1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
|
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
Plugin.define "FreakAuth" do
author "Brendan Coles <bcoles@gmail.com>" # 2011-04-11
version "0.1"
description "FreakAuth is a simple authentication library for the Code Igniter PHP framework"
website "http://freakauth.4webby.com/"
# Google results as at 2011-04-11 #
# 13 for intitle:"FreakAuth" "Welcome on board ! / Login"
# ShodanHQ results as at 2011-04-11 #
# 129 for Location: /framework/index.php
# Dorks #
dorks [
'intitle:"FreakAuth" "Welcome on board ! / Login"'
]
# Matches #
matches [
# Default title
{ :regexp=>/<title>FreakAuth » [^<]+<\/title>/ },
# Login link
{ :regexp=>/Welcome on board ! \/ <a href="http[^"]+">Login<\/a> <\/div>/ },
]
# Passive #
def passive
m=[]
# FreakAuth Cookie
m << { :name=>"FreakAuth Cookie" } if @headers["set-cookies"] =~ /^FreakAuth=/
# Location Header # /framework/index.php
m << { :name=>"Location Header" } if @headers["location"] =~ /^\/framework\/index\.php$/
# Return passive matches
m
end
end
|
