1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
# Version 0.2 # 2011-08-23 #
# Added version detection
##
Plugin.define "WeBid" do
author "Brendan Coles <bcoles@gmail.com>" # 2011-06-17
version "0.1"
description "Open source php/mysql fully featured auction script. - Homepage: http://www.webidsupport.com/"
# ShodanHQ results as at 2011-06-17 #
# 26 for WEBID_ONLINE
# Google results as at 2011-06-17 #
# 243 for "powered by WeBid"
# 7 for "WeBid Installer" inurl:"install.php" ext:php
# Dorks #
dorks [
'"powered by WeBid"'
]
# Examples #
examples %w|
72.51.36.63
satraders.net/WeBid/
ticcmall.net/browse.php
www.kinkebay.co.uk/index.php
www.propertyplaces.com/contents.php
alaganga.com/WeBid-0.8.5/WeBid/browse.php
auction.ideorg.org/item.php
ezbid.dedlines.com/item.php
www.nelo.eu/auctions/user_login.php
nobilis.nobles.edu/webid/item.php
site.tsodna.edu.ge/browse.php
www.uboatbid.com/test/install/install.php
www.uboatbid.com/us/install/install.php
elongatedauctions.com/install/install.php
ankand.net/a/install.php
|
# Matches #
matches [
# Meta Generator
{ :text=>'<meta name="generator" content="WeBid">' },
# Year Detection # Powered by footer
{ :string=>/Powered by <a href="http:\/\/www\.webidsupport\.com\/">WeBid<\/a> © 2008\s?[,-] ([\d]{4}) <a href="http:\/\/www\.webidsupport\.com\/">WeBid<\/a>/ },
# WEBID_ONLINE cookie
{ :search=>"headers[set-cookie]", :regexp=>/WEBID_ONLINE=[a-f\d]{32};/ },
# Version Detection # ./install/install.php
{ :version=>/<h1>WeBid Installer v([^\s^>]+)<\/h1>[\s]*<form name="form1" method="post" action="\?step=1">/ },
]
end
|
