Nmap Development mailing list archives
Re: favicon survey script
From: Joao Correa <joao () livewire com br>
Date: Mon, 10 Aug 2009 23:11:30 -0300
On Mon, Aug 10, 2009 at 9:25 PM, Fyodor<fyodor () insecure org> wrote:
On Sun, Aug 09, 2009 at 08:08:35AM -0300, Joao Correa wrote:Hi Guys, Here are 14 more common favicons: D8BA35521DFC638F134CF3A64D1A6875:IBM F31837841BADDC72BB5AF80A532A75FA:MicrosoftSo a variety of IBM and Microsoft products use this favicon, or you just mean that the IBM/MS web sites themselves use these?
I don't know about any product that use such favicons.
D037EF2F629A22DDADCF438E6BE7A325:PHPMyAdmin CA3B716F25AAF139D83CA205B39F6A87:MediaWiki A2C4C351F8BA8EC02C8AEC910E3D0E8C:Sun A9F0F82E141D8543916559BA574D965A:Java CEDDC34CBEC02D74FE40368E2DC1FA90:Mambo 3905C0D2E530753B4C54A18C554B0B42:ZopeWe may want to describe what the products do. e.g. "PHPMyAdmin MySQL web administration" and "Zope content management system". I think our script should accept comments in the list so we can comment on what systems/versions we've found to use these favicons (similar to the comments you'll find in nmap-os-db). Similarly, "Java" is pretty vague. What systems have you seen using this favicon?
Just java.com, I've been running the script against a list of common websites. Also, Sun favicon also refers to its website, and not to an application.
FF2C8612B75B5F9A6175E016FE4AA609:nmap.org/insecure.org/seclists.org/sectools.orgThose are indeed some of the best sites on the Internet, but I think we should focus on favicons included with platform software (used on many sites) rather than mathcing the custom favicons that most individual sites create. After all, you usually know the name of the site you're scanning. But you might not know the infrastructure information (e.g. what blogging software is running) which can be disclosed by the favicons).
I agree with you. I've been motivated to retrieve these favicons because I've seen many Providers/Hosting favicons on Brandon's common list or even in other lists from scripts that do the same. Also, I've seen Google's and Apple's, that are website specific favicons. The only situation I believe that it would help, would be when scanning an IP, that occasionally is the place where the web server is running (and you don't know whose the IP belongs to). Anyway, whois.nse already takes care of this task.
Cheers, -F
Thanks, João _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Re: favicon survey script, (continued)
- Re: favicon survey script David Fifield (Aug 06)
- Re: favicon survey script Brandon Enright (Aug 06)
- Re: favicon survey script Vlatko Kosturjak (Aug 06)
- Scanning DNS names fast (was Re: favicon survey script) Brandon Enright (Aug 06)
- Re: favicon survey script David Fifield (Aug 06)
- Re: favicon survey script kx (Aug 06)
- Re: favicon survey script Joao Correa (Aug 06)
- Re: favicon survey script Joao Correa (Aug 09)
- Re: favicon survey script Joao Correa (Aug 09)
- Re: favicon survey script Fyodor (Aug 10)
- Re: favicon survey script Joao Correa (Aug 10)
- Re: favicon survey script Joao Correa (Aug 10)
- Re: favicon survey script Joao Correa (Aug 17)
- Re: favicon survey script David Fifield (Aug 18)
- Re: favicon survey script Joao Correa (Aug 28)
- Re: favicon survey script Vlatko Kosturjak (Aug 06)
- Re: favicon survey script Vlatko Kosturjak (Aug 05)