No
Yes
10
Technology identifier is a tool that shows the basic technologies used on websites. You can identify the following information by using this tool:
In fact, this information can be easily collected by anyone who knows where to look. Collected information might pose a risk for you.
Information gathering is one of the most important steps for the attackers. By using this information, you can directly learn the existence of the vulnerability. For example, version information of a WordPress application will uncover the possible vulnerability existence with high accuracy. Later, people with malicious intentions search on how to exploit this vulnerability and attack.
Or collected information can be used in the next stages of the cyberattack. Operating system type, JavaScript library etc can help attackers to have successful attacks.
Additionally, this information might contain more meaning than you think. By using the information in analytic codes, it is possible to detect other websites that belong to you.
To find which technologies does a website used, you can start by typing your domain name in the form on top of the page and start scanning.
Or you can run nmap --script http-devframework -p 80,443 Target_Host command on nmap tool which can be installed to all operating systems.
Additionally, you can install free add-ons on your browsers to detect these technologies. For example Wappalyzer, W3Techs, SimilarTech etc.
Lastly, you can use open course software just like we did. For example, WhatWeb, Wappalyzer etc
If important information can be retrieved from your website, you can follow the following recommendations to eliminate the vulnerability.