The version of your browser is currently unsupported. Too bad we cannot support all legacy browsers.
Please upgrade to the latest Firefox, Chrome or Safari and IE and come back.
This ad-hock tool, which will detect the presence of the Shellshock vulnerability (a.k.a The Bash Bug). Keep mind that this tool only checks for Shellshock and nothing else. For a general-purpose scanner just use the Scanner, which also checks for this vulnerability.
The tool uses 3 methods of identification: reflected header, reflected body and time-based. The vulnerability is tested against the request headers (i.e. the classic shellshock test) and url and form parameters. As far as we know this tool provides the most complete test coverage although we are obviously bias.
This tool is part of our ongoing effort to secure and protect public web infrastructure.