{"id":4073,"date":"2016-02-16T23:09:43","date_gmt":"2016-02-16T15:09:43","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=4073"},"modified":"2016-02-16T23:09:54","modified_gmt":"2016-02-16T15:09:54","slug":"lnhg-massive-web-fingerprinter-mwebfp","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2016\/02\/lnhg-massive-web-fingerprinter-mwebfp\/","title":{"rendered":"LNHG &#8211; Massive Web Fingerprinter (mwebfp)"},"content":{"rendered":"<p>The LowNoiseHG (LNHG) Massive Web Fingerprinter was conceived in July 2013 after realizing the usefulness of webserver screenshots to pentesters, during an engagement with large external or internal IP address ranges, as a quick means of identification of critical assets, easily-exploitable services, forgotten\/outdated servers and basic network architecture knowledge of the target.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-4081\" src=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/02\/test-640x570.png\" alt=\"LNHG - Massive Web Fingerprinter (mwebfp)\" width=\"640\" height=\"570\" srcset=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/02\/test-640x570.png 640w, https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/02\/test.png 733w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>The basic operation of mwebfp consists of the processing of an input (targets and TCP ports) that is then used to identify open web server ports with the help of a powerful portscanner (nmap). All ports found open are then analyzed (on HTTP and HTTPS) and all relevant webserver information is recorded, as well as a screenshot of the rendered webpage (as if it is seen from a broswer).<\/p>\n<h3>Features<\/h3>\n<ul>\n<li>Input\n<ul>\n<li>Target(s) can be IP address(es), IP address range(s), server name(s), etc.<\/li>\n<li>Target(s) can be provided directly on the command-line or on a file<\/li>\n<\/ul>\n<\/li>\n<li>Port Definition\n<ul>\n<li>Default ports are 80 (HTTP) and 443 (HTTPS), but any port can be easily configured at runtime<\/li>\n<\/ul>\n<\/li>\n<li>Output\n<ul>\n<li>All output files and related support files for the scan are saved on a directory configured at runtime by the user<\/li>\n<li>Currently,<span class=\"Apple-converted-space\">\u00a0<\/span><strong>mwebfp<\/strong><span class=\"Apple-converted-space\">\u00a0<\/span>exports results on a CSV file (Easily usable on MS Excel) only<\/li>\n<\/ul>\n<\/li>\n<li>Virtual Hosts\n<ul>\n<li>If requested at runtime,<span class=\"Apple-converted-space\">\u00a0<\/span><strong>mwebfp<\/strong><span class=\"Apple-converted-space\">\u00a0<\/span>will find all virutally hosted domains and webpages for the target server<\/li>\n<\/ul>\n<\/li>\n<li>Webserver Screenshots\n<ul>\n<li>If requested at runtime,<span class=\"Apple-converted-space\">\u00a0<\/span><strong>mwebfp<\/strong><span class=\"Apple-converted-space\">\u00a0<\/span>will grab screenshots of all found web pages (Graphical UI under Linux is required)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<h3>Usage<\/h3>\n<pre># LowNoiseHG Massive Web Fingerprinter\r\n# by F4Lc0N - LNHG - USA\/Colombia\r\n#\r\n# Thanks to ET, c4an, Th3R3g3nt, ch0ks and ElJeffe311\r\n# for inspiration, ideas and debugging\/beta-testing help.\r\n\r\nusage: mwebfp.py [-h]\r\n                 [-i INPUT_RANGE | -n SERVER_NAME | -f INPUT_FILE | -r]\r\n                 [-p HTTP_PORTS] [-s HTTPS_PORTS] [-o OUTPUT_DIR]\r\n                 [-t {HTML,XLS,CSV,XML}] [-v {yes,no}] [-w {yes,no}]\r\n\r\noptional arguments:\r\n  -h, --help            show this help message and exit\r\n  -i INPUT_RANGE, --input-range INPUT_RANGE\r\n                        input IP CIDR range\r\n  -n SERVER_NAME, --server-name SERVER_NAME\r\n                        name of server (DNS name)\r\n  -f INPUT_FILE, --input-file INPUT_FILE\r\n                        input file containing IP addresses and\/or IP ranges\r\n  -r, --recover         recover\/continue previous process\r\n  -p HTTP_PORTS, --http-ports HTTP_PORTS\r\n                        TCP HTTP ports (Default: 80\/tcp)\r\n  -s HTTPS_PORTS, --https-ports HTTPS_PORTS\r\n                        TCP HTTPS ports (Default: 443\/tcp)\r\n  -o OUTPUT_DIR, --output-dir OUTPUT_DIR\r\n                        working directory\r\n  -t {HTML,XLS,CSV,XML}, --output-format {HTML,XLS,CSV,XML}\r\n                        output report format (Default: HTML)\r\n  -v {yes,no}, --vhosts {yes,no}\r\n                        choice of processing vhosts for each IP address\r\n                        (Default: no)\r\n  -w {yes,no}, --web-screenshots {yes,no}\r\n                        choice of taking web schreenshots (Default: no)\r\n<\/pre>\n<h3>Requirements<\/h3>\n<p>In order to run<span class=\"Apple-converted-space\">\u00a0<\/span><strong>mwebfp<\/strong><span class=\"Apple-converted-space\">\u00a0<\/span>&#8220;out-of-git&#8221;, with all options enabled, you will need:<\/p>\n<ul>\n<li>Python &#8211; Programming language (sudo apt-get instal python)<\/li>\n<li>nmap &#8211; Port Scanner (sudo apt-get install nmap)<\/li>\n<li>python-nmap &#8211; Python module (apt-get install python-nmap)<\/li>\n<li>requests &#8211; Python module (apt-get install python-requests)<\/li>\n<li>cutycapt &#8211; Qt WebKit Capture Utility (You will need the latest version to be able to capture HTTPS pages &#8211; do NOT do apt-get !!!)<\/li>\n<li>A graphical interface (GUI) on the *nix server you are running the script (I assume Linux)<\/li>\n<\/ul>\n<p>You can download mwebfp here:<\/p>\n<p><a href=\"https:\/\/github.com\/falcon-lnhg\/mwebfp\/archive\/master.zip\">mwebfp-master.zip<\/a><\/p>\n<p>Or read more <a href=\"https:\/\/github.com\/falcon-lnhg\/mwebfp\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The LowNoiseHG (LNHG) Massive Web Fingerprinter was conceived in July 2013 after realizing the usefulness of webserver screenshots to pentesters, during an engagement with large external or internal IP address ranges, as a quick means of identification of critical assets, easily-exploitable services, forgotten\/outdated servers and basic network architecture knowledge of the target. The basic operation [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"The LowNoiseHG (LNHG) Massive Web Fingerprinter was conceived in July 2013 after realizing the usefulness of webserver screenshots to pentesters","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[9,5],"tags":[2345,47,2817],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4073"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=4073"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4073\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=4073"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=4073"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=4073"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}