Scan for Technology-Specific Vulnerabilities
Scan the identified technologies on your attack surface using tailored checks and methodologies for each
Outputs
findingsweb-technologies
Scan for Technology-Specific Vulnerabilities
Description
Scan the identified technologies on your attack surface using tailored checks and methodologies for each. The currently supported technologies are:
- WordPress
- Microsoft IIS
- Ivanti Pulse Secure
- Joomla
- GitLab
- Jenkins
- Spring Boot
- Jira
- Splunk
- WebLogic
Features
- Performs custom checks based on the identified technologies for a more targeted scan.
- Detects related components and extensions, such as WordPress plugins and themes.
- Can scan thousands of web servers simultaneously.
Inputs
Required
- web-technologies: JSONLines records of web technology discovery details from the “Fingerprint Web Technologies” module.
Optional
- header: Header(s) to include in HTTP requests
- header-file: File with header(s) to include in HTTP requests
Outputs
- findings: JSONLines records of finding details.
- web-technologies: JSONLines records of web component discovery details.
Changelog
- v1.0.0
- Initial release
- v1.1.0
- Added
header-file
input
- Added