~/trending
~$PIMONO24.1%~$OPENCLAW15.6%~$ZVEC55.9%~$CLAUDECO5.1%~$HERETIC15.2%~$ROWBOAT12.7%~$GOGCLI19.8%~$CODEXCLI2.3%~$CONTEXT72.5%~$SUMMARIZ19.5%~$PIMONO24.1%~$OPENCLAW15.6%~$ZVEC55.9%~$CLAUDECO5.1%~$HERETIC15.2%~$ROWBOAT12.7%~$GOGCLI19.8%~$CODEXCLI2.3%~$CONTEXT72.5%~$SUMMARIZ19.5%
live
Navigate:
WhatWeb
~$WHATW0.2%

WhatWeb: Web technology identification scanner

Ruby web scanner that identifies technologies and frameworks using 1800+ detection plugins.

LIVE RANKINGS • 10:20 AM • STEADY
OVERALL
#296
2
SECURITY
#25
2
30 DAY RANKING TREND
ovr#296
·Secur#25
STARS
6.4K
FORKS
977
7D STARS
+16
7D FORKS
-3
Tags:
Security
See Repo:
Share:

Learn more about WhatWeb

WhatWeb is a reconnaissance tool that analyzes HTTP responses, HTML content, and server headers to fingerprint web technologies. It operates through a plugin-based architecture where each plugin contains multiple detection methods ranging from simple header checks to complex pattern matching. The scanner supports configurable aggression levels that control the trade-off between stealth and detection accuracy, from single-request passive scanning to comprehensive multi-request analysis. It outputs results in multiple formats including JSON, XML, and SQL for integration with security testing workflows.

WhatWeb
1

Plugin Architecture

Uses over 1800 specialized plugins for technology detection, each containing multiple identification methods from subtle cues to obvious markers.

2

Aggression Levels

Configurable scanning intensity from stealthy single-request mode to aggressive multi-request analysis for penetration testing scenarios.

3

Multiple Output Formats

Supports various output formats including JSON, XML, MongoDB, and ElasticSearch for integration with different security tools and databases.

vv0.6.3

Improved cookie handling with new management options and HTTPS proxy fixes

  • Improved scalable and performant cookie handling so that cookies are retained between redirects
  • Added --no-cookies option to disable cookie handling
  • Added --cookie-jar option to save cookies to a file
  • Fixed error with HTTPS connections when using a proxy server
  • Fix typo in plugin-tutorial-7.rb
vv0.6.2

Tor .onion domain scanning support through HTTP proxy

  • Added support for scanning .onion (Tor) domains when using HTTP proxy
  • Bypasses DNS resolution for .onion domains to enable scanning through Tor proxy
  • Allows scanning of Tor hidden services without DNS resolution errors
  • Compatible with custom/internal TLDs
  • Fixed uninitialized constant error. Requires 'set' gem for specific Ruby versions
vv0.6.1

SSL/TLS security improvements with comprehensive cipher suite support

  • Updated version from 0.5.5 to 0.6.1
  • Improved SSL/TLS security with comprehensive cipher suite support (TLSv1, TLSv1.1, TLSv1.2, SSLv3, SSLv2)
  • Added SSLATTRIBUTES constant for verifymode
  • Replaced dynamic SSL parameter collection with explicit SSLContext configuration
  • Set verifymode to VERIFYNONE for maximum compatibility

Top in Security

1

Ghidra

65,041
2

PentestGPT

11,792
3

Gitleaks

25,126
4

FingerprintJS

26,656
5

CAI

7,236
See all →

Trending Repos

1

Pi Mono

17,222#1
2

OpenClaw

233,443#2
3

Zvec

8,089#3
4

Claude Code

70,649#4
5

Heretic

9,761#5
See all →
[ EXPLORE MORE ]

Related Repositories

Discover similar tools and frameworks used by developers

Sigma

YAML-based detection rules with SIEM query conversion.

10,1482,551

DVWA

PHP/MariaDB training platform for web security exploitation practice.

12,6454,618

Mobile-Security-Framework-MobSF

Automated pen-testing for Android, iOS, and Windows applications.

20,4713,599

Subfinder

Passive subdomain discovery via DNS resolution and validation.

13,1441,512

OSINT-Framework

Structured web catalog of free OSINT tools.

10,8471,768