<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div>Correct--there are no generic session management issues tested by Nikto.</div><div><br></div><div>Regards,</div><div>Sullo</div><div><br>On Feb 8, 2014, at 2:51 AM, raymond lukanta <<a href="mailto:raymond_pluto@hotmail.com">raymond_pluto@hotmail.com</a>> wrote:<br><br></div><blockquote type="cite"><div>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 12pt;
font-family:Calibri
}
--></style>
<div dir="ltr">Hi,<div><br></div><div>As I read on <a href="http://cirt.net/nikto2-docs/options.html" target="_blank">http://cirt.net/nikto2-docs/options.html</a>, I don't find any session management vulnerabilities that can be detected by Nikto.</div><div>Am I right? Because for my final project, I want to extend Nikto so Nikto can detect session management vulnerabilities.</div><div><br></div><div>I'm looking forward for the response.</div><div>Thanks.<br><br><font size="2"><span style="color:rgb(79, 129, 189);font-family:Arial, sans-serif;line-height:17px;background-color:rgb(255, 255, 255);">--</span><br style="line-height:17px;color:rgb(79, 129, 189);font-family:Arial, sans-serif;"><span style="color:rgb(79, 129, 189);font-family:Arial, sans-serif;line-height:17px;background-color:rgb(255, 255, 255);">Raymond</span></font></div> </div>
</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Nikto-discuss mailing list</span><br><span><a href="mailto:Nikto-discuss@attrition.org">Nikto-discuss@attrition.org</a></span><br><span><a href="https://attrition.org/mailman/listinfo/nikto-discuss">https://attrition.org/mailman/listinfo/nikto-discuss</a></span><br></div></blockquote></body></html>