Hack Tools

EyeWitness – Tool To Take Screenshots Of Websites, Provide Some Server Header Info, And Identify Default Credentials If Possible

EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known.
EyeWitness is designed to run on Kali Linux. It will auto detect the file you give it with the -f flag as either being a text file with URLs on each new line, nmap xml output, or nessus xml output. The –timeout flag is completely optional, and lets you provide the max time to wait when trying to render and screenshot a web page.
A complete usage guide which documents EyeWitness features and its typical use cases is available here – https://www.christophertruncer.com/eyewitness-usage-guide/

Supported Linux Distros:

  • Kali Linux
  • Debian 7+ (at least stable, looking into testing) (Thanks to @themightyshiv)

E-Mail: EyeWitness [@] christophertruncer [dot] com


  1. Navigate into the setup directory
  2. Run the setup.sh script


./EyeWitness.py -f filename --timeout optionaltimeout --open (Optional)


./EyeWitness -f urls.txt --web

./EyeWitness -x urls.xml --timeout 8 --headless

Now you can execute EyeWitness in a docker container and prevent you from install unnecessary dependencies in your host machine.
Note: execute docker run with the folder path in the host which hold your results (/path/to/results)
Note2: in case you want to scan urls from a file, make sure you put it in the volume folder (if you put urls.txt in /path/to/results, then the argument should be -f /tmp/EyeWitness/urls.txt)


docker build --build-arg user=$USER --tag eyewitness .
docker run
-e DISPLAY=$DISPLAY # optional flag in order to use vnc protocol
-v /tmp/.X11-unix:/tmp/.X11-unix # optional flag in order to use vnc protocol
-v /path/to/results:/tmp/EyeWitness

Example #1 – headless capturing

docker run 
-v ~/EyeWitness:/tmp/EyeWitness
--single http://www.google.com
To Top

Pin It on Pinterest

Share This