w3bfukk0r 0.2

Posted by Nico Golde in hacks & code
Saturday, October 21. 2006

was just released a new w3bfukk0r version.

w3bfukk0r is a forced browsing tool, it basically scans webservers (HTTP/HTTPS) for a directory by using HTTP HEAD command and brute force mechanism based on a word list. Features:
HTTP/HTTPS(SSL) support
Banner grabbing
User-Agent faking
Proxy support (HTTP/S)
Reports found and non-existend directories

Note: Not all webservers are handling HTTP status codes correctly, so if the webserver doesn't care about RFCs the report generated by w3bfukk0r may include false positives. Maybe we'll find a good method to detect those false positives.

http://www.ngolde.de/download/w3bfukk0r-0.2.tar.gz

List of changes (CHANGELOG):

* w3bfukk0r 0.2 21.10.2006
- HTTP and HTTPS proxy support
- bug fixes
- it's now possible to specify more than just one URL to be scanned
- the man page has been rewritten
- a Doxyfile and doxygen source comments have been included
- support for the -p command line option has been dropped, use : instead

Comments (5) - Trackbacks (0)

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

Hi

It would be quite a big help if you'd add some sort of description or hyperlink explaining what this w3bfukk0r thingie is. Reding your blog article, I have just absolutely no idea whether w3bfukk0r is something I do want or not.

Br, Mat

#1 Mathias Weyland on 2006-10-21 10:57 (Reply)

Mhm I posted about it in the past so I thought everyone knows what it is, I edited the post. thanks

#2 nion (Homepage) on 2006-10-21 12:44 (Reply)

Hi

Thanks for the update. I did read some article(s?) about it in the past but I was not able to recall them while reading this article. Adding some description or hyperlink helps. Thank you.

#2.1 Mathias Weyland on 2006-10-21 19:38 (Reply)

FIXED: http://www.zdziarski.com/projects/mod_evasive/

#3 scriptkidssuck on 2006-10-21 14:27 (Reply)

Do you have a webserver with this installed? w3bfukk0r is not that evasive and even the website of the developers doesn seem to use if, if it does it does not block w3bfukk0r:
w3bfukk0r http://www.zdziarski.com/ [/home/nion]
Starting w3bfukk0r 0.2
Scanning http://www.zdziarski.com/ with 101 words from words.txt

Found http://www.zdziarski.com/images/ (HTTP 200)
Found http://www.zdziarski.com/papers/ (HTTP 200)
Found http://www.zdziarski.com/cgi-bin/ (not public; HTTP 403)

Found 3 directories.
Server runs: Apache/1.3.33 (Unix) PHP/4.4.0

Scan finished (19 seconds).

Conclusion: crap (for w3bfukk0r)

#4 nion on 2006-10-21 16:08 (Reply)

Add Comment

Name
Email
Homepage
In reply to
Comment	Enclosing asterisks marks text as bold (word), underscore are made via _word_. Standard emoticons like :-) and ;-) are converted to images. You can use [geshi lang=lang_name [,ln={y\|n}]][/geshi] tags to embed source code snippets. E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above: You can use [geshi lang=lang_name [,ln={y\|n}]][/geshi] tags to embed source code snippets.
	Remember Information?

w3bfukk0r 0.2

nion's blog

w3bfukk0r 0.2

Calendar

Quicksearch

Support

Recent Entries

Archives

Syndicate This Blog

Categories

Tag cloud