I ran a Nmap script on the machine to verify if it was indeed vulnerable to Shellshock. I ran the sudo -l command to identify what can be run as the root user. This showed that the user could run perl ...

run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.