WhatWeb
Web technology identification and fingerprinting tool
Recon & OSINT10 commands
#recon#fingerprinting#technology#web
Installation
1Install via package manager
2Or install via gem
3Verify installation
# Debian/Ubuntu
apt install whatweb
# Using gem
gem install whatweb
# Verify
whatweb --versionBasic Usage
Identify web technologies, CMS, frameworks, and server software
# Basic scan
whatweb example.com
# Verbose output
whatweb -v example.com
# Aggressive mode
whatweb --aggression 3 example.comCommand Reference
10 commands
1Verbose output
-v2Set aggression level (1-3)
--aggression3Colorize output
--color4Set user agent
-a5Add custom header
-H6Set request timeout
-t7Quiet mode
-q8Log output in JSON format
--log-json9Log output in XML format
--log-xml10Use proxy
--proxyWhen to Use
1
Technology profiling of web applications2
Reconnaissance and asset inventory3
Before exploitation to identify vulnerable components4
Finding version-specific vulnerabilities5
Competitor technology analysisNotes & Tips
1
Can be noisy; use in controlled environments for best results2
Combine with nmap for comprehensive fingerprinting3
Supports 1800+ plugins for wide coverageCommon Errors & Solutions
No results
Ensure the URL is correct and reachable
Connection refused
Check if the target allows inbound connections
Timeout
Increase timeout with -t flag or reduce aggression level