The Web Server Information adapter provides information about the web server for a given website domain, including the server type, its version and operating system, the content management system (CMS) name and its version, the installed CMS plugins, versions and more.
Related Enforcement Actions:
Web Server Information - Enrich Asset Data
Types of Assets Fetched
- Devices
- Certificates
Adapter Parameters
- Web Server Domain (required) - Website URL, hostname or an IP address.
- Web Server Ports (required, comma separated, default: 443) - Specify the ports to connect to in order to fetch the web server information.
- Web server domain list - Upload a JSON file with a list of domains. This allows you to add add a large number of domains in one go. The format of the JSON file should be:
[
{
"domain": "",
"port": "",
"https_proxy": "",
"verify_ssl": ""
},
{
"domain": "",
"port": "",
"https_proxy": "",
"verify_ssl": ""
},
{
"domain": "",
"port": "",
"https_proxy": "",
"verify_ssl": ""
}
]
- HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to Web Server Domain.
- If supplied, Axonius will utilize the proxy when connecting to the host defined for this connection.
- If not supplied, Axonius will connect directly to the host defined for this connection.
Advanced Settings
Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters
-
Fetch data from SSL scanner (required, default: False) - Check this option to fetch data using an SSL scan.
- When enabled, this will enrich device data with SSL Labs data, that includes information about the server host, its endpoints and indications on exposure to known SSL vulnerabilities, such as Heartbleed and POODLE.
- To enrich device with data using an SSL scan:
- Host name is required in the Web Server Domain field (see Adapter Parameters). If the device data does not include a host name, one of the following can be used:
- Device IP address, that must be a public IP address.
- Domain, if fetched as part of the SSL Certificate data.
- An SSL port (default: 443) must be opened for Axonius to use the SSL Labs API.
- Host name is required in the Web Server Domain field (see Adapter Parameters). If the device data does not include a host name, one of the following can be used:
- To enrich device with data using an SSL scan:
- When enabled, this will enrich device data with SSL Labs data, that includes information about the server host, its endpoints and indications on exposure to known SSL vulnerabilities, such as Heartbleed and POODLE.
-
Save Raw Data - Select this option to save raw data.
For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.
Required Ports
If Fetch data from SSL scanner is enabled, Axonius must be able to communicate with the value supplied in Web Server Domain via an SSL port (default: 443).
Supported From Version
Supported from Axonius version 6.1