I just came across webkit2png.py. It is a simple Python script (based on webkit) that can be used to take screen-shots of web pages. For example:
[bash]$ ./webkit2png-0.4.py http://www.google.com/
Fetching http://www.google.com/ ...
... done
Now, wwwgooglecom-full.png will contain a screen-shot of http://www.google.com/. Another file, wwwgooglecom-thumb.png is also created which contains a thumbnail of the screen-shot:
I’ve found webkit2png.py useful when I need to take screenshots of webpages (more specifically, screen-shots of visible web application vulnerabilities to hand over to clients) since the images do not contain browser UI. If it weren’t for the high false-positives that Nessus and Nikto spit out, I’d say it would be a good idea to hack these tools to automatically grab screen-shots of vulnerable web resources. However, I did alter my google_vulns.php script to do this, and it worked well.
A GUI implementation, Paparazzi!, is also available.
Nitesh Dhanjani
is a well known security researcher, author, and
speaker.
Comment on this weblog You must be logged in to the O'Reilly Network to post a comment.
Has anyone gotten Webkit2Png to work with Cherrypy? I was able to shut down all of the leaks via autoreleasepooling, but am having a wiked time getting the NSApp to not hang on invoke.
Weblog authors are solely responsible for the content
and accuracy of their weblogs, including opinions they
express, and O'Reilly Media, Inc., disclaims any and
all liabililty for that content, its accuracy, and
opinions it may contain.
Weblog authors are solely responsible for the content
and accuracy of their weblogs, including opinions they
express, and O'Reilly Media, Inc. disclaims any and
all liability for that content, its accuracy, and
opinions it may contain.
