Detail publikačního výsledku

Reverse IP-Based Web Application Enumeration Using Open-Source Intelligence

DOHNAL, O.; JEŘÁBEK, J.

Originální název

Reverse IP-Based Web Application Enumeration Using Open-Source Intelligence

Anglický název

Reverse IP-Based Web Application Enumeration Using Open-Source Intelligence

Druh

Stať ve sborníku mimo WoS a Scopus

Originální abstrakt

The Domain Name System (DNS) provides a mechanism for accessing online resources through human-readable domain names. While DNS records reveal valuable information about network infrastructure, they do not directly expose the technologies and applications deployed on associated web services. As a result, additional analysis is required to obtain a comprehensive understanding of web-facing systems. This paper presents a web application enumeration as an extension for the PenterepTools OSINT Domain Names Enumeration System (ptodnes). The proposed extension enables automated identification of web technologies deployed on domains discovered during DNS analysis. The module performs HTTP-based probing, analyzes server responses, and applies response-based fingerprinting techniques to detect web servers. The extension integrates seamlessly into the existing modular architecture of ptodnes and enriches the collected DNS data with application-level metadata. Experimental evaluation demonstrates that the proposed approach significantly improves the visibility of technologies associated with enumerated domains while maintaining efficient processing performance.

Anglický abstrakt

The Domain Name System (DNS) provides a mechanism for accessing online resources through human-readable domain names. While DNS records reveal valuable information about network infrastructure, they do not directly expose the technologies and applications deployed on associated web services. As a result, additional analysis is required to obtain a comprehensive understanding of web-facing systems. This paper presents a web application enumeration as an extension for the PenterepTools OSINT Domain Names Enumeration System (ptodnes). The proposed extension enables automated identification of web technologies deployed on domains discovered during DNS analysis. The module performs HTTP-based probing, analyzes server responses, and applies response-based fingerprinting techniques to detect web servers. The extension integrates seamlessly into the existing modular architecture of ptodnes and enriches the collected DNS data with application-level metadata. Experimental evaluation demonstrates that the proposed approach significantly improves the visibility of technologies associated with enumerated domains while maintaining efficient processing performance.

Klíčová slova

Cybersecurity, Data Processing, DNS, Domain Name System, Domain Records, ffuf, gobuster, OSINT, ptodnes, Web Applications, Web Enumeration

Klíčová slova v angličtině

Cybersecurity, Data Processing, DNS, Domain Name System, Domain Records, ffuf, gobuster, OSINT, ptodnes, Web Applications, Web Enumeration

Autoři

DOHNAL, O.; JEŘÁBEK, J.

Vydáno

28.04.2026

Nakladatel

Brno University of Technology, Faculty of Electrical Engineering and Communication

Místo

Brno

ISBN

978-80-214-6417-0

Kniha

Proceedings I of the 32nd Conference STUDENT EEICT 2026

Strany od

327

Strany do

332

Strany počet

6

URL

https://www.eeict.cz/eeict_download/archiv/sborniky/EEICT_2026_sbornik_1.pdf

BibTex

@inproceedings{BUT211713,
  author="Ondřej {Dohnal} and Jan {Jeřábek}",
  title="Reverse IP-Based Web Application Enumeration Using Open-Source Intelligence",
  booktitle="Proceedings I of the 32nd Conference STUDENT EEICT 2026",
  year="2026",
  pages="327--332",
  publisher="Brno University of Technology, Faculty of Electrical Engineering and Communication",
  address="Brno",
  isbn="978-80-214-6417-0",
  url="https://www.eeict.cz/eeict_download/archiv/sborniky/EEICT_2026_sbornik_1.pdf"
}