Nikto: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Die Seite wurde neu angelegt: „=Erklärung= *Nikto Web Scanner ist ein Webserver-Scanner, der Webserver auf gefährliche Dateien/CGIs, veraltete Serversoftware und andere Probleme testet. Es…“) |
|||
| Zeile 3: | Zeile 3: | ||
=Installation= | =Installation= | ||
*apt-get install nikto | *apt-get install nikto | ||
| + | =Anwendung= | ||
| + | *nikto -h 10.83.33.1 -p 80 | ||
| + | <pre> | ||
| + | root@gustavo:~# nikto -h 10.83.33.1 -p 80 | ||
| + | - Nikto v2.1.5 | ||
| + | --------------------------------------------------------------------------- | ||
| + | + Target IP: 10.83.33.1 | ||
| + | + Target Hostname: 10.83.33.1 | ||
| + | + Target Port: 80 | ||
| + | + Start Time: 2018-11-15 16:26:05 (GMT1) | ||
| + | --------------------------------------------------------------------------- | ||
| + | + Server: Apache/2.4.18 (Ubuntu) | ||
| + | + Server leaks inodes via ETags, header found with file /, fields: 0x2c39 0x57ab5a8c8fb1b | ||
| + | + The anti-clickjacking X-Frame-Options header is not present. | ||
| + | + No CGI Directories found (use '-C all' to force check all possible dirs) | ||
| + | + Allowed HTTP Methods: POST, OPTIONS, GET, HEAD | ||
| + | + OSVDB-561: /server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts. | ||
| + | + OSVDB-3233: /icons/README: Apache default file found. | ||
| + | + 6544 items checked: 0 error(s) and 5 item(s) reported on remote host | ||
| + | + End Time: 2018-11-15 16:26:12 (GMT1) (7 seconds) | ||
| + | --------------------------------------------------------------------------- | ||
| + | + 1 host(s) tested | ||
| + | </pre> | ||
Version vom 15. November 2018, 15:32 Uhr
Erklärung
- Nikto Web Scanner ist ein Webserver-Scanner, der Webserver auf gefährliche Dateien/CGIs, veraltete Serversoftware und andere Probleme testet. Es führt generische und servertypspezifische Prüfungen durch. Außerdem erfasst und gibt alle empfangenen Cookies aus.
Installation
- apt-get install nikto
Anwendung
- nikto -h 10.83.33.1 -p 80
root@gustavo:~# nikto -h 10.83.33.1 -p 80 - Nikto v2.1.5 --------------------------------------------------------------------------- + Target IP: 10.83.33.1 + Target Hostname: 10.83.33.1 + Target Port: 80 + Start Time: 2018-11-15 16:26:05 (GMT1) --------------------------------------------------------------------------- + Server: Apache/2.4.18 (Ubuntu) + Server leaks inodes via ETags, header found with file /, fields: 0x2c39 0x57ab5a8c8fb1b + The anti-clickjacking X-Frame-Options header is not present. + No CGI Directories found (use '-C all' to force check all possible dirs) + Allowed HTTP Methods: POST, OPTIONS, GET, HEAD + OSVDB-561: /server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts. + OSVDB-3233: /icons/README: Apache default file found. + 6544 items checked: 0 error(s) and 5 item(s) reported on remote host + End Time: 2018-11-15 16:26:12 (GMT1) (7 seconds) --------------------------------------------------------------------------- + 1 host(s) tested