03-27-2011, 01:51 PM
Refrensi : pemula
Tested : linux backtrack 4 R2
versi :v2.1.3
Sekilas mengenai nikto
Nikto merupakan web scanner Open Source (GPL), yang melakukan tes komprehensif terhadap web server. Nikto memiliki kemampuan mendeteksi 3500 file yang berpotensi mendatangkan bahaya / CGIS. Nikto dapat menguji web server dengan cepat, tetapi mudah dilihat pada log. Tapi sangat berguna untuk menguji suatu web server.
Menu Utilities :
-config+ Use this config file
-Cgidirs+ scan these CGI dirs: 'none', 'all', or values like "/cgi/ /cgi-a/"
-dbcheck check database and other key files for syntax errors (cannot be abbreviated)
-evasion+ ids evasion technique
-Format+ save file (-o) format
-host+ target host
-Help Extended help information
-id+ host authentication to use, format is userid:password
-list-plugins List all available plugins
-mutate+ Guess additional file names
-mutate-options+ Provide extra information for mutations
-output+ Write output to this file
-nocache Disables the URI cache
-nossl Disables using SSL
-no404 Disables 404 checks
-Plugins+ List of plugins to run (default: ALL)
-port+ Port to use (default 80)
-root+ Prepend root value to all requests, format is /directory
-Display+ Turn on/off display outputs
-ssl Force ssl mode on port
-Single Single request mode
-timeout+ Timeout (default 2 seconds)
-Tuning+ Scan tuning
-update Update databases and plugins from cirt.net (cannot be abbreviated)
-Version Print plugin and database versions
-vhost+ Virtual host (for Host header)
+ requires a value
File konfigurasi terletak di direktori (/ pentest / scanner / Nikto) dan disebut config.txt
#########################################################################################################
# CONFIG STUFF
#########################################################################################################
# default command line options, can't be an option that requires a value. used for ALL runs.
# CLIOPTS=-g -a
# location of nmap to use with port scanning (rather than Nikto internals)
# and any options to pass to it
NMAP=/usr/local/bin/nmap
NMAPOPTS=-P0
# ports never to scan
SKIPPORTS=21 111
# IDs never to alert on (Note: this only works for IDs loaded from db_tests)
SKIPIDS=000703
# if Nikto is having difficulty finding the ‘plugins’, set the full install path here
# EXECDIR=/usr/local/nikto
# the default HTTP version to try… can/will be changed as necessary
DEFAULTHTTPVER=1.0
# Nikto can submit updated version strings to CIRT.net. It won’t do this w/o permission. You should
# send updates because it makes the data better for everyone
*NO* server specific information
# such as IP or name is sent, just the relevant version information.
# UPDATES=yes #– ask before each submission if it should send
# UPDATES=no #– don’t ask, don’t send
# UPDATES=auto #– automatically attempt submission *without prompting*
UPDATES=yes
# Warning if MAX_WARN OK or MOVED responses are retrieved
MAX_WARN=20
# Prompt… if set to ‘no’ you’ll never be asked for anything. Good for automation.
#PROMPTS=no
# cirt.net : set the IP so that updates can work without name resolution
CIRT=209.172.49.178
#########################################################################################################
# PROXY STUFF
#########################################################################################################
#PROXYHOST=127.0.0.1
#PROXYPORT=8080
#PROXYUSER=proxyuserid
#PROXYPASS=proxypassword
#########################################################################################################
# COOKIE STUFF
#########################################################################################################
# send a cookie with all requests, helpful if auth cookie is needed
#STATIC-COOKIE=cookiename=cookievalue
ini ane test di local lan ane yang udah ada virtual server a …
Beberapa penggunaan dasar :
Untuk menguji port tertentu, gunakan opsi-p (port). Ini akan scan port IP 192.168.1.3 pada TCP 443
perl nikto.pl -h 192.168.1.3 -p 80
Berikut perintah untuk penggunaan pengujian multiport
perl nikto.pl -h 192.168.1.3 -p 80,88,443
Untuk Penggunaan menyimpan log txt
bt nikto # ./nikto.pl -e 1 -host hxxp://192.168.1.3/joomla1af -F txt -o monfile.txt
COntoh hasil
![[Image: 180930_1568118200021_1147422359_31227298_7799398_n.jpg]](https://a4.sphotos.ak.fbcdn.net/hphotos-ak-snc6/180930_1568118200021_1147422359_31227298_7799398_n.jpg)
Tested : linux backtrack 4 R2
versi :v2.1.3
Sekilas mengenai nikto
Nikto merupakan web scanner Open Source (GPL), yang melakukan tes komprehensif terhadap web server. Nikto memiliki kemampuan mendeteksi 3500 file yang berpotensi mendatangkan bahaya / CGIS. Nikto dapat menguji web server dengan cepat, tetapi mudah dilihat pada log. Tapi sangat berguna untuk menguji suatu web server.
Menu Utilities :
-config+ Use this config file
-Cgidirs+ scan these CGI dirs: 'none', 'all', or values like "/cgi/ /cgi-a/"
-dbcheck check database and other key files for syntax errors (cannot be abbreviated)
-evasion+ ids evasion technique
-Format+ save file (-o) format
-host+ target host
-Help Extended help information
-id+ host authentication to use, format is userid:password
-list-plugins List all available plugins
-mutate+ Guess additional file names
-mutate-options+ Provide extra information for mutations
-output+ Write output to this file
-nocache Disables the URI cache
-nossl Disables using SSL
-no404 Disables 404 checks
-Plugins+ List of plugins to run (default: ALL)
-port+ Port to use (default 80)
-root+ Prepend root value to all requests, format is /directory
-Display+ Turn on/off display outputs
-ssl Force ssl mode on port
-Single Single request mode
-timeout+ Timeout (default 2 seconds)
-Tuning+ Scan tuning
-update Update databases and plugins from cirt.net (cannot be abbreviated)
-Version Print plugin and database versions
-vhost+ Virtual host (for Host header)
+ requires a value
File konfigurasi terletak di direktori (/ pentest / scanner / Nikto) dan disebut config.txt
#########################################################################################################
# CONFIG STUFF
#########################################################################################################
# default command line options, can't be an option that requires a value. used for ALL runs.
# CLIOPTS=-g -a
# location of nmap to use with port scanning (rather than Nikto internals)
# and any options to pass to it
NMAP=/usr/local/bin/nmap
NMAPOPTS=-P0
# ports never to scan
SKIPPORTS=21 111
# IDs never to alert on (Note: this only works for IDs loaded from db_tests)
SKIPIDS=000703
# if Nikto is having difficulty finding the ‘plugins’, set the full install path here
# EXECDIR=/usr/local/nikto
# the default HTTP version to try… can/will be changed as necessary
DEFAULTHTTPVER=1.0
# Nikto can submit updated version strings to CIRT.net. It won’t do this w/o permission. You should
# send updates because it makes the data better for everyone
*NO* server specific information# such as IP or name is sent, just the relevant version information.
# UPDATES=yes #– ask before each submission if it should send
# UPDATES=no #– don’t ask, don’t send
# UPDATES=auto #– automatically attempt submission *without prompting*
UPDATES=yes
# Warning if MAX_WARN OK or MOVED responses are retrieved
MAX_WARN=20
# Prompt… if set to ‘no’ you’ll never be asked for anything. Good for automation.
#PROMPTS=no
# cirt.net : set the IP so that updates can work without name resolution
CIRT=209.172.49.178
#########################################################################################################
# PROXY STUFF
#########################################################################################################
#PROXYHOST=127.0.0.1
#PROXYPORT=8080
#PROXYUSER=proxyuserid
#PROXYPASS=proxypassword
#########################################################################################################
# COOKIE STUFF
#########################################################################################################
# send a cookie with all requests, helpful if auth cookie is needed
#STATIC-COOKIE=cookiename=cookievalue
ini ane test di local lan ane yang udah ada virtual server a …
Beberapa penggunaan dasar :
Code:
zee-laptop@IBTeam:~$ perl nikto.pl -h 192.168.1.3Untuk menguji port tertentu, gunakan opsi-p (port). Ini akan scan port IP 192.168.1.3 pada TCP 443
perl nikto.pl -h 192.168.1.3 -p 80
Berikut perintah untuk penggunaan pengujian multiport
perl nikto.pl -h 192.168.1.3 -p 80,88,443
Untuk Penggunaan menyimpan log txt
bt nikto # ./nikto.pl -e 1 -host hxxp://192.168.1.3/joomla1af -F txt -o monfile.txt
COntoh hasil
FOLLOW @DutaLinux
for more question and sharing about security and Opensource only
for more question and sharing about security and Opensource only
![[Image: 2e1sz1t.png]](http://i50.tinypic.com/2e1sz1t.png)
