0002258: Command injection and exploitation tool (commix)

ID	Project	Category	View Status	Date Submitted	Last Update

0002258	Kali Linux	New Tool Requests	public	2015-05-05 17:11	2015-07-29 12:28

Reporter	geospin	Assigned To
Priority	high	Severity	minor	Reproducibility	sometimes
Status	closed	Resolution	duplicate

Summary	0002258: Command injection and exploitation tool (commix)
Description	Commix is a great command injection tool which successfully exploits many vulnerable applications such as DVWA, bWAPP, ShelLOL, Persistence, Kioptrix(2014), w3af-moth etc Has a simple environment and it can be used, from web developers, penetration testers or even security researchers to test web applications with the view to find bugs, errors or vulnerabilities related to command injection attacks. By using this tool, it is very easy to find and exploit a command injection vulnerability in a certain vulnerable parameter or string. Commix is written in Python programming language. Download Page: https://github.com/stasinopoulos/commix Demo Video: Exploiting bWAPP command injection flaws (normal & blind) via commix. ( https://www.youtube.com/watch?v=zqI8NcHfboo )

g0tmi1k 2015-06-19 10:39 administrator ~0003420	Duplicate: https://bugs.kali.org/view.php?id=2201

geospin 2015-07-07 06:15 reporter ~0003476	In the latest updates of commix, had been added support for 'shellshock' and cookie-based injections. It seems like the swiss army knife of command injections.

Date Modified	Username	Field	Change
2015-05-05 17:11	geospin	New Issue
2015-06-19 10:39	g0tmi1k	Note Added: 0003420
2015-06-19 10:39	g0tmi1k	Relationship added	duplicate of 0002201
2015-07-07 06:15	geospin	Note Added: 0003476
2015-07-29 12:28	g0tmi1k	Status	new => closed
2015-07-29 12:28	g0tmi1k	Resolution	open => duplicate