1## 2# This file is part of WhatWeb and may be subject to 3# redistribution and commercial restrictions. Please see the WhatWeb 4# web site for more information on licensing and terms of use. 5# http://www.morningstarsecurity.com/research/whatweb 6## 7Plugin.define "Winmail-Server" do 8author "Brendan Coles <bcoles@gmail.com>" # 2011-06-27 9version "0.1" 10description "Winmail Server is an enterprise class mail server software system offering a robust feature set, including extensive security measures. Winmail Server supports SMTP, POP3, IMAP, Webmail, LDAP, multiple domains, SMTP authentication, spam protection, anti-virus protection, SSL/TLS security, RBL ,SPF, SpamAssassin, Network Storage, remote access, Web-based administration, and a wide array of standard email options such as filtering, signatures, real-time monitoring, archiving, and public email folders." 11website "http://www.magicwinmail.net/" 12 13# Google results as at 2011-06-27 # 14# 343 for intitle:"Powered by Winmail Server - Login" +Username +Password 15 16# Dorks # 17dorks [ 18'intitle:"Powered by Winmail Server - Login" "Username" "Password"' 19] 20 21 22 23# Matches # 24matches [ 25 26# Title 27{ :text=>'<title>WebMail | Powered by Winmail Server - Login</title>' }, 28{ :text=>'<title>Web Administration | Powered by Winmail Server - Login</title>' }, 29 30# Register Page 31{ :text=>'<td class=default> <input type=password name=f_password size=30 maxlength=64 onkeyup="javascript: EvalPwd(this.value);" onchange="javascript: EvalPwd(this.value);" class="textbox"><font color=#ff0000>*</font></td>' }, 32 33# Login Page # Powered by text 34{ :text=>'<a target="_blank" href="http://www.magicwinmail.net?sid=winmailcust">Powered by Winmail Server</a> ' }, 35 36# Admin Page # Powered by text 37{ :text=>'<td align="right" class="hometext"><a href="http://www.magicwinmail.net?sid=winmailcust" target=_blank>Powered by Winmail Server</a></td>' }, 38 39# Logo 40{ :text=>'<td rowspan=2 width="264" bgcolor="#FFFFFF"><img src="themes/default/images/mail_pic.jpg" width="264" height="102"></td>' }, 41 42# Mail Server Detection 43{ :string=>/<td style="color:#888888; font-size: 11px;"> POP3,SMTP Server: <font color=red>([^\s^<]+)<\/font><\/td><\/tr>/ }, 44 45# Remember me link 46{ :text=>'<input type=checkbox name=f_autologin value="1"><acronym style="cursor: hand;" OnClick="f_autologin.click()">Automatically login at next time</acronym>' }, 47 48# Version Detection # HTML Comment 49{ :version=>/<!--[\s]+© 20[\d]{2}(-[\d]{4})? AMAX Information Technologies Inc\. All Rights Reserved\.[\s]+WebMail \| Powered by Winmail Server ([^\s]+)[\s]+-->/, :offset=>1 }, 50 51] 52 53# Passive # 54def passive 55 m=[] 56 57 # magicwinmail_default_language cookie 58 m << { :name=>"magicwinmail_default_language cookie" } if @headers["set-cookie"] =~ /magicwinmail_default_language=[^;]+;/ 59 60 # magicwinmail_domain_name cookie 61 m << { :name=>"magicwinmail_domain_name cookie" } if @headers["set-cookie"] =~ /magicwinmail_domain_name=[^;]+;/ 62 63 # magicwinmail_login_userid cookie 64 m << { :name=>"magicwinmail_login_userid cookie" } if @headers["set-cookie"] =~ /magicwinmail_login_userid=[^;]+;/ 65 66 # Return passive matches 67 m 68end 69end 70 71