BlindElephant
Jump to navigation
Jump to search
Description
BlindElephant enables to:
- guess web application installed (mediawiki, phpbb, ...)
- guess version of web application (e.g. for mediawiki: 1.15, 1.16)
Official site: http://blindelephant.sourceforge.net/
Installation
$ cd /data/ $ svn co https://blindelephant.svn.sourceforge.net/svnroot/blindelephant/trunk blindelephant $ cd blindelephant/src $ sudo python setup.py install
Usage
Syntax
python BlindElephant.py [options] url appName
Options
- -h, --help
- show this help message and exit
- -p PLUGINNAME, --pluginName=PLUGINNAME
- Fingerprint version of plugin (should apply to web app given in appname)
- -s, --skip
- Skip fingerprinting webpp, just fingerprint plugin
- -n NUMPROBES, --numProbes=NUMPROBES
- Number of files to fetch (more may increase accuracy).
- Default: 15
- -w, --winnow
- If more than one version are returned, use winnowing to attempt to narrow it down (up to numProbes additional requests).
- -l, --list
- List supported webapps and plugins
Use "guess" as app or plugin name to attempt to attempt to discover which supported apps/plugins are installed.
Example
Guess the application
$ cd /data/blindelephant/src/blindelephant/ $ python BlindElephant.py http://www.somesite.com guess Probing... Possible apps: phpbb
Once we know the application installed, we can try to guess the version (see next section).
Guess the version of a known application
The following example illustrates a fingerprinting of a phpBB forum:
$ cd /data/blindelephant/src/blindelephant/ $ python BlindElephant.py http://forum.somesite.com phpbb Loaded /data/blindelephant/src/blindelephant/dbs/phpbb.pkl with 35 versions, 1250 differentiating paths, and 112 version groups. Starting BlindElephant fingerprint for version of phpbb at http://forum.somesite.com/forum Hit http://forum.somesite.com/forum/docs/CHANGELOG.html Possible versions based on result: 3.0.7-PL1 Hit http://forum.somesite.com/forum/docs/INSTALL.html Possible versions based on result: 3.0.7-PL1 Hit http://forum.somesite.com/forum/docs/README.html Possible versions based on result: 3.0.2, 3.0.3, 3.0.4, 3.0.4-RC1, 3.0.5, 3.0.5-RC1, 3.0.6, 3.0.6-RC1, 3.0.6-RC2, 3.0.6-RC3, 3.0.6-RC4, 3.0.7, 3.0.7-PL1 Hit http://forum.somesite.com/forum/install/schemas/mssql_basic.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/ms_access_primer.zip File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/mysql_basic.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/postgres_basic.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/mssql_schema.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/postgres_schema.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/schema_data.sql File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/docs/FAQ.html Possible versions based on result: 3.0.5, 3.0.5-RC1, 3.0.6, 3.0.6-RC1, 3.0.6-RC2, 3.0.6-RC3, 3.0.6-RC4, 3.0.7, 3.0.7-PL1 Hit http://forum.somesite.com/forum/docs/AUTHORS Possible versions based on result: 3.0.7, 3.0.7-PL1 Hit http://forum.somesite.com/forum/contrib/README.html File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/templates/subSilver/admin/board_config_body.tpl File produced no match. Error: Error code: 404 (Not Found) Hit http://forum.somesite.com/forum/install/schemas/oracle_schema.sql File produced no match. Error: Error code: 404 (Not Found) Fingerprinting resulted in: 3.0.7-PL1 Best Guess: 3.0.7-PL1