Questions about this topic? Sign up to ask in the talk tab.
Difference between revisions of "Wordpress Fingerprinting"
From NetSec
| Line 1: | Line 1: | ||
| − | + | {{info|Wordpress comes bundled with the tinymce.js plug-in. Because this code changes '''every''' wordpress release, we are able to use its [[Cryptography|md5sum]] to determine a wordpress version against a target site. A [[perl]] script is below.}} | |
| − | + | {{code|text= | |
<syntaxhighlight lang="perl"> | <syntaxhighlight lang="perl"> | ||
#!/usr/bin/perl | #!/usr/bin/perl | ||
| Line 52: | Line 52: | ||
print "Version:\t$ver_hash{$final}\n\n"; | print "Version:\t$ver_hash{$final}\n\n"; | ||
} | } | ||
| − | </syntaxhighlight> | + | </syntaxhighlight>}} |
| − | + | ||
| + | {{InHouse}} | ||
{{series | {{series | ||
| Name = Wordpress Fingerprinting | | Name = Wordpress Fingerprinting | ||
| PartOf = Web applications | | PartOf = Web applications | ||
}} | }} | ||
Revision as of 04:05, 12 March 2012
|
Wordpress comes bundled with the tinymce.js plug-in. Because this code changes every wordpress release, we are able to use its md5sum to determine a wordpress version against a target site. A perl script is below. |
|
<syntaxhighlight lang="perl">
use strict; use LWP::UserAgent; use HTTP::Request; use HTTP::Response; use Digest::MD5 qw(md5_hex); my $domain = shift |
|
|
|
|
Wordpress Fingerprinting Visit the Web applications Portal for complete coverage.
|
