Banner Grabing in error conditions
Banner Grabing tool by Shounak Itraj
Type the following in the terminal.
git clone https://github.com/shounakitraj/BannerDetect.git /opt/bannerdetect
This tool works on Python 2.7 and you should have Beautifulsoup installed.
Library | Ubuntu | Windows |
---|---|---|
BeautifulSoup | pip install BeautifulSoup | C:\Python27\Scripts\easy_install.exe BeautifulSoup |
Urls
for the redirected Urls.ReconOutput.txt
file. This file gets created in the same directory. Ref: https://www.owasp.org/index.php/Fingerprint_Web_Server_(OTG-INFO-002)
This tool connects to the domains provided in the urls
, creates the URL in format ‘https://
Web Server sometimes may reveal its version if the unexpected/malformed request is sent. We have used following methods to check if version can be grabbed. The functions written in this tool parses both Response Headers and Response Body. If it matches with some pre-defined regex then the respective header or respective HTML tag is shown in output.
Pre-defined Regex:
apache|JSP Engine|jetty|php|ssl
In this function request is send to Server with different methods. If the Server is not configured correctly then it may reveal the version information in the response. Following methods are used for testing.
Server version can be grabbed in 404 error page. This function is written to visit some random page which is unlikely present on any Server.
According to OWASP document, sending malformed requests like changing HTTP protocol Name/Verb of Version is one of the useful test cases for determining Server version.