BlindElephant

From aldeid
Jump to navigation Jump to search
You might also see: WhatWeb is a web scanner that identifies installed stuff (forums, CMS, blogs, etc.) on a remote server

Description

BlindElephant enables to:

  • guess web application installed (mediawiki, phpbb, ...)
  • guess version of web application (e.g. for mediawiki: 1.15, 1.16)

Official site: http://blindelephant.sourceforge.net/

Installation

$ cd /data/
$ svn co https://blindelephant.svn.sourceforge.net/svnroot/blindelephant/trunk blindelephant
$ cd blindelephant/src
$ sudo python setup.py install

Usage

Syntax

python BlindElephant.py [options] url appName

Options

-h, --help
show this help message and exit
-p PLUGINNAME, --pluginName=PLUGINNAME
Fingerprint version of plugin (should apply to web app given in appname)
-s, --skip
Skip fingerprinting webpp, just fingerprint plugin
-n NUMPROBES, --numProbes=NUMPROBES
Number of files to fetch (more may increase accuracy).
Default: 15
-w, --winnow
If more than one version are returned, use winnowing to attempt to narrow it down (up to numProbes additional requests).
-l, --list
List supported webapps and plugins

Use "guess" as app or plugin name to attempt to attempt to discover which supported apps/plugins are installed.

Example

Guess the application

$ cd /data/blindelephant/src/blindelephant/
$ python BlindElephant.py http://www.somesite.com guess
Probing...
Possible apps:
phpbb

Once we know the application installed, we can try to guess the version (see next section).

Guess the version of a known application

The following example illustrates a fingerprinting of a phpBB forum:

$ cd /data/blindelephant/src/blindelephant/
$ python BlindElephant.py http://forum.somesite.com phpbb
Loaded /data/blindelephant/src/blindelephant/dbs/phpbb.pkl with 35 versions, 1250 differentiating paths, and 112 version groups.
Starting BlindElephant fingerprint for version of phpbb at http://forum.somesite.com/forum 

Hit http://forum.somesite.com/forum/docs/CHANGELOG.html
Possible versions based on result: 3.0.7-PL1

Hit http://forum.somesite.com/forum/docs/INSTALL.html
Possible versions based on result: 3.0.7-PL1

Hit http://forum.somesite.com/forum/docs/README.html
Possible versions based on result: 3.0.2, 3.0.3, 3.0.4, 3.0.4-RC1, 3.0.5, 3.0.5-RC1, 3.0.6, 3.0.6-RC1, 3.0.6-RC2, 3.0.6-RC3, 3.0.6-RC4, 3.0.7, 3.0.7-PL1

Hit http://forum.somesite.com/forum/install/schemas/mssql_basic.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/ms_access_primer.zip
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/mysql_basic.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/postgres_basic.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/mssql_schema.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/postgres_schema.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/schema_data.sql
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/docs/FAQ.html
Possible versions based on result: 3.0.5, 3.0.5-RC1, 3.0.6, 3.0.6-RC1, 3.0.6-RC2, 3.0.6-RC3, 3.0.6-RC4, 3.0.7, 3.0.7-PL1

Hit http://forum.somesite.com/forum/docs/AUTHORS
Possible versions based on result: 3.0.7, 3.0.7-PL1

Hit http://forum.somesite.com/forum/contrib/README.html
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/templates/subSilver/admin/board_config_body.tpl
File produced no match. Error: Error code: 404 (Not Found) 

Hit http://forum.somesite.com/forum/install/schemas/oracle_schema.sql
File produced no match. Error: Error code: 404 (Not Found) 

Fingerprinting resulted in:
3.0.7-PL1

Best Guess: 3.0.7-PL1

Comments