Passive recon and fingerprinting.
Added
- Technology fingerprinting: identifies the CMS, framework, web server, CDN, and analytics from the homepage (headers + HTML), with versions where detectable. The detected stack shows in the scan summary and JSON report.
- Vulnerable JavaScript detection: flags known-vulnerable library versions (jQuery, Bootstrap, lodash, moment, AngularJS, Vue 2, DOMPurify) from script tags, each with an advisory and an upgrade fix.
- Cloud-storage exposure: finds S3, Google Cloud Storage, and Azure Blob buckets referenced on the site and flags any that allow public listing (high), with a provider-specific lock-down fix.
- Passive-DNS subdomain source (HackerTarget) merged with certificate transparency for broader attack-surface coverage.
Upgrade:
pip install -U sentineldeck