[Nikto-discuss] configure / options to precisely get vulnerabilites

Sullo csullo at gmail.com
Mon Oct 24 07:50:57 CDT 2011


On Fri, Oct 21, 2011 at 4:45 AM, cyber yogi <www.cyberyogi at gmail.com> wrote:
> Respected People,
>
>        I want to configure nikto scanner to scan and report as precisely as
> much it is possible.
>  for this I have tried mutate options but while scanning web server it takes
> so much time.
>  and I am aware with Turning option of nikto too.
>
>  Please do suggest me. How I can configure or which options I can use in
> nikto scanner to get maximum vulnerabilities and scan web server in lesser
> time.

In most cases, you'll get best coverage by running with the default
settings--so essentially just supplying the target host/port
combination. Tuning is going to be best if you want to cut out certain
classes of vulnerabilities (say, RFI for example) if you don't care
about them or have some other reason for not wanting to test them.

Using mutate options is going to dramatically increase the amount of
time testing takes.

-Sullo


-- 

http://www.cirt.net     |      http://www.osvdb.org/


More information about the Nikto-discuss mailing list