fingerprinting cms joomla

when working on joomla cms information delivery varies from installation version and modules.

when reviewing a joomla theCode source can deliver information about the version of joomla, some components, let 's see an example.

Target: www.unisangil.edu.co

 

but not only the source code we can shed information

but the most interesting is the information that we can throw the joomla modules can do it in 2 ways brute force or looking at the source code.

list brute force

http://pastebin.com/dApPpC6X

gives us information as the source code of joomla? simple

/administrator/language/es-ES/es-ES.com_namecomponent.ini 

for example:

http://www.unisangil.edu.co/administrator/language/es-ES/es-ES.com_jevents.ini

 
 http://www.unisangil.edu.co/administrator/language/es-ES/es-ES.com_content.ini

http://www.unisangil.edu.co/administrator/language/es-ES/es-ES.com_search.ini


Remember that this is for educational use only share research materials and each person is handling this information as.

A man is not measured by what he says is measured by what he does

3p1c0w3nd