Our new SANS research takes you inside the minds & methods of modern adversaries. Get the report ›

Offensive Tools

Big-IP Scanner: Determine If Your Version is at Risk

Big-IP Scanner aids you in determining which software version is running on a remote F5 BIG-IP management interface.

About Big-IP Scanner

Determine the running software version of a remote F5 BIG-IP management interface.

CVE-2022-1388, a critical vulnerability in the F5 BIG-IP management interface, allows an attacker to bypass authentication and remotely execute arbitrary system commands. Bishop Fox developed a BIG-IP scanner that you can use to determine:

  • Which software version is running on a remote F5 BIG-IP management interface
  • Whether a specific appliance is affected by any known vulnerabilities, including CVE-2022-1388—all without sending any malicious traffic to the server (i.e., risking being blocked by a WAF)
Bishop Fox Researcher Caleb Gross Headshot

Lead Researcher

Caleb Gross

Caleb Gross is a Senior Security Engineer at Bishop Fox, where he works as a technical lead for the Cosmos, formerly CAST, Managed Security Service. Prior to coming to Bishop Fox, he served as an exploitation operator in the US Department of Defense's most elite computer network exploitation (CNE) unit. As a top-rated military officer, Caleb led an offensive operations team in the US Air Force's premier selectively manned cyber attack squadron. He studied at the University of Virginia and holds two degrees in computer science.

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.