Cetus Teeth

The following features have been add/improved/fixed since 0.5.2 (listed in random order):

• Help screen has been updated
• Added some error handling
• Updated fingerprints/vulnerability DB
• Added Redhat OS detection
• Added sub domain search (and switch to disable it (-d))
• Made it possible to use wig as a lib
• Cleaned up unused imports
• wig now suggests additional tools that can be used for more information gathering
• Added detection of ColdFusion
• Improved SharePoint detection
• Added verbose outputting
• wig now tries to use HEAD requests before GET requests
• Improved display/output of results
• Added platform anomaly detection - if multiple platforms are detected, wig lists a URL for each platform
• Added initial Magento detection
• Added detection of 'Directory Listing'

Jellyfish venom update 2

Two new features added:

• Save results to JSON file
• Load targets from file

These have been added in response to #6.
Thanks to trond7 for the suggestions!

Jellyfish venom update 1

Minor fix in the matcher to handle case when a response is none - and some fingerprint updates.

Jellyfish venom

Much of wig has been rewritten and new features have been added. New features include:

• proxy support
• vulnerability lookup
• proper threading support (thread pool)
• site info (title, IP, cookie)
• improved crawler
• improved verbosity printing
• changed fingerprint format of OS fingerprints to match the rest of the fingerprints
• added new fingerprints and improved old ones

Ectoplasm

Fixed a leftover dependency used for testing (chardet).

Ectoplasm

This version has seen improvements to:

• the output format
• dependencies (requests is no longer required)
• caching of requests between runs
• fingerprints (updated existing and add new)

Faerie dust

Previous versions of wig were based on a plugin system, but this has been changed, as the structure was somewhat complicated. The new structure should be more simple and it should be easier to get an understanding of the process. Another focus has been commenting the code - some parts still lack, but it has been improved.

The process of detecting CMS versions has also been changed - in the previous versions all fingerprints were checked before exiting. In this version 'wig' defaults to exiting as soon as the first CMS has been detected. This can be changed at run time though. With this change 'wig' makes less requests and exit faster.

This version of 'wig' also detects popular JavaScript libraries, and interesting files such as admin pages, readmes, etc.

Hex bug fix 1.1

Fixed a copy/paste error.

Hex bug fix 1

There were some issues in the parsing the of the response headers. The plugin for handling this has been removed, and now header parsing is a feature instead of a plugin. In next minor version, the operating system plugin will see the same change.

Hex

Major update to wig.

A license has been added.

Desperate mode has been added (simple resource crawler)

The following CMS plugins have been added:

• ZenPhoto
• Django
• Prestashop
• phpPgAdmin
• RoundCube Webmail

Updated the following plugins have been improved:

• squirrelmail
• drupal

The structure of the OS database has been updated, and added better detection for Debian.