Post Thu May 25, 2006 4:40 pm

httprint - web server fingerprinting

Cool little tool to do fingerprinting. Nice feature is that it gives you a percentage of certainty for the type of web server the target is running. So in addition to showing what banner the server shows to the world (which is most likely changed to protect the server) but then deduces what the real web server is most likely to be.

httprint is a web server fingerprinting tool. It relies on web server characteristics to accurately identify web servers, despite the fact that they may have been obfuscated by changing the server banner strings, or by plug-ins such as mod_security or servermask. httprint can also be used to detect web enabled devices which do not have a server banner string, such as wireless access points, routers, switches, cable modems, etc. httprint uses text signature strings and it is very easy to add signatures to the signature database.


Current Version = httprint 301 (released on 22/12/05)

http://net-square.com/httprint/#downloads

Don
CISSP, MCSE, CSTA, Security+ SME