For this recipe, you will need the SecLists Payload for Unix commands:
- SecLists-master | Fuzzing | FUZZDB_UnixAttacks.txt
- Download from GitHub: https://github.com/danielmiessler/SecLists
Using the OWASP Mutillidae II DNS Lookup page, let's determine whether the application is vulnerable to command injection attacks.