From iungltd at yahoo.com Fri Jun 1 03:50:43 2012 From: iungltd at yahoo.com (Jeff Cheng) Date: Fri, 1 Jun 2012 16:50:43 +0800 (SGT) Subject: [Nikto-discuss] help with nikto output results Message-ID: <1338540643.90047.YahooMailNeo@web190802.mail.sg3.yahoo.com> hello can anyone help me with this: i use nikto to scan my site, and the output result show a lot of files that does not exist on my server, below are some of them: ?i don't even have a scgi-bin folder. ? + OSVDB-11740: /scgi-bin/foxweb.dll: Foxweb 2.5 and below is vulnerable to a buffer overflow (not tested or confirmed). Verify Foxweb is the latest available version. + OSVDB-11741: /scgi-bin/foxweb.exe: Foxweb 2.5 and below is vulnerable to a buffer overflow (not tested or confirmed). Verify Foxweb is the latest available version. + /scgi-bin/mgrqcgi: This CGI from Magic Enterprise 8.30-5 and earlier is vulnerable to multiple buffer overflows. Upgrade to 9.x.+ OSVDB-3093: /scgi-bin/pollssi.cgi: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/postcards.cgi: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/profile.cgi: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/quikstore.cfg: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/register.cgi: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/replicator/webpage.cgi/: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/rightfax/fuwww.dll/?: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/rmp_query: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/robpoll.cgi: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/scripts/*%0a.pl: This might be interesting... has been seen in web logs from an unknown scanner. + OSVDB-3093: /scgi-bin/simplestguest.cgi: This might be interesting... has been seen in web logs from an unknown scanner. ? thanks!!! -------------- next part -------------- An HTML attachment was scrubbed... URL: From aereal at gmail.com Fri Jun 1 09:36:08 2012 From: aereal at gmail.com (Matt ~) Date: Fri, 1 Jun 2012 11:36:08 -0300 Subject: [Nikto-discuss] help with nikto output results In-Reply-To: <1338540643.90047.YahooMailNeo@web190802.mail.sg3.yahoo.com> References: <1338540643.90047.YahooMailNeo@web190802.mail.sg3.yahoo.com> Message-ID: Maybe the responses from accessing a /scgi-bin/* folder, whether or not exists are completely different from any other 404. On Fri, Jun 1, 2012 at 5:50 AM, Jeff Cheng wrote: > hello > can anyone help me with this: i use nikto to scan my site, and the output > result show a lot of files that does not exist on my server, below are some > of them: > i don't even have a scgi-bin folder. > > + OSVDB-11740: /scgi-bin/foxweb.dll: Foxweb 2.5 and below is vulnerable to > a buffer overflow (not tested or confirmed). Verify Foxweb is the latest > available version.****** > + OSVDB-11741: /scgi-bin/foxweb.exe: Foxweb 2.5 and below is vulnerable to > a buffer overflow (not tested or confirmed). Verify Foxweb is the latest > available version.**** > + /scgi-bin/mgrqcgi: This CGI from Magic Enterprise 8.30-5 and earlier is > vulnerable to multiple buffer overflows. Upgrade to 9.x.**** > + OSVDB-3093: /scgi-bin/pollssi.cgi: This might be interesting... has been > seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/postcards.cgi: This might be interesting... has > been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/profile.cgi: This might be interesting... has been > seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/quikstore.cfg: This might be interesting... has > been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/register.cgi: This might be interesting... has > been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/replicator/webpage.cgi/: This might be > interesting... has been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/rightfax/fuwww.dll/?: This might be interesting... > has been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/rmp_query: This might be interesting... has been > seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/robpoll.cgi: This might be interesting... has been > seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/scripts/*%0a.pl: This might be interesting... has > been seen in web logs from an unknown scanner.**** > + OSVDB-3093: /scgi-bin/simplestguest.cgi: This might be interesting... > has been seen in web logs from an unknown scanner. > > thanks!!! > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > -- Atte: Mat?as Aereal Ae?n -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jay.Bahn at gmx.com Sat Jun 2 00:28:22 2012 From: Jay.Bahn at gmx.com (Jay Bahn) Date: Sat, 2 Jun 2012 14:28:22 +0900 Subject: [Nikto-discuss] Can nfetch() request with HTTP/1.0 ? Message-ID: Hello, While debugging I've found that nfetch() can't request with HTTP/1.0. But, Nikto request at least 3 test with HTTP/1.0 inside nikto_headers.plugin. (+1 test 001251 inside db_tests) To do it, Nikto uses LibWhisker raw requests, and it makes code somewhat ugly and difficult to reuse. What do you think about it to make a new function request with HTTP/1.0? For examples, (my $res, $content) = nfetch_ver_1_0($mark, "/", "GET", "", \%headers, "", "HTTP/1.0 request test"); or (my $res, $content) = nfetch_raw($mark, "/", "GET", "", "HTTP/1.0", \%headers, "", "HTTP/1.0 request test"); From csullo at gmail.com Sat Jun 2 06:42:33 2012 From: csullo at gmail.com (Sullo) Date: Sat, 2 Jun 2012 07:42:33 -0400 Subject: [Nikto-discuss] Can nfetch() request with HTTP/1.0 ? In-Reply-To: <20120602052519.1EC4EDF285@forced.attrition.org> References: <20120602052519.1EC4EDF285@forced.attrition.org> Message-ID: Rather than creating a new function, it would be better to pass the appropriate version (if an override is needed) to nfetch and let it set a new version. $request{'whisker'}->{'version'} needs to be set before http_fixup_request is called. This would allow for the nikto_headers.plugin to not have special handling, but wouldn't do anything for the single test in the database. For that one... may be best to send the header manually or move that test to code (since there are 6500 tests and only 1 needs version 1.0, I think it's safe to call it an edge case). Almost done with changes to support switching the http version in nfetch()... On Sat, Jun 2, 2012 at 1:28 AM, Jay Bahn wrote: > Hello, > > While debugging I've found that nfetch() can't request with HTTP/1.0. > But, Nikto request at least 3 test with HTTP/1.0 inside > nikto_headers.plugin. > (+1 test 001251 inside db_tests) > > To do it, Nikto uses LibWhisker raw requests, and it makes code somewhat > ugly and difficult to reuse. > What do you think about it to make a new function request with HTTP/1.0? > > For examples, > (my $res, $content) = > nfetch_ver_1_0($mark, "/", "GET", "", \%headers, "", "HTTP/1.0 request > test"); > > or > (my $res, $content) = > nfetch_raw($mark, "/", "GET", "", "HTTP/1.0", \%headers, "", "HTTP/1.0 > request test"); > > > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss -- http://www.cirt.net? ?? |? ? ? http://richsec.com/ From csullo at gmail.com Sat Jun 2 08:09:57 2012 From: csullo at gmail.com (Sullo) Date: Sat, 2 Jun 2012 09:09:57 -0400 Subject: [Nikto-discuss] Can nfetch() request with HTTP/1.0 ? In-Reply-To: References: <20120602052519.1EC4EDF285@forced.attrition.org> Message-ID: After working on some changes here, I've reconsidered. Of the tests in nikto_headers.plugin, only one of them doesn't set custom header values. This means that even allowing override of the http version you can't just use nfetch. On top of that, you need to pass the full result hash back to get the same functionality, which isn't a big deal until you have to do it 7000 times as a result. So, it should stay as crafted requests, I think. The one test in db_tests needs some thinking--it doesn't work right now. On Sat, Jun 2, 2012 at 7:42 AM, Sullo wrote: > Rather than creating a new function, it would be better to pass the > appropriate version (if an override is needed) to nfetch and let it > set a new version. > > $request{'whisker'}->{'version'} needs to be set before > http_fixup_request is called. > > This would allow for the nikto_headers.plugin to not have special > handling, but wouldn't do anything for the single test in the > database. For that one... may be best to send the header manually or > move that test to code (since there are 6500 tests and only 1 needs > version 1.0, I think it's safe to call it an edge case). > > Almost done with changes to support switching the http version in nfetch()... > > On Sat, Jun 2, 2012 at 1:28 AM, Jay Bahn wrote: >> Hello, >> >> While debugging I've found that nfetch() can't request with HTTP/1.0. >> But, Nikto request at least 3 test with HTTP/1.0 inside >> nikto_headers.plugin. >> (+1 test 001251 inside db_tests) >> >> To do it, Nikto uses LibWhisker raw requests, and it makes code somewhat >> ugly and difficult to reuse. >> What do you think about it to make a new function request with HTTP/1.0? >> >> For examples, >> (my $res, $content) = >> nfetch_ver_1_0($mark, "/", "GET", "", \%headers, "", "HTTP/1.0 request >> test"); >> >> or >> (my $res, $content) = >> nfetch_raw($mark, "/", "GET", "", "HTTP/1.0", \%headers, "", "HTTP/1.0 >> request test"); >> >> >> >> _______________________________________________ >> Nikto-discuss mailing list >> Nikto-discuss at attrition.org >> https://attrition.org/mailman/listinfo/nikto-discuss > > > > -- > > http://www.cirt.net? ?? |? ? ? http://richsec.com/ -- http://www.cirt.net? ?? |? ? ? http://richsec.com/ From csullo at gmail.com Sat Jun 2 08:11:48 2012 From: csullo at gmail.com (Sullo) Date: Sat, 2 Jun 2012 09:11:48 -0400 Subject: [Nikto-discuss] help with nikto output results In-Reply-To: References: <1338540643.90047.YahooMailNeo@web190802.mail.sg3.yahoo.com> Message-ID: These tests are likely just looking for a 200 OK response, so the web server's configuration is causing it to return a 200--thus the false positive. On Fri, Jun 1, 2012 at 10:36 AM, Matt ~ wrote: > Maybe the responses from accessing a /scgi-bin/* folder, whether or not > exists are completely different from any other 404. > > On Fri, Jun 1, 2012 at 5:50 AM, Jeff Cheng wrote: >> >> hello >> can anyone help me with this: i use nikto to scan my site, and the output >> result show a lot of files that does not exist on my server, below are some >> of them: >> ?i don't even have a scgi-bin folder. >> >> + OSVDB-11740: /scgi-bin/foxweb.dll: Foxweb 2.5 and below is vulnerable to >> a buffer overflow (not tested or confirmed). Verify Foxweb is the latest >> available version. >> + OSVDB-11741: /scgi-bin/foxweb.exe: Foxweb 2.5 and below is vulnerable to >> a buffer overflow (not tested or confirmed). Verify Foxweb is the latest >> available version. >> + /scgi-bin/mgrqcgi: This CGI from Magic Enterprise 8.30-5 and earlier is >> vulnerable to multiple buffer overflows. Upgrade to 9.x. >> + OSVDB-3093: /scgi-bin/pollssi.cgi: This might be interesting... has been >> seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/postcards.cgi: This might be interesting... has >> been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/profile.cgi: This might be interesting... has been >> seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/quikstore.cfg: This might be interesting... has >> been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/register.cgi: This might be interesting... has >> been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/replicator/webpage.cgi/: This might be >> interesting... has been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/rightfax/fuwww.dll/?: This might be interesting... >> has been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/rmp_query: This might be interesting... has been >> seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/robpoll.cgi: This might be interesting... has been >> seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/scripts/*%0a.pl: This might be interesting... has >> been seen in web logs from an unknown scanner. >> + OSVDB-3093: /scgi-bin/simplestguest.cgi: This might be interesting... >> has been seen in web logs from an unknown scanner. >> >> thanks!!! >> >> _______________________________________________ >> Nikto-discuss mailing list >> Nikto-discuss at attrition.org >> https://attrition.org/mailman/listinfo/nikto-discuss >> > > > > -- > Atte: > Mat?as Aereal Ae?n > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -- http://www.cirt.net? ?? |? ? ? http://richsec.com/ From resident.deity at gmail.com Wed Jun 6 14:01:24 2012 From: resident.deity at gmail.com (a) Date: Wed, 6 Jun 2012 20:01:24 +0100 Subject: [Nikto-discuss] Not well-formed XML report containing not escaped chars In-Reply-To: References: Message-ID: On 23 May 2012 22:01, Peter Wang (wkwang) wrote: > Hi, > > In parsing one of Nikto XML report file, my script throw an error > complaining?error "not well-formed (invalid token)" at line 5 character 88 > /O=TANDBERG/OU=UKR&D/ <--Error-- CN=ukdev-mint.uk.rd.tandberg.com/emailA" > > Finding the XML report containing some special characters in the text > without necessary escaping. An offending section is as below, > > issuers="/C=GB/ST=Berks/L=Ruscombe/O=XXXXXX/OU=XXXX/CN=asdf.com/emailAddress=someone at asdf.com" > info="/C=GB/ST=Berkshire/L=Ruscombe/O=Company/OU=UK R&D/CN=vmx098" /> It looks like we need to wrap the issuers/info in a CDATA construct, I've raised this as bug 245 (https://trac.assembla.com/Nikto_2/ticket/245). Thanks dave From resident.deity at gmail.com Wed Jun 6 14:05:35 2012 From: resident.deity at gmail.com (a) Date: Wed, 6 Jun 2012 20:05:35 +0100 Subject: [Nikto-discuss] Nikto HTML output In-Reply-To: <4FA3CA87.40600@qcontinuum.plus.com> References: <4FA3CA87.40600@qcontinuum.plus.com> Message-ID: On 4 May 2012 13:24, Subscriptions wrote: > When Nikto output is passed to Nessus via the nikto.nasl plugin, it is > passed as plain text which is not displayed very well in Nessus. Since Nikto > can pass output in HTML, is it possible to output HTML but just the content > of the BODY section? This should probably be thought out with the downstream stuff. The reporting for HTML is designed to export to a file at the moment (I may look at this over the next couple of weeks). So it is difficult at the moment, but not impossible. Although I personally would like to kill off the HTML output and use XML + XSLT so as to reduce complexity. From Jay.Bahn at gmx.com Thu Jun 7 10:35:43 2012 From: Jay.Bahn at gmx.com (Jay Bahn) Date: Fri, 8 Jun 2012 00:35:43 +0900 Subject: [Nikto-discuss] What do you think about GUI Message-ID: This is about Ticket #19. What do you think about Zenmap alike python GUI wrapper approach? Zenmap calls Nmap with pipe and reads in result. It's easy to implement, but I don't know whether it is right or not. From sullo at cirt.net Fri Jun 8 23:54:11 2012 From: sullo at cirt.net (Sullo) Date: Sat, 9 Jun 2012 00:54:11 -0400 Subject: [Nikto-discuss] What do you think about GUI In-Reply-To: <20120607153536.CFF1E16275@forced.attrition.org> References: <20120607153536.CFF1E16275@forced.attrition.org> Message-ID: On Thu, Jun 7, 2012 at 11:35 AM, Jay Bahn wrote: > This is about Ticket #19. > > What do you think about Zenmap alike python GUI wrapper approach? > Zenmap calls Nmap with pipe and reads in result. > It's easy to implement, but I don't know whether it is right or not. > A GUI has never been a priority for me (clearly) because I'd rather script & background things until they finish. That said, I know a lot of people would probably like one. A good GUI for Nikto can only help people some people who want one, and the CLI will always be there for the others. So, that said, I would love to see it a reality... if you have the drive to do it, please make it happen! Regards, Sullo From Jay.Bahn at gmx.com Sun Jun 10 10:18:58 2012 From: Jay.Bahn at gmx.com (Jay Bahn) Date: Mon, 11 Jun 2012 00:18:58 +0900 Subject: [Nikto-discuss] To add subdomain to db_subdomains Message-ID: Hi, If I want to add 'recruit' subdomain to db_subdomains, I must assign new nikto_id? (ex. 750293) Or I must add it between line 221 and line 222 and rearrange nikto_id number? From FBreedijk at schubergphilis.com Mon Jun 11 04:25:10 2012 From: FBreedijk at schubergphilis.com (Frank Breedijk) Date: Mon, 11 Jun 2012 09:25:10 +0000 Subject: [Nikto-discuss] What do you think about GUI In-Reply-To: References: <20120607153536.CFF1E16275@forced.attrition.org> Message-ID: Chris, Seccubus is already a wrapper around Nikto, but concentrates mostly on the results rather then the settings part. Kind regards, Frank Breedijk +31 6 438 22637 -----Original Message----- From: nikto-discuss-bounces at attrition.org [mailto:nikto-discuss-bounces at attrition.org] On Behalf Of Sullo Sent: Saturday, 09 June, 2012 6:54 To: Jay Bahn Cc: nikto-discuss at attrition.org Subject: Re: [Nikto-discuss] What do you think about GUI On Thu, Jun 7, 2012 at 11:35 AM, Jay Bahn wrote: > This is about Ticket #19. > > What do you think about Zenmap alike python GUI wrapper approach? > Zenmap calls Nmap with pipe and reads in result. > It's easy to implement, but I don't know whether it is right or not. > A GUI has never been a priority for me (clearly) because I'd rather script & background things until they finish. That said, I know a lot of people would probably like one. A good GUI for Nikto can only help people some people who want one, and the CLI will always be there for the others. So, that said, I would love to see it a reality... if you have the drive to do it, please make it happen! Regards, Sullo _______________________________________________ Nikto-discuss mailing list Nikto-discuss at attrition.org https://attrition.org/mailman/listinfo/nikto-discuss From abishop at linux.com Wed Jun 20 18:03:12 2012 From: abishop at linux.com (aaron bishop) Date: Wed, 20 Jun 2012 17:03:12 -0600 Subject: [Nikto-discuss] cPanel issues Message-ID: Hello All. I've bene using nikto for a few months now and I absolutely love it. I have come across an issue when I scan a site that has cpanel installed. When I scan port 2095, which is a cpanel webmail login page, it gets dozens of false positives reported because everything on 2095 gets redirected to the login page and the URI sent is included in the body, or in the case of plugin 000294 which looks for www.example.com/sips/sipssys/users/a/admin/user and falis if Password is returned it fails because it's a login page and it has Password as one of the fields for the login. Is there a good way to handle this without modifying db_tests to require 200 ok for everything which I don't think is the best solution. -------------- next part -------------- An HTML attachment was scrubbed... URL: From sullo at cirt.net Mon Jun 25 13:56:13 2012 From: sullo at cirt.net (Sullo) Date: Mon, 25 Jun 2012 14:56:13 -0400 Subject: [Nikto-discuss] cPanel issues In-Reply-To: References: Message-ID: Sorry for the delay. You can put strings into a file called db_404_strings in the databases directory, and it should discount those as positive results. You'd want to put something in from the known-404 page. More info on the udb files is here: http://cirt.net/nikto2-docs/ With cpanel, if it's a unique string that we can use I can also add it to the main database, as well as create a check to identify cpanel. Regards, Sullo On Wed, Jun 20, 2012 at 7:03 PM, aaron bishop wrote: > Hello All. I've bene using nikto for a few months now and I absolutely > love it. I have come across an issue when I scan a site that has cpanel > installed. When I scan port 2095, which is a cpanel webmail login page, it > gets dozens of false positives reported because everything on 2095 gets > redirected to the login page and the URI sent is included in the body, or > in the case of plugin 000294 which looks for > www.example.com/sips/sipssys/users/a/admin/user and falis if Password is > returned it fails because it's a login page and it has Password as one of > the fields for the login. Is there a good way to handle this without > modifying db_tests to require 200 ok for everything which I don't think is > the best solution. > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > -- http://cirt.net | http://richsec.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: From macubergeek at comcast.net Thu Jun 28 17:50:28 2012 From: macubergeek at comcast.net (macubergeek) Date: Thu, 28 Jun 2012 18:50:28 -0400 Subject: [Nikto-discuss] problem with nikto output to metasploit Message-ID: <9B26CA9A-B083-4AEE-ACA9-72EB6ED90CE7@comcast.net> I've been learning nmap/nessus scanning via msfconsole into the backend Postgres database. Everything has been working fine so I've moved on to Nikto but am having issues. Problem is the Nikto results don't appear to be showing up in the database. I've been looking in the Notes section of the database btw. Here's what I've been doing: 1. Start msfrpcd ./msfrpcd -S -U MetaUser -P Securepass -p 55553 2. Scan into msfrpcd cd /pentest/web/nikto ./nikto.pl -Format msf -o MetaUser:Securepass at http://localhost:55553/RPC2 -h target_ip When I do this I get this error: Can't call method "value" on an undefined value at /pentest/web/nikto/plugins/nikto_report_msf.plugin line 194. Here is line 194 from that plugin: 192 $resp = $cli->send_request($req); 193 194 if ($resp->{'result'}->value eq "success") { 195 $TEMPLATES{'msftoken'} = $resp->{'token'}->value; 196 $TEMPLATES{'msflasttoken'} = time(); Any one have any ideas what's fubar here? Jim ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ %49%66%20%79%6F%75%20%63%61%6E%20%72%65%61%64%20%74%68%69%73%20%79%6F%75%20%6E%65%65%64%20%74%6F%20%67%65%74%20%61%20%67%69%72%6C%66%72%69%65%6E%64%2E -------------- next part -------------- An HTML attachment was scrubbed... URL: From bperry.volatile at gmail.com Thu Jun 28 22:37:54 2012 From: bperry.volatile at gmail.com (Brandon Perry) Date: Thu, 28 Jun 2012 22:37:54 -0500 Subject: [Nikto-discuss] problem with nikto output to metasploit In-Reply-To: <9B26CA9A-B083-4AEE-ACA9-72EB6ED90CE7@comcast.net> References: <9B26CA9A-B083-4AEE-ACA9-72EB6ED90CE7@comcast.net> Message-ID: The Metasploit XML RPC is no longer developed on. A MSGRPC using MSGPACK has been implemented to replace it. Here are some perl bindings for the metasploit MSGRPC: https://github.com/SpiderLabs/msfrpc/tree/master/Net-MSFRPC On Thu, Jun 28, 2012 at 5:50 PM, macubergeek wrote: > I've been learning nmap/nessus scanning via msfconsole > into the backend Postgres database. > > Everything has been working fine so I've moved on to Nikto but am having > issues. Problem is the Nikto results don't appear to be showing up in the > database. I've been looking in the Notes section of the database btw. > > Here's what I've been doing: > > 1. Start msfrpcd > ./msfrpcd -S -U MetaUser -P Securepass -p 55553 > > 2. Scan into msfrpcd > cd /pentest/web/nikto > ./nikto.pl -Format msf -o > MetaUser:Securepass at http://localhost:55553/RPC2 -h target_ip > > When I do this I get this error: > Can't call method "value" on an undefined value at > /pentest/web/nikto/plugins/nikto_report_msf.plugin line 194. > > Here is line 194 from that plugin: > 192 ????$resp = $cli->send_request($req); > 193 > 194 ????if ($resp->{'result'}->value eq "success") { > 195 ????????$TEMPLATES{'msftoken'} ????= $resp->{'token'}->value; > 196 ????????$TEMPLATES{'msflasttoken'} = time(); > > > Any one have any ideas what's fubar here? > > > Jim > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > %49%66%20%79%6F%75%20%63%61%6E%20%72%65%61%64%20%74%68%69%73%20%79%6F%75%20%6E%65%65%64%20%74%6F%20%67%65%74%20%61%20%67%69%72%6C%66%72%69%65%6E%64%2E > > > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -- http://volatile-minds.blogspot.com -- blog http://www.volatileminds.net -- website