CMSeeK: CMS Detection and Exploitation Tool

Introduction

CMSeeK is a CMS detection and exploitation tool, written in Python3, capable of scanning numerous content management systems including WordPress, Joomla, Drupal, etc. It allows you to run both simple CMS detection and deep scans, as well as multisite scans. Currently it can be ran on any Unix-based system (Linux, OS X), but soon it’ll be available for Windows, too.

CMSeeK: CMS Detection and Exploitation suite

All CMSs which can be detected by CMSeeK, you can find in cmss.py file stored in the cmseekdb directory. After you ran a successful scan, results will be stored in cms.json file which you can find inside Result\<Target Site> directory. Brute-force scan results will be stored in txt file and you can find them inside the website’s directory. In addition, CMSeek has a modular brute-force system which allows you to make/add your own modules.

Features:

• CMSeeK can perform basic CMS detection: for plenty of different CMS (150+).
• Capable of advanced WordPress scans: plugins, user and theme enumeration; version and user detection (3 different detection modes); version vulnerabilities detection, etc.
• Beside WordPress version detection, it can detect Drupal version.
• Capable of Advanced Joomla scans: admin page and backup files finder; core vulnerability and config leak detection; directory listing checks, etc.
• It has modular brute-force system: you can use pre made or create your own modules and integrate it within CMSeeK system.
• And so much more.

Detection Methods:

• HTTP Headers
• Generator meta tag
• Page source code
• robots.txt

Reuqirements:

• Python 3, Unix based system and git.

Install

Clone the GitHub repo:

$ git clone https://github.com/Tuhinshubhra/CMSeeK

Navigate to the CMSeeK directory and install all requirements using pip3:

$ cd CMSeeK
$ pip3 install -r requirements.txt

Usage

To list all available options use --help:

USAGE:
       python3 cmseek.py (for a guided scanning) OR
       python3 cmseek.py [OPTIONS] 

SPECIFING TARGET:
      -u URL, --url URL            Target Url
      -l LIST, -list LIST          path of the file containing list of sites
                                   for multi-site scan (comma separated)
RE-DIRECT:
      --follow-redirect            Follows all/any redirect(s)
      --no-redirect                Skips all redirects and tests the input target(s)

USER AGENT:
      -r, --random-agent           Use a random user agent
      --googlebot                  Use Google bot user agent
      --user-agent USER_AGENT      Specify a custom user agent

OUTPUT:
      -v, --verbose                Increase output verbosity

VERSION & UPDATING:
      --update                     Update CMSeeK (Requires git)
      --version                    Show CMSeeK version and exit

HELP & MISCELLANEOUS:
      -h, --help                   Show this help message and exit
      --clear-result               Delete all the scan result

EXAMPLE USAGE:
      python3 cmseek.py -u example.com                           # Scan example.com
      python3 cmseek.py -l /home/user/target.txt                 # Scan the sites specified in target.txt (comma separated)
      python3 cmseek.py -u example.com --user-agent Mozilla 5.0  # Scan example.com using custom user-Agent Mozilla is 5.0 used here
      python3 cmseek.py -u example.com --random-agent            # Scan example.com using a random user-Agent
      python3 cmseek.py -v -u example.com                        # enabling verbose output while scanning example.com

To start guided scanning, just run the following:

$ python3 cmseek.py 

or:

$ python3 cmseek.py -u <target_url> [...] 

To check for update, make sure you’ve installed git and run:

$ python3 cmseek.py --update