Hunting For Shellshock Using Nessus

The best way to test for the Shellshock vulnerability is to do a credentialed local check against the Unix/Linux distribution. Nessus contains a number of plugins that make sure the operating system is patched. Nessus also has a plugin that performs a local test by invoking Bash, which covers just about any Unix/Linux platform available.

The Search For Shellshock - Security SiftSecurity Sift

EventLog Analyzer - SIEM Log management software.

TestSSL.sh –Assessing SSL/TLS Configurations at Scale - Black Hills Information Security

GitHub - Vanessapan001/pentest-2-Initial-Access-and-Internal-Recon

Nessus Network Vulnerability Scanner Software Review, by ɴᴀᴊᴇᴇʙ ᴡᴇᴇʀᴀʙᴀɴɢꜱᴀ

Hack Like a Pro: How to Scan for Vulnerabilities with Nessus « Null Byte :: WonderHowTo

The Search For Shellshock - Security SiftSecurity Sift

ShellShockHunter - It's A Simple Tool For Test Vulnerability Shellshock

Vulnerability Scanning with Nessus and Remediation, by Eric Tsang

4ARMED - Nessus Credentialed Compliance Scanning and Patch Audits How To

GitHub - Vanessapan001/pentest-2-Initial-Access-and-Internal-Recon

Making Metasploit effective and powerful using supplementary tools

Vulnerability Scanning with Nessus and Remediation, by Eric Tsang

A brief introduction to the Nessus vulnerability scanner