Update web-sorrow v1.4.7B – a versatile security scanner for the information disclosure phase of pentesting.

CHANGES v1.4.7B: fixed 2 bugs and minor changes (FYI: the “B” does not mean it’s in beta)

Sample Screenshot Platform : Windows & unix/Linux

A perl based tool used for checking a Web server for misconfiguration, version detection, enumeration, and server information. I will build more Functionality in the future. what is’s NOT: Vulnerably scanner, inspection proxy, DDoS tool, exploitation framework. It’s entirely focused on Enumeration and collecting Info on the target server

CURRENT functionality:
-S – stands for standard. a set of Standard tests and includes: indexing of directories testing, banner grabbing, language detection (should be obvious), robots.txt, 200 response testing (some servers send a 200 ok for every req), and thumbs.db scanning
-auth – looks for login pages with a list of some of the most common login files and dirs and admin consoles. don’t need to be very big list of URLs because what else are going to name it? notAlogin.php???
-Cp – scan with a huge list of plugins dirs. the list is a bit old (Drupal and wordpress plugins databases are now current but sorry joomla’s still a bit old)
-I – searches the responses for interesting strings
-Ws – looks for web services such as hosting provider, blogging services, favicon fingerprinting, and cms version info
-Fd – look for generally things people don’t want you to see. The list is generated form a TON of robot.txt so whatever it finds should be interesting.
-ninja – A light weight and undetectable scan that uses bits and peaces from other scans
-R – use http range headers to make scans faster
-Shadow – Use Google cache instead of requesting from the target host
-Sd – Bruteforce Sub Domains
-Db – Bruteforce Directories with the big dirbuster Database
-Df – Scan for Apache default files
-d – Only Scan with this Directory
-np – don’t do passive testes (less verbose)
-ua – use a custom UserAgent. PUT UA IN QUOTES if there’s spaces
-proxy – send all http reqs via a proxy. example:
-e – run all the scans in the tool
web-sorrow also has false positives checking on most of it’s requests (it pretty accurate but not perfect)


basic: perl Wsorrow.pl -host scanme.nmap.org -S
stealthy: perl Wsorrow.pl -host scanme.nmap.org -ninja -proxy
scan for login pages: perl Wsorrow.pl -host -auth
CMS intense scan: perl Wsorrow.pl -host -Ws -Cp all -I
most intense scan possible: perl Wsorrow.pl -host -e
dump http headers: perl headerDump.pl
Check if host is alive: perl hdt.pl -host
you need PERL to run this program. I you are on linux or an Apple computer you already have perl.
but if you are on a windows computer you can get it here:
or here
Main Program:                 Wsorrow.pl
Simple Host discovery tool:   hdt.pl
Dumps HTTP headers:           headerDump.pl
Experimental DNS Tool:        DNSpull.pl
Download latest Version : Web-Sorrow_1.4.7B.zip (7.1 MB)
Find Other version |
read more in here : http://code.google.com/p/web-sorrow/ |
Our post before :