[ryanlol]

It's 2017 and scanning /0 for PUT still reliably gets a bunch of shells...

[exikyut]

OH, that's a _netmask_. It took me an entire day to figure that out. I thought /0 was a path :)

[kevindqc]

Why does that return a shell?

[dogma1138]

Web shell via put, still quite common.

Just as common as dorking for common webshells with no or default passwords.

If you need a VPS fast googling for c99 is faster than spinning up something on AWS ;)

[exikyut]

Would like to learn more about this.

Hmm... looks like this dropped from 20k to 700 while I wasn't looking, which I guess is a very good thing (these are DVRs!). But FWIW, for "JAWS/1.0 -2017 -2016" on shodan, then "/shell?whoami" returns "root". :)