Today I am presenting my work for past some days in form of a white paper.
This white paper basically outlines the automated finger printing methods, techniques and ideas for prevention automated methods to work on your site.
BTW those who are having wappalyzer on there browsers just enjoy visiting my Joomla Powered Website. 😀
Here is the link for HTML version of the paper which also includes the PDF version for download.
Web Application finger printing : Methods/Techniques and Prevention
Waiting to hear from the fellows (I am expecting rebuke, criticism, and a bit of appreciation if its worth it)
Thanks, nice interesting post! i’m folowing your blog fom new on.
Nice overview. Not much new under the sun though. And yes, scanners will always need some human brains looking and interpreting the results. But generally speaking, any fingerprints detected will always be only a low ranked item in an vulnerability assessment (unless a vulnerable version of the software is run). Do you know any companies that really try to hide the versions of their software, apart from some simple configuration changes to hide the detailed versions? It is security by obscurity after all …
Herman, the main aim of the white paper was to tell everyone that these softwares can be a lie too and the reliability factor of the report is not 100% coz of the way they are build.
Obviously human input is always needed and ya till its a open vulnerability version detection / software detection is a low rank item.
Nice overview and not much new under the sun though. And yes, scanners will always need some human brains looking and interpreting the results. It is security by obscurity after all and I believe too that obviously human input is always needed and ya till its a open vulnerability version detection or software detection is a low rank item.