All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Session data will now be written to output directory as
aquatone_session.json - New
url_hostname_resolveragent that resolves page's hostnames to IP addresses - New
url_page_title_extractorthat extracts HTML page titles from responsive pages - New command line flag
-template-pathto specify a custom template to use for the HTML report - New command line flag
-sessionto load a previous Aquatone session file and generate a report on its data - Aquatone is now compiled for ARM64 in
build.sh
- Bigger refactoring of session and pages
- New Vue.js powered HTML report with lots of new cool stuff:
- New look and feel
- Pages can now be viewed in different modes:
- By Similarity: Pages are displayed in clusters by their HTML structure similarity
- By Hostname: Pages are displayed in clusters by their hostname
- Single Pages: Pages are shown one-by-one with bigger screenshots and response headers (oldschool Aquatone style)
- Vis.js powered network graph view to see relations between pages, IP addresses and technologies
- Page clusters are now rendered in a paginated carousel view instead of horizontally scrollable lanes
- Clusters and pages are paginated to improve performance on large reports
- Page titles are now shown for pages
url_loggeragent (no longer needed)
- The Nmap/Masscan XML report parser did not ignore closed/filtered ports. It now only works on ports with state
open.
- Support for processing of multiple URLs on the same host by appending hash of URL path and fragment to file names
- Support for defining default output directory in
AQUATONE_OUT_PATHenvironment variable
- Automatic SSL/TLS detection on non-standard ports
- URL Screenshotter agent now takes extra steps to ensure that the browser process is killed after use
- Version flag to output current version (woah!!!)
- Packages and other dependencies have been updated to latest versions
- User-Agent list has been updated to current most common agents
- Wappalyzer technology fingerprints have been updated
- The Sub Resource Integrity attribute on the external CSS resource in the HTML report caused it to not load as the file had changed. Removed SRI on external CSS resource
- Responsive URLs are now written to
aquatone_urls.txt. Thanks eur0pa! - A warning is printed when older versions of Chromium is detected which has known problems with screenshotting HTTPS URLs
- Aquatone had trouble processing a single or very few targets. A small delay has been added to give agents time to emit all their events
- List of User-Agents have been updated with most recent list of common User-Agents
- Random User-Agent and other spoofing request headers were not set correctly when requesting URLs. Thanks to eur0pa for pointing it out!
- Passive fingerprinting of web technology in use on websites with Wappalyzer fingerprints
- Detection of domain takeover vulnerabilities across 20 different services
Complete rewrite and simplification of Aquatone. Now written in Go and focused on reporting and screenshotting.
- Extraction of hosts, IPs and URLs from arbitrary data piped to Aquatone
- Parsing of Nmap/Masscan XML files
- Clustering of websites with similar structure in HTML report
- Domain discovery (
aquatone-discover) - Domain takeover discovery (
aquatone-takeover)