Fingerprinting a webserver + finding new web applications

Tools

• Nmap
• Nikto
• Netcraft online tool
• Wappalyzer browser plugin
• Curl/wget to send malformed requests

Test for

• nmap -sV ip_adr

-sV is the flag for banner grabbing

• Nikto — host ip_addr

Nikto will automatically try banner grabbing

• Wapplyzer browser plugin