## # This file is part of WhatWeb and may be subject to # redistribution and commercial restrictions. Please see the WhatWeb # web site for more information on licensing and terms of use. # http://www.morningstarsecurity.com/research/whatweb ## Plugin.define "Oracle-Siebel-CRM" do author "Brendan Coles " # 2010-11-01 version "0.1" description "The world's most complete customer relationship management (CRM) solution, Oracle's Siebel CRM helps organizations differentiate their businesses to achieve maximum top-and bottom-line growth. It delivers a combination of transactional, analytical, and engagement features to manage all customer-facing operations. - homepage: http://www.oracle.com/us/products/applications/siebel/index.html" # 3 ShodanHQ results for Set-Cookie: BIGipServerSIEBEL # 8 ShodanHQ results for start.swe # 138 Google results for filetype:swe inurl:start # Dorks # dorks [ 'filetype:swe inurl:start' ] # Examples # examples %w| 67.66.44.17 70.137.112.170 81.200.198.107 81.200.202.73 86.65.43.202 163.231.4.68/eservice_enu/ 163.231.5.68/eservice_enu/ 209.173.53.80 209.173.57.80 customercenter.solidworks.com/eservice_enu/ eservices.archives.gov/orderonline/ mkt.solidworks.com/emarketing_enu/ partnergateway.motorola.com/prmportalexternal_enu/ siebel.ilovenydata.com/prmportal_enu/ siebel-rbak.redback.com/eservice/ widesurf.appspot.com/eservices.archives.gov/orderonline/ www.license.nsw.gov.au/gls_eservice/ https://appregistration.fahcsia.gov.au/ https://connect.ariba.com/connect/start.swe https://ctms.dcri.duke.edu/eclinical_enu/ https://eco.copyright.gov/eService_enu/ https://eipweb.uspto.gov/SOMS/ https://fofms.fahcsia.gov.au/fofmsportal/ https://gesonline.ges.com/esales_enu/ https://lsionline3.lsil.com/eservice-ssi/ https://portal.casa.gov.au/selfservice/ https://sbwsweb.ieee.org/ecustomercme_enu/ https://sbprodweb.riag.com/etraining_enu/ https://secure.tes.dwp.gov.uk/eservice_enu/ https://siebel.ada.org/ecustomer_enu/ https://srmanager.netiq.com/eservice_ENU/ https://treas-secure.treas.state.mi.us/eservice_enu/ https://webcrm.towerhamlets.gov.uk/eService_enu/ https://webshop.dnv.com/global/ https://www.computerproductseurope.co.uk/eservice_enu/ https://www.fastrac4.nokia.com/prmportalHI_chs/start.swe | matches [ # Default Shortcut Icon { :md5=>"a28ebcac852795fe30d8e99a23d377c1", :url=>"/favicon.ico", :string=>"eService" }, # Frameset # Default HTML tag { :text=>"" }, # Landing page # JavaScript message { :text=>"

Scripting is used to manage data interactions between the Siebel server/Web Server and the User Interface. This requires JavaScript to be enabled in the web browser

" }, # Error page { :text=>'The server you are trying to access is either busy or experiencing difficulties. Please close the Web browser, open a new browser window, and try logging in again.', :string=>"Temporarily Unavailable" }, # Landing page # Default JavaScript { :text=>'alert("Your session timed out because you were idle for too long. Please log in again to resume.\nIf you had a Siebel attachment open, your changes may have been lost. Please save the file locally, close it, and reattach it to the appropriate record.");' }, { :text=>'' }, # Login page # Default HTML comment { :text=>'' }, # Landing page # Body onload { :text=>"", :string=>"eService" }, # Landing Page # Default JavaScript { :text=>'' }, ] # Passive # def passive m=[] # Cookies m << { :name=>"BIGipServerSiebel_EService_Prod Cookie" } if @headers["set-cookie"] =~ /BIGipServerSiebel_EService_Prod=[\d\.]+;/ m << { :name=>"BIGipServerSIEBEL Cookie" } if @headers["set-cookie"] =~ /BIGipServerSIEBEL-80=[\d\.]+;/ m << { :name=>"_sn Cookie" } if @headers["set-cookie"] =~ /_sn=[a-zA-Z0-9]{43}_; Version=1; Path=\// # Landing page # Default form HTML m << { :string=>@body.scan(/