[Nikto-discuss] Nikto and HTTP Not Authorized
Evgeniy Arbatov
arbatovevgeniy at gmail.com
Wed Feb 10 10:45:21 UTC 2010
Never mind. Issue resolved after running Nikto a little longer.
On Wed, Feb 10, 2010 at 12:07 PM, Evgeniy Arbatov
<arbatovevgeniy at gmail.com> wrote:
> Hello,
>
> I have a small issue with HTTP authentication and Nikto. When I am
> running this command:
>
> $ perl nikto.pl -nolookup -nossl -port 80 -Plugins ALL -h 10.0.0.1 -id
> UserName:passWoRD
>
> I do not see any authentication attempts with Wireshark. This is the
> dump of the request:
>
> HEAD / HTTP/1.1
>
> Connection: Keep-Alive
>
> Content-Length: 0
>
> User-Agent: Mozilla/4.75 (Nikto/2.1.1) (Evasions:None) (Test:Port Check)
>
> Content-Type: application/x-www-form-urlencoded
>
> Host: 10.0.0.1
>
>
> HTTP/1.0 401 Not Authorized
>
> WWW-Authenticate: Basic realm="xxxxxxx"
>
> But there is no Authorization: Basic 'base-64 encoded
> username&passwod' sent by the client. What am I missing?
>
> I am using Nikto 2.1.1 and have run the $perl nikto.pl -update.
>
> Thank you in advance!
>
> Evgeniy
>
More information about the Nikto-discuss
mailing list