1## 2# This file is part of WhatWeb and may be subject to 3# redistribution and commercial restrictions. Please see the WhatWeb 4# web site for more information on licensing and terms of use. 5# http://www.morningstarsecurity.com/research/whatweb 6## 7Plugin.define "FreakAuth" do 8author "Brendan Coles <bcoles@gmail.com>" # 2011-04-11 9version "0.1" 10description "FreakAuth is a simple authentication library for the Code Igniter PHP framework" 11website "http://freakauth.4webby.com/" 12 13# Google results as at 2011-04-11 # 14# 13 for intitle:"FreakAuth" "Welcome on board ! / Login" 15 16# ShodanHQ results as at 2011-04-11 # 17# 129 for Location: /framework/index.php 18 19# Dorks # 20dorks [ 21'intitle:"FreakAuth" "Welcome on board ! / Login"' 22] 23 24 25 26# Matches # 27matches [ 28 29# Default title 30{ :regexp=>/<title>FreakAuth » [^<]+<\/title>/ }, 31 32# Login link 33{ :regexp=>/Welcome on board ! \/ <a href="http[^"]+">Login<\/a> <\/div>/ }, 34 35] 36 # Passive # 37def passive 38 m=[] 39 40 # FreakAuth Cookie 41 m << { :name=>"FreakAuth Cookie" } if @headers["set-cookies"] =~ /^FreakAuth=/ 42 43 # Location Header # /framework/index.php 44 m << { :name=>"Location Header" } if @headers["location"] =~ /^\/framework\/index\.php$/ 45 46 # Return passive matches 47 m 48end 49 50end 51 52 53