CrowdStrike ShellShock Scanner
Network Scan for Bash Vulnerability
How To Read
Details of usage and reported results can be found in the About section of the tool once it is launched.
How To Install
There is no installer for this tool. Simply unzip the contents of the downloaded ZIP file into a location of your choosing and launch it directly from there. Similarly for uninstalling; simply delete the file(s) you extracted by moving them to the Recycle Bin or permanently deleting them. It is possible there may be a very small number of elements that remain in the Registry. They can be safely ignored or manually deleted by using a registry editing tool (e.g. regedit) and navigating to
HKEY_CURRENT_USERSoftwareCrowdStrike and noting the name of the tool there and removing the branch.
CrowdStrike Shellshock Scanner Software License Agreement
Please read this software license agreement carefully before downloading or using the CrowdStrike Shellshock scanner software and its documentation (together, the “software”). by clicking “Accept”, downloading, or using the software you are consenting to be bound by this agreement. If you do not agree to all of the terms of this agreement, click “Decline” and do not otherwise download, install or use the software.
What Is CrowdStrike Shellshock Scanner?
CrowdStrike ShellShock Scanner is a free tool for Microsoft Windows systems aimed to help alert you to the presence of systems on your network that are vulnerable to the bash shell ShellShock Vulnerability.
1. Free License
CrowdStrike, Inc. (“CrowdStrike”) grants to the user (“You” or “you”) a free, nonexclusive license to download, install, run, copy, use and distribute the Software in object code form. If you may make copies or distribute the Software, you must include this Software License Agreement, the readme file, and the copyright notices in the files and not charge a fee. The Software should only be used to scan systems that you own or control or have permission to scan. You are solely responsible for determining the appropriateness of using or redistributing the Software and assume any risk and all liability associated with your exercise of permissions under this Agreement.
YOU SHALL NOT: SELL, RENT, LEASE, MODIFY, CREATE DERIVATIVE WORKS, REVERSE COMPILE OR REVERSE ASSEMBLE ALL OR ANY PORTION OF THE SOFTWARE.
YOU SHALL NOT: USE THIS SOFTWARE FOR ANY UNLAWFUL PURPOSE.
2. CrowdStrike Property.
The Software is licensed and not sold to you, and no title or ownership to the Software or the intellectual property rights embodied therein passes as a result of this Agreement or any act pursuant to this Agreement. All rights in and to the Software not expressly granted to you in this Agreement are reserved. The CrowdStrike name, the CrowdStrike logo and the product names associated with the Software are trademarks of CrowdStrike and no right or license is granted to use them other than in connection with the use of the Software as allowed by this Agreement.
You agree that if you give us any suggestions, comments and feedback regarding the Software, they can be used by us for any purpose for free.
4. NO WARRANTY.
THE SOFTWARE IS PROVIDED AS IS WITHOUT ANY WARRANTY WHATSOEVER. CROWDSTRIKE, ITS AFFILIATES AND LICENSORS DISCLAIM ALL WARRANTIES, WHETHER EXPRESS, IMPLIED OR STATUTORY, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, ACCURACY, RESULT, EFFORT, TITLE AND NON-INFRINGEMENT, OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.
WARNING POSSIBLE DAMAGE OR DISRUPTION. The Software scans systems and may cause instability, disruption or damage to systems and data thereon. CrowdStrike disclaims responsibility for costs in connection with disruptions of and/or damage to your or a third party’s information systems and the information and data contained therein, including, but not limited to, automatic shut-down of information systems caused by intrusion detection software or hardware, or failure of the information system resulting from the use of the Software.
5. NO LIABILITY.
IN NO EVENT WILL CROWDSTRIKE, ITS AFFILIATES, OR ITS LICENSORS BE LIABLE FOR ANY LOST REVENUE, PROFIT, OR DATA, OR FOR DIRECT, SPECIAL, INDIRECT, CONSEQUENTIAL, INCIDENTAL, OR PUNITIVE DAMAGES HOWEVER CAUSED AND REGARDLESS OF THE THEORY OF LIABILITY ARISING OUT OF THE USE OF OR INABILITY TO USE THE SOFTWARE EVEN IF CROWDSTRIKE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
6. Term and Termination.
This Agreement and the license are effective until terminated. You may terminate this Agreement at any time by destroying all copies of Software including any documentation. This Agreement will terminate immediately without notice from CrowdStrike if You fail to comply with any provision of this Agreement. Upon termination, You must destroy all copies of the Software.
7. Import Regulation and Export Control.
The Software, including technical data, is subject to U.S. export control laws, including the U.S. Export Administration Act and its associated regulations, and may be subject to export or import regulations in other countries. You agree to comply strictly with all such regulations and acknowledge that You have the responsibility to obtain any necessary licenses to export, re-export, or import the Software.
8. Governing Law.
This Agreement shall be governed by and construed in accordance with the laws of the State of California, United States of America, as if performed wholly within the state and without giving effect to the principles of conflict of law. If any portion hereof is found to be void or unenforceable, the remaining provisions of this Agreement shall remain in full force and effect. This Agreement constitutes the entire agreement between the parties with respect to the use of the Software.
9 . Uninstall.
CrowdStrike Shellshock Scanner does not need to be uninstalled. It does not have a separate uninstaller. Instead, all you need to do to remove it is to move it to the Recycle Bin or delete it.
For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Center.Visit the Tech Center