From jweberhofer at weberhofer.at Fri Aug 3 18:26:57 2012 From: jweberhofer at weberhofer.at (Johannes Weberhofer) Date: Sat, 04 Aug 2012 01:26:57 +0200 Subject: [Nikto-discuss] Cosmetic patch to fix the FSF-Address Message-ID: <501C5E41.7090902@weberhofer.at> Dear developers, attached you can find a patch which fixes the FSF address. Best regards, Johannes Weberhofer -- Johannes Weberhofer Weberhofer GmbH, Austria, Vienna -------------- next part -------------- diff -ur nikto-2.1.4-orig/plugins/nikto_apache_expect_xss.plugin nikto-2.1.4/plugins/nikto_apache_expect_xss.plugin --- nikto-2.1.4-orig/plugins/nikto_apache_expect_xss.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_apache_expect_xss.plugin 2012-08-04 01:19:05.277452091 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Test Apache's expect header XSS diff -ur nikto-2.1.4-orig/plugins/nikto_apacheusers.plugin nikto-2.1.4/plugins/nikto_apacheusers.plugin --- nikto-2.1.4-orig/plugins/nikto_apacheusers.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_apacheusers.plugin 2012-08-04 01:19:05.277452091 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Apache user enumeration diff -ur nikto-2.1.4-orig/plugins/nikto_auth.plugin nikto-2.1.4/plugins/nikto_auth.plugin --- nikto-2.1.4-orig/plugins/nikto_auth.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_auth.plugin 2012-08-04 01:19:05.277452091 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Search content for known bad strings diff -ur nikto-2.1.4-orig/plugins/nikto_cgi.plugin nikto-2.1.4/plugins/nikto_cgi.plugin --- nikto-2.1.4-orig/plugins/nikto_cgi.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_cgi.plugin 2012-08-04 01:19:05.277452091 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Perform CGI tests diff -ur nikto-2.1.4-orig/plugins/nikto_content_search.plugin nikto-2.1.4/plugins/nikto_content_search.plugin --- nikto-2.1.4-orig/plugins/nikto_content_search.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_content_search.plugin 2012-08-04 01:19:05.277452091 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Search content for known bad strings diff -ur nikto-2.1.4-orig/plugins/nikto_cookies.plugin nikto-2.1.4/plugins/nikto_cookies.plugin --- nikto-2.1.4-orig/plugins/nikto_cookies.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_cookies.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # General HTTP cookie checks diff -ur nikto-2.1.4-orig/plugins/nikto_core.plugin nikto-2.1.4/plugins/nikto_core.plugin --- nikto-2.1.4-orig/plugins/nikto_core.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_core.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Nikto core functionality diff -ur nikto-2.1.4-orig/plugins/nikto_core.plugin.debug nikto-2.1.4/plugins/nikto_core.plugin.debug --- nikto-2.1.4-orig/plugins/nikto_core.plugin.debug 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_core.plugin.debug 2012-08-04 01:19:34.782007745 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Nikto core functionality diff -ur nikto-2.1.4-orig/plugins/nikto_dictionary_attack.plugin nikto-2.1.4/plugins/nikto_dictionary_attack.plugin --- nikto-2.1.4-orig/plugins/nikto_dictionary_attack.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_dictionary_attack.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Run dictionary tests diff -ur nikto-2.1.4-orig/plugins/nikto_embedded.plugin nikto-2.1.4/plugins/nikto_embedded.plugin --- nikto-2.1.4-orig/plugins/nikto_embedded.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_embedded.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Various messages relating to the server banner diff -ur nikto-2.1.4-orig/plugins/nikto_favicon.plugin nikto-2.1.4/plugins/nikto_favicon.plugin --- nikto-2.1.4-orig/plugins/nikto_favicon.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_favicon.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Get a favicon.ico file & MD5 fingerprint diff -ur nikto-2.1.4-orig/plugins/nikto_headers.plugin nikto-2.1.4/plugins/nikto_headers.plugin --- nikto-2.1.4-orig/plugins/nikto_headers.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_headers.plugin 2012-08-04 01:19:05.281452167 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # General HTTP headers checks diff -ur nikto-2.1.4-orig/plugins/nikto_httpoptions.plugin nikto-2.1.4/plugins/nikto_httpoptions.plugin --- nikto-2.1.4-orig/plugins/nikto_httpoptions.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_httpoptions.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # HTTP options check diff -ur nikto-2.1.4-orig/plugins/nikto_msgs.plugin nikto-2.1.4/plugins/nikto_msgs.plugin --- nikto-2.1.4-orig/plugins/nikto_msgs.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_msgs.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Various messages relating to the server banner diff -ur nikto-2.1.4-orig/plugins/nikto_multiple_index.plugin nikto-2.1.4/plugins/nikto_multiple_index.plugin --- nikto-2.1.4-orig/plugins/nikto_multiple_index.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_multiple_index.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Look for multiple unique index files diff -ur nikto-2.1.4-orig/plugins/nikto_outdated.plugin nikto-2.1.4/plugins/nikto_outdated.plugin --- nikto-2.1.4-orig/plugins/nikto_outdated.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_outdated.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Check for outdated items in banner diff -ur nikto-2.1.4-orig/plugins/nikto_put_del_test.plugin nikto-2.1.4/plugins/nikto_put_del_test.plugin --- nikto-2.1.4-orig/plugins/nikto_put_del_test.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_put_del_test.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Try put and then delete a file diff -ur nikto-2.1.4-orig/plugins/nikto_report_csv.plugin nikto-2.1.4/plugins/nikto_report_csv.plugin --- nikto-2.1.4-orig/plugins/nikto_report_csv.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_csv.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Reporting diff -ur nikto-2.1.4-orig/plugins/nikto_report_html.plugin nikto-2.1.4/plugins/nikto_report_html.plugin --- nikto-2.1.4-orig/plugins/nikto_report_html.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_html.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Reporting diff -ur nikto-2.1.4-orig/plugins/nikto_report_msf.plugin nikto-2.1.4/plugins/nikto_report_msf.plugin --- nikto-2.1.4-orig/plugins/nikto_report_msf.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_msf.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Log to Metasploit via XML::RPC service diff -ur nikto-2.1.4-orig/plugins/nikto_report_nbe.plugin nikto-2.1.4/plugins/nikto_report_nbe.plugin --- nikto-2.1.4-orig/plugins/nikto_report_nbe.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_nbe.plugin 2012-08-04 01:19:05.285452242 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Reporting in NBE format. diff -ur nikto-2.1.4-orig/plugins/nikto_report_text.plugin nikto-2.1.4/plugins/nikto_report_text.plugin --- nikto-2.1.4-orig/plugins/nikto_report_text.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_text.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Reporting diff -ur nikto-2.1.4-orig/plugins/nikto_report_xml.plugin nikto-2.1.4/plugins/nikto_report_xml.plugin --- nikto-2.1.4-orig/plugins/nikto_report_xml.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_report_xml.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Reporting diff -ur nikto-2.1.4-orig/plugins/nikto_robots.plugin nikto-2.1.4/plugins/nikto_robots.plugin --- nikto-2.1.4-orig/plugins/nikto_robots.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_robots.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Check out the robots.txt file diff -ur nikto-2.1.4-orig/plugins/nikto_single.plugin nikto-2.1.4/plugins/nikto_single.plugin --- nikto-2.1.4-orig/plugins/nikto_single.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_single.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Perform single request mode diff -ur nikto-2.1.4-orig/plugins/nikto_ssl.plugin nikto-2.1.4/plugins/nikto_ssl.plugin --- nikto-2.1.4-orig/plugins/nikto_ssl.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_ssl.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Test certificate information diff -ur nikto-2.1.4-orig/plugins/nikto_subdomain.plugin nikto-2.1.4/plugins/nikto_subdomain.plugin --- nikto-2.1.4-orig/plugins/nikto_subdomain.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_subdomain.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Look for subdomains diff -ur nikto-2.1.4-orig/plugins/nikto_tests.plugin nikto-2.1.4/plugins/nikto_tests.plugin --- nikto-2.1.4-orig/plugins/nikto_tests.plugin 2011-02-19 03:53:23.000000000 +0100 +++ nikto-2.1.4/plugins/nikto_tests.plugin 2012-08-04 01:19:05.289452316 +0200 @@ -15,7 +15,7 @@ # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. +# Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ############################################################################### # PURPOSE: # Perform the full database of nikto tests against a target From csullo at gmail.com Fri Aug 3 23:39:25 2012 From: csullo at gmail.com (Sullo) Date: Sat, 4 Aug 2012 00:39:25 -0400 Subject: [Nikto-discuss] Cosmetic patch to fix the FSF-Address In-Reply-To: <501C5E41.7090902@weberhofer.at> References: <501C5E41.7090902@weberhofer.at> Message-ID: Updated has been applied, thanks! On Fri, Aug 3, 2012 at 7:26 PM, Johannes Weberhofer < jweberhofer at weberhofer.at> wrote: > Dear developers, > > attached you can find a patch which fixes the FSF address. > > Best regards, > Johannes Weberhofer > -- > Johannes Weberhofer > Weberhofer GmbH, Austria, Vienna > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > -- http://www.cirt.net | http://richsec.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: From terrence.oconnor at gmail.com Sun Aug 5 13:40:42 2012 From: terrence.oconnor at gmail.com (Terrence O'Connor) Date: Sun, 5 Aug 2012 14:40:42 -0400 Subject: [Nikto-discuss] Specifying HTTP Headers for Test Requests Message-ID: If there a way to specify custom HTTP Headers for requests that are sent out using the framework? Thanks, Terrence -------------- next part -------------- An HTML attachment was scrubbed... URL: From bperry.volatile at gmail.com Mon Aug 6 16:32:28 2012 From: bperry.volatile at gmail.com (Brandon Perry) Date: Mon, 6 Aug 2012 16:32:28 -0500 Subject: [Nikto-discuss] -update broken in latest svn? Message-ID: Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update + ERROR (404): Unable to get www.cirt.net/nikto/UPDATES/2.1.5/versions.txt ubuntu at fdsa:~/tools/nikto$ -- http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- website From mike at itsecuritypros.org Mon Aug 6 16:44:12 2012 From: mike at itsecuritypros.org (Michael D. Wood) Date: Mon, 6 Aug 2012 17:44:12 -0400 Subject: [Nikto-discuss] -update broken in latest svn? In-Reply-To: References: Message-ID: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> Well it's def not on the server: http://www.cirt.net/nikto/UPDATES/2.1.5/versions.txt opposed to 2.1.4: http://www.cirt.net/nikto/UPDATES/2.1.4/versions.txt -- Michael D. Wood ITSecurityPros.org www.itsecuritypros.org -----Original Message----- From: nikto-discuss-bounces at attrition.org [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Brandon Perry Sent: Monday, August 06, 2012 5:32 PM To: nikto-discuss at attrition.org Subject: [Nikto-discuss] -update broken in latest svn? Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update + ERROR (404): Unable to get + www.cirt.net/nikto/UPDATES/2.1.5/versions.txt ubuntu at fdsa:~/tools/nikto$ -- http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- website _______________________________________________ Nikto-discuss mailing list Nikto-discuss at attrition.org https://attrition.org/mailman/listinfo/nikto-discuss -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6139 bytes Desc: not available URL: From bperry.volatile at gmail.com Mon Aug 6 16:45:51 2012 From: bperry.volatile at gmail.com (Brandon Perry) Date: Mon, 6 Aug 2012 16:45:51 -0500 Subject: [Nikto-discuss] -update broken in latest svn? In-Reply-To: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> References: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> Message-ID: Yes, this is correct. Should -update not be run on SVN head? On Mon, Aug 6, 2012 at 4:44 PM, Michael D. Wood wrote: > Well it's def not on the server: > http://www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > > opposed to 2.1.4: > http://www.cirt.net/nikto/UPDATES/2.1.4/versions.txt > > > > > -- > Michael D. Wood > ITSecurityPros.org > www.itsecuritypros.org > > -----Original Message----- > From: nikto-discuss-bounces at attrition.org > [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Brandon Perry > Sent: Monday, August 06, 2012 5:32 PM > To: nikto-discuss at attrition.org > Subject: [Nikto-discuss] -update broken in latest svn? > > Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: > > ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update > + ERROR (404): Unable to get > + www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > ubuntu at fdsa:~/tools/nikto$ > > > -- > http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- > website _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss -- http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- website From tom.smyth at wirelessconnect.eu Mon Aug 6 17:45:10 2012 From: tom.smyth at wirelessconnect.eu (Tom Smyth) Date: Mon, 6 Aug 2012 23:45:10 +0100 Subject: [Nikto-discuss] -update broken in latest svn? In-Reply-To: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> References: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> Message-ID: Yes, I had the Same Issue when using BT5 .... On Mon, Aug 6, 2012 at 10:44 PM, Michael D. Wood wrote: > Well it's def not on the server: > http://www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > > opposed to 2.1.4: > http://www.cirt.net/nikto/UPDATES/2.1.4/versions.txt > > > > > -- > Michael D. Wood > ITSecurityPros.org > www.itsecuritypros.org > > -----Original Message----- > From: nikto-discuss-bounces at attrition.org > [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Brandon Perry > Sent: Monday, August 06, 2012 5:32 PM > To: nikto-discuss at attrition.org > Subject: [Nikto-discuss] -update broken in latest svn? > > Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: > > ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update > + ERROR (404): Unable to get > + www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > ubuntu at fdsa:~/tools/nikto$ > > > -- > http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- > website _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > -- Kindest regards, Tom Smyth Mobile: +353 87 6193172 --------------------------------- PLEASE CONSIDER THE ENVIRONMENT BEFORE YOU PRINT THIS E-MAIL This email contains information which may be confidential or privileged. The information is intended solely for the use of the individual or entity named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. If you have received this electronic transmission in error, please notify me by telephone or by electronic mail immediately. Any opinions expressed are those of the author, not the company's .This email does not constitute either offer or acceptance of any contractually binding agreement. Such offer or acceptance must be communicated in writing. You are requested to carry out your own virus check before opening any attachment. Thomas Smyth accepts no liability for any loss or damage which may be caused by malicious software or attachments. -------------- next part -------------- An HTML attachment was scrubbed... URL: From csullo at gmail.com Mon Aug 6 19:17:00 2012 From: csullo at gmail.com (csullo at gmail.com) Date: Mon, 6 Aug 2012 20:17:00 -0400 Subject: [Nikto-discuss] -update broken in latest svn? In-Reply-To: References: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> Message-ID: 2.1.5 isnt really released so there is nothing to -update--use 'svn up' instead. I am actually working hard to finish 2.1.5 very soon :) On Aug 6, 2012, at 6:45 PM, Tom Smyth wrote: > Yes, I had the Same Issue when using BT5 .... > > > On Mon, Aug 6, 2012 at 10:44 PM, Michael D. Wood wrote: > Well it's def not on the server: > http://www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > > opposed to 2.1.4: > http://www.cirt.net/nikto/UPDATES/2.1.4/versions.txt > > > > > -- > Michael D. Wood > ITSecurityPros.org > www.itsecuritypros.org > > -----Original Message----- > From: nikto-discuss-bounces at attrition.org > [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Brandon Perry > Sent: Monday, August 06, 2012 5:32 PM > To: nikto-discuss at attrition.org > Subject: [Nikto-discuss] -update broken in latest svn? > > Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: > > ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update > + ERROR (404): Unable to get > + www.cirt.net/nikto/UPDATES/2.1.5/versions.txt > ubuntu at fdsa:~/tools/nikto$ > > > -- > http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- > website _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > > > > -- > Kindest regards, > Tom Smyth > > Mobile: +353 87 6193172 > --------------------------------- > PLEASE CONSIDER THE ENVIRONMENT BEFORE YOU PRINT THIS E-MAIL > This email contains information which may be confidential or privileged. The information is intended solely for the use of the individual or entity named above. If you are not the intended recipient, be aware that > any disclosure, copying, distribution or use of the contents of this information is prohibited. If you have received this electronic transmission in error, please notify me by telephone or by electronic mail immediately. Any opinions expressed are those of the author, not the company's .This email does not constitute either offer or acceptance of any contractually binding agreement. Such offer or acceptance must be communicated in > writing. You are requested to carry out your own virus check before opening any attachment. Thomas Smyth accepts no liability for any loss or damage which may be caused by malicious software or attachments. > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: From bperry.volatile at gmail.com Mon Aug 6 19:28:24 2012 From: bperry.volatile at gmail.com (Brandon Perry) Date: Mon, 6 Aug 2012 19:28:24 -0500 Subject: [Nikto-discuss] -update broken in latest svn? In-Reply-To: References: <002901cd741c$9e5a5980$db0f0c80$@itsecuritypros.org> Message-ID: Cool, danke. :) On Mon, Aug 6, 2012 at 7:17 PM, csullo at gmail.com wrote: > 2.1.5 isnt really released so there is nothing to -update--use 'svn up' > instead. > > I am actually working hard to finish 2.1.5 very soon :) > > > On Aug 6, 2012, at 6:45 PM, Tom Smyth wrote: > > Yes, I had the Same Issue when using BT5 .... > > > On Mon, Aug 6, 2012 at 10:44 PM, Michael D. Wood > wrote: >> >> Well it's def not on the server: >> http://www.cirt.net/nikto/UPDATES/2.1.5/versions.txt >> >> opposed to 2.1.4: >> http://www.cirt.net/nikto/UPDATES/2.1.4/versions.txt >> >> >> >> >> -- >> Michael D. Wood >> ITSecurityPros.org >> www.itsecuritypros.org >> >> -----Original Message----- >> From: nikto-discuss-bounces at attrition.org >> [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Brandon Perry >> Sent: Monday, August 06, 2012 5:32 PM >> To: nikto-discuss at attrition.org >> Subject: [Nikto-discuss] -update broken in latest svn? >> >> Always run 2.1.4, running 2.1.5 out of SN now and -update fails with: >> >> ubuntu at fdsa:~/tools/nikto$ ./nikto.pl -update >> + ERROR (404): Unable to get >> + www.cirt.net/nikto/UPDATES/2.1.5/versions.txt >> ubuntu at fdsa:~/tools/nikto$ >> >> >> -- >> http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- >> website _______________________________________________ >> Nikto-discuss mailing list >> Nikto-discuss at attrition.org >> https://attrition.org/mailman/listinfo/nikto-discuss >> >> _______________________________________________ >> Nikto-discuss mailing list >> Nikto-discuss at attrition.org >> https://attrition.org/mailman/listinfo/nikto-discuss >> > > > > -- > Kindest regards, > Tom Smyth > > Mobile: +353 87 6193172 > --------------------------------- > PLEASE CONSIDER THE ENVIRONMENT BEFORE YOU PRINT THIS E-MAIL > This email contains information which may be confidential or privileged. The > information is intended solely for the use of the individual or entity named > above. If you are not the intended recipient, be aware that > any disclosure, copying, distribution or use of the contents of this > information is prohibited. If you have received this electronic transmission > in error, please notify me by telephone or by electronic mail immediately. > Any opinions expressed are those of the author, not the company's .This > email does not constitute either offer or acceptance of any contractually > binding agreement. Such offer or acceptance must be communicated in > writing. You are requested to carry out your own virus check before opening > any attachment. Thomas Smyth accepts no liability for any loss or damage > which may be caused by malicious software or attachments. > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -- http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- website From csullo at gmail.com Mon Aug 6 21:45:50 2012 From: csullo at gmail.com (Sullo) Date: Mon, 6 Aug 2012 22:45:50 -0400 Subject: [Nikto-discuss] Specifying HTTP Headers for Test Requests In-Reply-To: References: Message-ID: On Sun, Aug 5, 2012 at 2:40 PM, Terrence O'Connor < terrence.oconnor at gmail.com> wrote: > If there a way to specify custom HTTP Headers for requests that are sent > out using the framework? > > It depends on what you need to do. If it's a static cookie, you can set that in nikto.conf. If it's for a specific test, a header can be set directly in db_tests. If it's just a header to go on *every* request--the simple answer is that no, there's no easy way to do that. However, it wouldn't be much work to hardcode it into nikto_core.plugin, in the netfech() subroutine. If you let me know exactly what you need to do I might be able to better help. Regards, Sullo > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > -- http://www.cirt.net | http://richsec.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: