Web application fingerprinting

[Anant Shrivastava]

Hi All,

I have been investigating various ways and means to finger print
application...

All i can get from online resources is following stuff.

1) Look for readme or simmilar static files for details

2) look for common files which change only over version's : create
checksum and store for future comparision ex blindelephant etc.

3) speciffic url pattern behaviour.


is there any other method available online.

[null]

Not online yet, but one of our projects (Kunsa) is a web app fingerprinting tool based on regex ruleset (first release). It also looks up corresponding vulns in OSVDB.
Contact Corrupt for the source code. As of now it is in Java, we have been planning to port it in ruby and extend the features before releasing.

Hope it helps

Cheers,
@

--
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/

This list is supported by Institute of Information Security http://iisecurity.in
Learn information security at your own pace – eLearning programs at http://elearning.iisecurity.in

--
Cheers,
@

[t0hitsugu]

This is one of the major problems people run across when needing to analyze large amounts data (think av software). It's a problem of heurestics as there are almost an infinite amount of ways a program might behave.

Web applications are more easily identifible though, and programs like nexpose, nessus and w3af have quite a large database of web applications and vulenerable versions to be aware of.

Proprietary software  is another story and might require disassembling and reversing the backend platform, which would be extrememly tedious and possibly impossible to accomplish

[Atul Agarwal]

This does not answer the question directly, but the following mozilla add-on is a great extension for effortless fingerprinting.

https://addons.mozilla.org/en-US/firefox/addon/wappalyzer/

Thanks,
Atul Agarwal
Secfence Technologies
http://www.secfence.com