We’re very proud to release WebTech as open-source software. WebTech is a Python software that can identify web technologies by visiting a given website, parsing a single response file or replaying a request described in a text file.
This way you can have reproducible results and minimize the requests you need to make to a target website.
Also Read – DNSDmpstr : Unofficial API & Client for DnsDumpster & HackerTarget
CLI Installation
WebTech is available on pip:
pip install webtech
It can be also installed via setup.py:
python setup.py install –user
Burp Integration
Download Jython 2.7.0 standalone and install it into Burp.
In “Extender” > “Options” > “Python Environment”:
Finally, in “Extender” > “Extension”:
Usage
Scan a website:
$ webtech -u https://example.com/
Target URL: https://example.com
…
$ webtech -u file://response.txt
Target URL:
…
Full usage:
$ webtech -h
Usage: webtech [options]
Options:
-h, –help show this help message and exit
-u URLS, –urls=URLS url(s) to scan
–ul=URLS_FILE, –urls-file=URLS_FILE
url(s) list file to scan
–ua=USER_AGENT, –user-agent=USER_AGENT
use this user agent
–rua, –random-user-agent
use a random user agent
–db=DB_FILE, –database-file=DB_FILE
custom database file
–oj, –json output json-encoded report
–og, –grep output grepable report
–udb, –update-db force update of remote db files
Resources for database matching
bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…