whatweb
WhatWeb identifies websites. WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices.
Details
Category: Misconfiguration
Publisher: trickest
Created Date: 8/4/2021
Container: quay.io/trickest/whatweb:v0.5.5
Source URL: https://github.com/urbanadventurer/WhatWeb
Parameters
Proxy
string
Command:
--proxy
- Set proxy hostname and port. Format: hostname[:port]Cookies
string
Command:
-c
- Provide cookies, e.g. “name=value; name2=value2”.targets
string
requiredCommand:
- URLs, hostnames, IP addresses, or IP ranges in CIDR, x.x.x-x, or x.x.x.x-x.x.x.x formathttp-auth
string
Command:
-u
- Http basic authentication. Format: user:passwordinput-file
file
requiredCommand:
--input-file
- Read targets from a file.proxy-user
string
Command:
--proxy-user
- Set proxy user and password. Format: username:passworduser-agent
string
Command:
-U
- Identify as AGENT instead of WhatWeb/0.5.2.Http-header
string
Command:
-H
- Add an HTTP header. Specifying an empty value, eg. “User-Agent:” will remove the header.Cookies-file
file
Command:
--cookiejar
- Read cookies from a filecolor-output
string
Command:
--color
- Control whether colour is used. Options: “never”, “always”, “auto”google-dorks
string
Command:
-dorks
- List Google dorks for the selected pluginopen-timeout
string
Command:
--open-timeout
- Timeout for opening the connection in seconds. Default: 15.plugins-list
boolean
Command:
-l
- List all pluginsread-timeout
string
Command:
--read-timeout
- Timeout for reading the answer in seconds. Default: 30.custom-plugin
string
Command:
--custom-plugin
- Define a custom plugin named Custom-Plugin. Example: “:text=> ’powered by abc’ ”Select-plugins
string
Command:
-p
- Select plugins from a comma delimited list. Default is all.follow-redirect
string
Command:
--follow-redirect
- Control when to follow redirects. Options: “never”, “http-only”, “meta-only”, “same-site”, or “always”. Default: “always”.aggression-level
string
Command:
-a
- Controls trade-off between speed/stealth and reliability. Levels: “Stealthy” - One http request per target; “Agressive” - If a level 1 plugin is matched, additional requests will be made; “Heavy” - Makes a lot of http requests per target. Aggressive tests from all plugins are used for all URL’s.No-error-messages
boolean
Command:
--no-errors
- Suppress error messagesnumber-of-threads
string
Command:
-t
- Number of threads. Default: 25.Search-string-regexp
string
Command:
-g
- Search for String or Regular Expression. Shows only results that match.maximum-number-of-redirects
string
Command:
--max-redirects
- Maximum number of contiguous redirects. Default: 10