WhatWeb

WhatWeb fingerprints websites. It recognizes web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices.

WhatWeb has over 900 plugins, each to recognize something different. It also identifies version numbers, email addresses, account IDs, web framework modules, SQL errors, and more.

Why is this helpful? You can use this information to look for known vulnerabilities matching versions, learn about the site architecture, and discover other services that might not have shown up in network scanning.

Install

sudo apt install whatweb

Usage: whatweb [options] <URLs>

Examples:

whatweb -a 3 www.wired.com //aggressive scan
whatweb -v reddit.com slashdot.org //Verbose multi site scan
whatweb --no-errors --url-prefix https:// 192.168.0.0/24 //Scan CIDR for https websites
whatweb -i plugin-development/alexa-top-100.txt --url-suffix /crossdomain.xml -p crossdomain_xml //Scan for cross-domain policies in the Alexa Top 1000.

PreviousWeb Server OSINT NextSubdomains

Last updated 2 years ago