[Nikto-discuss] Nikto 2.02 SSL Scan won't work

Frank Breedijk FBreedijk at schubergphilis.com
Mon Mar 31 04:46:07 UTC 2008


Sullo,

Don't know if you spotted this, but in the first whisker call you are using the IP address (x.x.x.x) and in the second call you are using the hostname 'adsl-x-x-x-x.dsl.wotnoh.ameritech.net'.

It would not be the first time that the reverse hostname does not resolve back to the right IP address?

Is seems to happen in line 117 of nikto.pl

$request{'whisker'}->{'host'} = $TARGETS{$CURRENT_HOST_ID}{hostname} || $TARGETS{$CURRENT_HOST_ID}{ip};

Frank


------------------------------------------------------------------------------
Frank Breedijk, CISSP - Security Engineer
fbreedijk at schubergphilis.com - www.schubergphilis.com


-----Original Message-----
From: nikto-discuss-bounces at attrition.org [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Kurt Keiser
Sent: 30 March 2008 21:41
To: 'Sullo'
Cc: nikto-discuss at attrition.org
Subject: Re: [Nikto-discuss] Nikto 2.02 SSL Scan won't work

Sullo,

Thanks for your prompt response.  Here is the extract.


./nikto.pl -h x.x.x.x -port 443 -D -D
---------------------------------------------------------------------------
- Nikto 2.02/2.03     -     cirt.net
D:Sun Mar 30 15:26:56 2008 - Target id:1:ident:x.x.x.x:ports_in:443:vhost:=:
D:Sun Mar 30 15:26:56 2008 'Request Hash' = {
        'Connection' => 'Keep-Alive',
        'whisker' => {
                'protocol' => 'HTTP',
                'require_newline_after_headers' => 0,
                'lowercase_incoming_headers' => 1,
                'uri_prefix' => '',
                'ssl_save_info' => 1,
                'http_space2' => ' ',
                'uri_param_sep' => '?',
                'timeout' => 10,
                'http_space1' => ' ',
                'method' => 'HEAD',
                'force_open' => 0,
                'include_host_in_uri' => 0,
                'ignore_duplicate_headers' => 1,
                'uri_postfix' => '',
                'ssl' => 0,
                'version' => '1.1',
                'port' => 443,
                'uri' => '/',
                'host' => 'x.x.x.x',
                'retry' => 0,
                'normalize_incoming_headers' => 1,
                'invalid_protocol_return_value' => 1,
                'force_bodysnatch' => 0,
                'MAGIC' => 31339,
                'max_size' => 0,
                'trailing_slurp' => 0,
                'force_close' => 0,
                'http_eol' => "\r\n"
        },
        'User-Agent' => 'Mozilla/4.75 (Nikto/2.02 )'
};
D:Sun Mar 30 15:27:06 2008 'Result Hash' = {
        'whisker' => {
                'error' => 'opening stream: can\'t connect (timeout): Operation now in progress',
                'uri' => '/',
                'MAGIC' => 31340
        }
};
D:Sun Mar 30 15:27:06 2008 'Request Hash' = {
        'Connection' => 'Keep-Alive',
        'whisker' => {
                'protocol' => 'HTTP',
                'require_newline_after_headers' => 0,
                'lowercase_incoming_headers' => 1,
                'uri_prefix' => '',
                'ssl_save_info' => 1,
                'http_space2' => ' ',
                'uri_param_sep' => '?',
                'timeout' => 10,
                'http_space1' => ' ',
                'method' => 'HEAD',
                'force_open' => 0,
                'include_host_in_uri' => 0,
                'ignore_duplicate_headers' => 1,
                'uri_postfix' => '',
                'ssl' => 1,
                'version' => '1.1',
                'port' => 443,
                'uri' => '/',
                'host' => 'adsl-x-x-x-x.dsl.wotnoh.ameritech.net',
                'retry' => 0,
                'normalize_incoming_headers' => 1,
                'invalid_protocol_return_value' => 1,
                'force_bodysnatch' => 0,
                'MAGIC' => 31339,
                'max_size' => 0,
                'trailing_slurp' => 0,
                'force_close' => 0,
                'http_eol' => "\r\n"
        },
        'User-Agent' => 'Mozilla/4.75 (Nikto/2.02 )',
        'Host' => 'x.x.x.x:443'
};
D:Sun Mar 30 15:27:16 2008 'Result Hash' = {
        'whisker' => {
                'error' => 'opening stream: can\'t connect (timeout): Interrupted system call',
                'uri' => '/',
                'MAGIC' => 31340
        }
};
+ No HTTP(s) ports found on x.x.x.x
+ 1 host(s) tested
D:Sun Mar 30 15:27:16 2008 T:Sun Mar 30 15:27:16 2008: Ending




Regards,

Kurt

-----Original Message-----
From: Sullo [mailto:sullo at cirt.net]
Sent: March 30, 2008 2:25 PM
To: Kurt Keiser
Cc: nikto-discuss at attrition.org
Subject: Re: [Nikto-discuss] Nikto 2.02 SSL Scan won't work

Based on the error, Nikto is correctly seeing/using the SSL package,
connecting to the port, but not identifying a web server as connected to
it. Can you capture the output of:
nikto.pl -h <ip> -p 443 -s -D D

and send along (search/replace IPs as required)?



Kurt Keiser wrote:
>
> I'm currently running Fedora Core 7 with the latest version of OpenSSL
> and have the NET::SSLEAY perl module installed.  I cannot get Nikto
> 2.02 to scan https sites.
>
> I had the same issue with 1.36.  Luckily the FC7 rpm for it worked.
> For some reason the source files will not work.  Does anyone have any
> advice?
>
>
>
> I get the error on sites that have ssl.  "No HTTP(s) ports found on
> x.x.x.x"  when running the following command.   Nikto -h x.x.x.x -port
> 443 -ssl
>
>
>
> Thanks.
>
>
>
> -Kurt
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Nikto-discuss mailing list
> Nikto-discuss at attrition.org
> https://attrition.org/mailman/listinfo/nikto-discuss
>


_______________________________________________
Nikto-discuss mailing list
Nikto-discuss at attrition.org
https://attrition.org/mailman/listinfo/nikto-discuss


More information about the Nikto-discuss mailing list