Provided by: whatweb_0.4.9-2_all bug


       WhatWeb - Next generation Web scanner. Identify technologies used by websites.


       whatweb [options] <URLs>


       WhatWeb identifies websites. It's goal is to answer the question, "What is that Website?".
       WhatWeb recognises web technologies including content management systems  (CMS),  blogging
       platforms,  statistic/analytics  packages, JavaScript libraries, web servers, and embedded
       devices. WhatWeb has over 1700 plugins, each to  recognise  something  different.  WhatWeb
       also identifies version numbers, email addresses, account ID's, web framework modules, SQL
       errors, and more.

       WhatWeb can be stealthy and fast, or thorough but slow.  WhatWeb  supports  an  aggression
       level  to control the trade off between speed and reliability. When you visit a website in
       your browser, the transaction includes many hints of what web  technologies  are  powering
       that  website.  Sometimes a single webpage visit contains enough information to identify a
       website but when it does not, WhatWeb can interrogate the  website  further.  The  default
       level  of  aggression, called 'passive', is the fastest and requires only one HTTP request
       of a website. This is suitable for scanning public websites. More  aggressive  modes  were
       developed for in penetration tests.

       Most  WhatWeb  plugins  are thorough and recognise a range of cues from subtle to obvious.
       For example, most WordPress websites can be identified by the meta HTML tag,  e.g.  '<meta
       name="generator"  content="WordPress 2.6.5">', but a minority of WordPress websites remove
       this identifying tag but this does not thwart WhatWeb. The WordPress  WhatWeb  plugin  has
       over  15  tests,  which  include  checking  the favicon, default installation files, login
       pages, and checking for "/wp-content/" within relative links.


            * Over 1700 plugins

            * Control the trade off between speed/stealth and reliability

            * Performance tuning. Control how many websites to scan concurrently.

            * Multiple log formats: Brief  (greppable),  Verbose  (human  readable),  XML,  JSON,
       MagicTree, RubyObject, MongoDB, SQL.

            * Proxy support including TOR

            * Custom HTTP headers

            * Basic HTTP authentication

            * Control over webpage redirection

            * Nmap-style IP ranges

            * Fuzzy matching

            * Result certainty awareness

            * Custom plugins defined on the command line


       <URLs> Enter  URLs,  filenames  or  nmap-format  IP  ranges.  Use  /dev/stdin to pipe HTML

       --input-file=FILE -i
              Identify URLs found in FILE


              Add a prefix to target URLs

              Add a suffix to target URLs

              Insert    the    targets    into    a    URL.    Requires     --input-file,     eg.


       The aggression level controls the trade-off between speed/stealth and reliability.

       --aggression -a=LEVEL
              Set the aggression level. Default: 1.

        1. Stealthy       Makes one HTTP request per target and also follows redirects.
        3. Aggressive     If a level 1 plugin is matched, additional requests will be made.
        4.  Heavy           Makes  a  lot  of HTTP requests per target. URLs from all plugins are


       --user-agent, -U=AGENT
              Identify as AGENT instead of WhatWeb/0.4.9.

       --header, -H
              Add an HTTP header. eg "Foo:Bar". Specifying a  default  header  will  replace  it.
              Specifying an empty value, e.g. "User-Agent:" will remove it.

              Control  when  to  follow redirects. WHEN may be `never', `http-only', `meta-only',
              `same-site', `same-domain' or `always'. Default: always.

              Maximum number of redirects. Default: 10.


       --user, -u=<user:password>
              HTTP basic authentication.

       --cookie, -c=COOKIES
              Use cookies, e.g. 'name=value; name2=value2'.


       --proxy <hostname[:port]> Set proxy hostname and port. Default: 8080.

              <username:password> Set proxy user and password.


       --list-plugins, -l
              List all plugins.

       --info-plugins, -I=[SEARCH]
              List all plugins with detailed information. Optionally search with  keywords  in  a
              comma delimited list.

              Search plugins for a keyword.

       --plugins, -p=LIST
              Select  plugins. LIST is a comma delimited set of selected plugins. Default is all.
              Each element can be a directory, file or plugin name  and  can  optionally  have  a
              modifier, +/-.

       Examples: +/tmp/moo.rb,+/tmp/foo.rb
              -p + is a shortcut for -p +plugins-disabled.

       --grep, -g=STRING
              Search for STRING in HTTP responses. Reports with a plugin named Grep.

              Define a custom plugin named Custom-Plugin,

       Examples: ":text=>'powered by abc'"
       ":version=>/powered[ ]?by ab[0-9]/"
       "{:text=>'powered by abc'}"

       List Google dorks for the selected plugin.


       --verbose, -v
              Verbose output includes plugin descriptions. Use twice for debugging.

              control whether colour is used. WHEN may be `never', `always', or `auto'.

       --quiet, -q
              Do not display brief logging to STDOUT.

              Suppress error messages.


              Log brief, one-line output.

              Log verbose output.

              Log errors.

              Log XML format.

              Log JSON format.

              Log SQL INSERT statements.

              Create SQL database tables.

              Log JSON Verbose format.

              Log MagicTree XML format.

              Log Ruby object inspection format.

              Name of the MongoDB database.

              Name of the MongoDB collection. Default: whatweb.

              MongoDB hostname or IP address. Default:

              MongoDB username. Default: nil.

              MongoDB password. Default: nil.

              Name of the index to store results. Default: whatweb

              Host:port of the elastic http interface. Default:


       --max-threads, -t
              Number of simultaneous threads. Default: 25.

              Time in seconds. Default: 15.

              Time in seconds. Default: 30.

              Wait SECONDS between connections. This is useful when using a single thread.


              Short usage help.

       --help, -h
              Complete usage help.

              Raise errors in plugins.

              Display version information.



       Scan with verbose plugin descriptions.
               ./whatweb -v

       An aggressive scan of detects the exact version of WordPress.
               ./whatweb -a 3

       Scan the local network quickly and suppress errors.
               whatweb --no-errors

       Scan the local network for https websites.
               whatweb --no-errors --url-prefix

       Scan for crossdomain policies in the Alexa Top 1000.
               ./whatweb -i plugin-development/alexa-top-100.txt --url-suffix /crossdomain.xml -p


       Report bugs and feature requests to


       WhatWeb was written by Andrew Horton aka urbanadventurer, and Brendan Coles.


                                       November 23rd, 2017                             WHATWEB(1)