whatweb是backtrack下的一款Web识别工具,位于
Applications-->BackTrack-->Information Gathing-->Web Application Analysis-->CMS identification-->whatweb
初次使用,我们需在终端下输入
update-alternatives --config ruby
切换为ruby,再输入编号0
root@bt:/pentest/enumeration/web/whatweb# update-alternatives --config ruby There are 2 choices for the alternative ruby (providing /usr/bin/ruby). Selection Path Priority Status ------------------------------------------------------------ 0 /usr/bin/ruby1.8 500 auto mode 1 /usr/bin/ruby1.8 500 manual mode * 2 /usr/bin/ruby1.9.2 400 manual mode
Press enter to keep the current choice[*], or type selection number: 0 update-alternatives: using /usr/bin/ruby1.8 to provide /usr/bin/ruby (ruby) in auto mode.
现在我用whatweb看些自己blog的信息:
root@bt:/pentest/enumeration/web/whatweb# ./whatweb www.evilxr.com Could not load SystemTimer >= v1.2.0. Falling back to timeout.rb. SystemTimer is STRONGLY recommended for timeouts in Ruby 1.8.7. See http://ph7spot.com/blog/system-timer-1-2-release for details. http://www.evilxr.com [200] WordPress[3.9.1], MetaGenerator[WordPress 3.9.1], HTTPServer[Microsoft-IIS/6.0], x-pingback[,http://www.evilxr.com/xmlrpc.php], ASP.NET, UncommonHeaders[x-pingback], HTML5, IP[192.126.119.48], JQuery[1.11.0], Mobile-Website, PHP[5.2.17], X-Powered-By[ASP.NET, PHP/5.2.17], Microsoft-IIS[6.0], Title[Evilxr: Just for fun.]
也可以加参数再看下:
root@bt:/pentest/enumeration/web/whatweb# ./whatweb -v www.evilxr.com Could not load SystemTimer >= v1.2.0. Falling back to timeout.rb. SystemTimer is STRONGLY recommended for timeouts in Ruby 1.8.7. See http://ph7spot.com/blog/system-timer-1-2-release for details. www.evilxr.com/ [200] http://www.evilxr.com [200] WordPress[3.9.1], MetaGenerator[WordPress 3.9.1], HTTPServer[Microsoft-IIS/6.0], x-pingback[,http://www.evilxr.com/xmlrpc.php], ASP.NET, UncommonHeaders[x-pingback], HTML5, IP[192.126.119.48], JQuery[1.11.0], Mobile-Website, PHP[5.2.17], X-Powered-By[ASP.NET, PHP/5.2.17], Microsoft-IIS[6.0], Title[Evilxr: Just for fun.] URL : http://www.evilxr.com Status : 200 ASP.NET -------------------------------------------------------------------- Description: ASP.NET is a free web framework that enables great Web applications. Used by millions of developers, it runs some of the biggest sites in the world. - homepage: http://www.asp.net/ HTML5 ---------------------------------------------------------------------- Description: HTML version 5, detected by the doctype declaration HTTPServer ----------------------------------------------------------------- Description: HTTP server header string String : Microsoft-IIS/6.0 (from server string) IP ------------------------------------------------------------------------- Description: IP address of the target, if available. String : 192.126.119.48 JQuery --------------------------------------------------------------------- Description: Javascript library Version : 1.11.0 MetaGenerator -------------------------------------------------------------- Description: This plugin identifies meta generator tags and extracts its value. String : WordPress 3.9.1 Microsoft-IIS -------------------------------------------------------------- Description: Microsoft Internet Information Services (IIS) for Windows Server is a flexible, secure and easy-to-manage Web server for hosting anything on the Web. From media streaming to web application hosting, IIS's scalable and open architecture is ready to handle the most demanding tasks. - homepage: http://www.iis.net/ Version : 6.0 Mobile-Website ------------------------------------------------------------- Description: This plugin detects websites designed for mobile devices. PHP ------------------------------------------------------------------------ Description: PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. - homepage: http://www.php.net/ Version : 5.2.17 Title ---------------------------------------------------------------------- Description: The HTML page title String : Evilxr: Just for fun. (from page title) UncommonHeaders ------------------------------------------------------------ Description: Uncommon HTTP server headers. The blacklist includes all the standard headers and many non standard but common ones. Interesting but fairly common headers should have their own plugins, eg. x-powered-by, server and x-aspnet-version. Info about headers can be found at www.http-stats.com String : x-pingback (from headers) WordPress ------------------------------------------------------------------ Description: WordPress is an opensource blogging system commonly used as a CMS. Homepage: http://www.wordpress.org/ Version : 3.9.1 X-Powered-By --------------------------------------------------------------- Description: X-Powered-By HTTP header String : ASP.NET, PHP/5.2.17 (from x-powered-by string) x-pingback ----------------------------------------------------------------- Description: A pingback is one of three types of linkbacks, methods for Web authors to request notification when somebody links to one of their documents. This enables authors to keep track of who is linking to, or referring to their articles. Some weblog software, such as Movable Type, Serendipity, WordPress and Telligent Community, support automatic pingbacks String : ,http://www.evilxr.com/xmlrpc.php
若非特别声明,文章均为Evilxr的个人笔记,转载请注明出处。