[Nikto-discuss] Nikto 2.1.5 Idle

Sullo csullo at gmail.com
Wed Dec 12 08:23:50 CST 2012


Nikto does not change anything if a waf is detected (and even then, it
may not really be a waf--up to you to try and validate that!). there
are some evasion techniques included--see the docs for more
information. However, these methods have been well documented and used
for a while, so it's likely they won't work too well against a decent
waf.

On Wed, Dec 12, 2012 at 1:02 AM, Zaki Akhmad <zakiakhmad at gmail.com> wrote:
> On Wed, Dec 12, 2012 at 11:06 AM, Sullo <csullo at gmail.com> wrote:
>
>> It is likely not idle, but just moving fairly slowly for whatever
>> reason. If you press the space bar while running it will print out a
>> current status after 10 requests. There are some other interactive
>> features as well.
>
> Is it nikto running very slowly because of WAF presence? How nikto
> handle WAF? Is it possible for nikto to bypass WAF?
>
> --
> Zaki Akhmad



-- 

http://www.cirt.net     |      http://richsec.com/


More information about the Nikto-discuss mailing list