Easy, realtime, system-wide Shellshock monitoring

In response to the Shellshock vulnerability that targets the bash shell by allowing arbitrary execution through malicious environment variables, a new tool called the "shellshock_detect" chisel has been developed for sysdig, a system monitoring tool. This chisel simplifies the detection of potential Shellshock attacks by capturing all bash executions matching the Shellshock signature and providing detailed information about them, including the time, process name, process ID, and the function being executed. Although traditional network intrusion detection systems like Snort can detect some attacks, they may generate false positives or miss attacks from unknown vectors. The sysdig update enhances real-time monitoring capabilities, offering a more reliable method for identifying and logging Shellshock intrusion attempts, thereby helping users protect their systems more effectively.