1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
|
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
#
# Version 0.4 # 2011-04-08 # Brendan Coles <bcoles@gmail.com>
# Updated OS detection
##
# Version 0.3 # 2011-02-21 # Brendan Coles <bcoles@gmail.com>
# Added OS detection
##
# Version 0.2
# removed :probability
##
Plugin.define "HTTPServer" do
author "Andrew Horton"
version "0.4"
description "HTTP server header string. This plugin also attempts to identify the operating system from the server header."
# Passive #
def passive
m=[]
unless @headers["server"].nil?
# OS Detection # Windows family
m << { :os=>"Windows (32 bit)" } if @headers["server"] =~ /Win32/i
if @headers["server"] =~ /Windows/i
m << { :os=>"Windows Vista" } if @headers["server"] =~ /Windows Vista/i
m << { :os=>@headers["server"].scan(/(Windows [0-9]{4})/i) } if @headers["server"] =~ /Windows [0-9]{4}/i
m << { :os=>@headers["server"].scan(/(Windows Server [0-9]{4})/i) } if @headers["server"] =~ /Windows Server [0-9]{4}/i
m << { :os=>"Windows XP" } if @headers["server"] =~ /Windows XP/i
m << { :os=>"Windows" } if m.empty?
end
# OS Detection # Unix family
m << { :os=>"MontaVista Hard Hat Linux" } if @headers["server"] =~ /MontaVista Software Hard Hat Linux/i
m << { :os=>"FreeBSD" } if @headers["server"] =~ /FreeBSD/i
m << { :os=>"MacOSX" } if @headers["server"] =~ /MacOSX/i
m << { :os=>"CentOS" } if @headers["server"] =~ /CentOS/i
m << { :os=>"Debian Linux" } if @headers["server"] =~ /Debian/i
m << { :os=>"Ubuntu Linux" } if @headers["server"] =~ /Ubuntu/i
m << { :os=>"Mandrake Linux" } if @headers["server"] =~ /Mandrake/i
m << { :os=>"PCLinuxOS" } if @headers["server"] =~ /PCLinuxOS/i
m << { :os=>"Fedora Linux" } if @headers["server"] =~ /Fedora/i
m << { :os=>"openSUSE" } if @headers["server"] =~ /openSUSE/i
m << { :os=>"Arch Linux" } if @headers["server"] =~ /Arch Linux/i
m << { :os=>"Mandriva Linux" } if @headers["server"] =~ /Mandriva Linux/i
m << { :os=>"SUSE Linux" } if @headers["server"] =~ /Linux\/SUSE/i
m << { :os=>"Slackware Linux" } if @headers["poweredby"] =~ /Slackware/i
m << { :os=>"Gentoo Linux" } if @headers["x-powered-by"] =~ /Gentoo/i
m << { :os=>"Red Hat Linux" } if @headers["server"] =~ /Red[-| ]?Hat/i
m << { :os=>"GNU OpenSolaris" } if @headers["server"] =~ /GNU_OpenSolaris/i
m << { :os=>"Trustix Secure Linux" } if @headers["server"] =~ /Trustix Secure Linux/i
# Unix catch-all
if m.empty? and @headers["server"] =~ /UNIX/i
m << { :os=>"Unix" }
end
# Solaris catch-all
if m.empty? and @headers["server"] =~ /Solaris/i
m << { :os=>"Solaris" }
end
# Linux catch-all # Kernel Version Detection
if m.empty? and @headers["server"] =~ /Linux\/[^\s]+/
m << { :os=>@headers["server"].scan(/(Linux\/[^\s]+)/) }
elsif m.empty? and @headers["server"] =~ /Linux/
m << { :os=>"Linux" }
end
# Return server string
m << {:name=>"server string",:string=>@headers['server'].to_s}
end
# Return passive matches
m
end
end
|
