Find vulnerable components - For example cgi-bin/your_browser for Apache Include env variable : () { :; }; echo; COMMAND