the ID you’d like to have) CSCRIPT %SYSTEMDRIVE%\Inetpub\AdminScripts\adsutil.vbs STOP_SERVER W3SVC/1135282223…
Howto: Fix Microsoft IIS Internal IP Address Disclosure Vulnerability With Scripts
What is IP Address Disclosure? It is usually a bullshit “vulnerability” that firms will mention if they can’t find anything else to report How do you fix it without wasting 10 years of your time? First, we need to…