From FBreedijk at schubergphilis.com Mon Oct 6 13:51:27 2008 From: FBreedijk at schubergphilis.com (Frank Breedijk) Date: Mon, 6 Oct 2008 15:51:27 +0200 Subject: [Nikto-discuss] Nikto 2.02/2.03 behaving funny with authentication Message-ID: Here is the Nikto report: --------------------------------------------------------------------------- - Nikto 2.02/2.03 - cirt.net + Target IP: 195.43.158.13 + Target Hostname: 195.43.158.13 + Target Port: 443 --------------------------------------------------------------------------- + SSL Info: Ciphers: DHE-RSA-AES256-SHA Info: /C=NH/ST=NH/L=Amsterdam/O=Deloitte and Touche/OU=ERS/CN=INVision.deloitte.nl Subject: /emailAddress=support at deloitteinvision.nl/C=NH/ST=NH/L=Amsterdam/O=Deloitte and Touche/OU=ERS/CN=invisionweb-s.deloitte.nl + Start Time: 2008-10-05 1:09:01 --------------------------------------------------------------------------- + Server: Microsoft-IIS/6.0 + No CGI Directories found (use '-C all' to force check all possible dirs) + ERROR: Authorization is required, but bogus auth test appeared to work. Server is a bit whacked. + /?mod=&op=browse - Requires Authentication for realm '' + /?sql_debug=1 - Requires Authentication for realm '' + /// - Requires Authentication for realm '' + /?PageServices - Requires Authentication for realm '' + /?wp-cs-dump - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + / - Requires Authentication for realm '' + /////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// - Requires Authentication for realm '' + /?pattern=/etc/*&sort=name - Requires Authentication for realm '' + /?D=A - Requires Authentication for realm '' + /?N=D - Requires Authentication for realm '' + /?S=A - Requires Authentication for realm '' + /?M=A - Requires Authentication for realm '' + /?\\"> - Requires Authentication for realm '' + 2785 items checked: 0 item(s) reported on remote host + End Time: 2008-10-05 1:13:01 (233 seconds) --------------------------------------------------------------------------- + 1 host(s) tested Frank Breedijk, CISSP Mission Critical Engineer, Security Schuberg Philis phone: +31 20 750 65 00 direct: +31 20 750 65 38 mobile: +31 6 438 22 637 email: fbreedijk at schubergphilis.com www.schubergphilis.com Star Parc Boeing Ave 271 1119 PD Schiphol-Rijk THE NETHERLANDS From FBreedijk at schubergphilis.com Wed Oct 8 08:09:23 2008 From: FBreedijk at schubergphilis.com (Frank Breedijk) Date: Wed, 8 Oct 2008 10:09:23 +0200 Subject: [Nikto-discuss] More authentication... Message-ID: + Default account found for 'x.x.216.10' at /exchange/lib/AMPROPS.INC (ID 'administrator', PW 'administrator'). Generic account discovered. + ERROR: Unable to authenticate to "x.x.216.10" First statement looks like a false positive to me. Frank Breedijk, CISSP Mission Critical Engineer, Security Schuberg Philis phone: +31 20 750 65 00 direct: +31 20 750 65 38 mobile: +31 6 438 22 637 email: fbreedijk at schubergphilis.com www.schubergphilis.com Star Parc Boeing Ave 271 1119 PD Schiphol-Rijk THE NETHERLANDS From CourtLittle at solutionary.com Wed Oct 15 16:31:15 2008 From: CourtLittle at solutionary.com (Court Little) Date: Wed, 15 Oct 2008 11:31:15 -0500 Subject: [Nikto-discuss] Nikto Test ID Ouput Message-ID: <07F358FB29BD5B4489A440C65183C25F2D3F82@OMU-EXCH02.solutionary.com> Does anyone know of a way to get the Nikto Test ID field from the Scan Databse Field Value to output in a report, preferably in the output when called by Nessus? I have played around a bit with dtd field and elsewhere but haven't been able to find a way to get that field included in the Nikto results when called by Nessus. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://attrition.org/pipermail/nikto-discuss/attachments/20081015/908bcfa9/attachment.html