问题描述
我正在运行一个OpenCart应用程序,并注意到Wappalyzer能够识别所使用的PHP框架.
I am running an OpenCart application and noticed that Wappalyzer is able to identify the PHP framework used.
我也使用HTTPLiveHeaders检查了标头,但似乎没有在任何地方显示OpenCart.还检查了从我的应用程序发送的cookie,但没有成功.
I checked the headers as well using HTTPLiveHeaders but it doesn't seem to show OpenCart anywhere. Also checked the cookies sent from my application with no success.
有人知道如何成功阻止Wappalyzer识别正在使用的服务器端堆栈吗?
Does anyone know how to successfully prevent Wappalyzer from identifying the server side stack being used?
推荐答案
如果您知道Wappalyzer所寻找的详细信息,这很容易解决. ;)
This is easy to solve, if you know the details Wappalyzer looks for. ;)
根据 Github上的Wappalyzer源代码目前,OpenCart的识别基于以下两个方面:
According to the Wappalyzer Source Code on Githubthe identification of OpenCart is currently based on the following two things:
- 路线-
?:index\\.php\\?route=[a-z]+/
- 技术支持"-
Powered By <a href=\"[^>]+OpenCart
- the route -
?:index\\.php\\?route=[a-z]+/
- "Powered By" -
Powered By <a href=\"[^>]+OpenCart
所以答案是:
您可以通过更改路由并删除消息提供者来隐藏Opencart.
You can hide Opencart by altering your routing and removing the powered by message.
请记住,这是一个完全移动的目标.它们改变了检测方式,您必须遵循...向前盘旋.从我的角度来看,隐藏技术是没有意义的.
Keep in mind that this is a totally moving target.They change the detections, you have to follow... spiral ahead.From my point of view, it doesn't make sense to hide the tech.
这篇关于阻止Wappalyzer识别PHP框架的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!