Open In App

CMSsc4n – Tool to identify if a domain is a CMS

Improve
Improve
Like Article
Like
Save
Share
Report

A content management system (CMS) is an application that is used to manage web content, allowing multiple givers to create, edit and publish. Content in a CMS is typically stored in a database and displayed in a presentation layer based on a set of templates. 

In the Security World, this CMS application can contain vulnerabilities that can compromise the website on which respected CMS is working. The outdated version of CMS can also be the path of cyber attacks on the target domain. So while performing a security audit on the target domain, CMS Detection and version detection is done. CMSsc4n  is an automated script developed in the python language which detects various types of CMS against the target domain. WordPress, Moodle, Joomla, Drupal, or Prestashop CMS are been supported by the tool. CMSsc4n supports the testing of multiple target domains at a parallel time. CMSsc4n tool is open-source and free-to-use.

Note: Make Sure You have Python Installed on your System, as this is a python-based tool. Click to check the Installation process – How to install Python on Linux?

Installation of CMSsc4n Tool on Kali Linux OS

Step 1: Use the following command to install the tool in your Kali Linux operating system.

git clone https://github.com/n4xh4ck5/CMSsc4n.git

Step 2: Now use the following command to move into the directory of the tool. You have to move in the directory in order to run the tool.

cd CMSsc4n 

Step 3: You are in the directory of the CMSsc4n. Now you have to install a dependency of the CMSsc4n using the following command.

sudo pip3 install -r requirements.txt

Step 4: All the dependencies have been installed in your Kali Linux operating system. Now use the following command to run the tool and check the help section.

python3 cmssc4n.py -h 

Working with CMSsc4n Tool on Kali Linux OS

Example 1: Identify a CMS: W-WordPress, J-Joomla, D-Drupal, M-Moodle or P-PrestaShop

In this example, We will be testing the single domain geeksforgeeks.org. We have given the list.txt file as input which consists of the target domain URL.

python3 cmssc4n.py -i list.txt

We have got the CMS Details that are used by the target domain geeksforgeeks. The version of WordPress used by GeeksforGeeks is 4.9.8

Example 2: Multiple Targets + Saving Output in txt File

python3 cmssc4n.py -i list.txt > results.txt

In this example, We are specifying the multiple targets and saving their results in results.txt file.

We have got the results of our test in which the tool has detected the CMS used by the target domain specified in the form of list.txt file. All the results are saved in the results.txt file which includes the CMS details and the version.

CMS Detection on google.com is shown in the below Screenshot.

CMS Detection on facebook.com is shown in the below Screenshot.

CMS Detection on tesla.com is shown in the below Screenshot.


Last Updated : 14 Sep, 2021
Like Article
Save Article
Previous
Next
Share your thoughts in the comments
Similar Reads