From raymond_pluto at hotmail.com Fri Jul 4 01:19:08 2014 From: raymond_pluto at hotmail.com (raymond lukanta) Date: Fri, 4 Jul 2014 13:19:08 +0700 Subject: [Nikto-discuss] [Ask] nikto_core.plugin Message-ID: Hi, I have 2 questions. 1. What's the function of subroutine named run_hooks? What I got from the code is the subroutine do some checking, but I don't understand what the function of those checkings. 2. I try to call: nfetch($mark, "www.google.com", "GET"); But the response is error code 400. What's wrong with my request? Thanks. --Raymond -------------- next part -------------- An HTML attachment was scrubbed... URL: From raymond_pluto at hotmail.com Fri Jul 4 03:35:35 2014 From: raymond_pluto at hotmail.com (raymond lukanta) Date: Fri, 4 Jul 2014 15:35:35 +0700 Subject: [Nikto-discuss] [Ask] nikto_core.plugin In-Reply-To: References: Message-ID: I've found the answer for question number 2.It's because the host name has been set at the beginning of scanning. In fact, the second parameter of nfetch is URI. So, for example I set host to "localhost", then the URL will become localhost/www.google.com. I'm still waiting the answer for question 1. :-) --Raymond From: raymond_pluto at hotmail.com To: nikto-discuss at attrition.org Date: Fri, 4 Jul 2014 13:19:08 +0700 Subject: [Nikto-discuss] [Ask] nikto_core.plugin Hi, I have 2 questions. 1. What's the function of subroutine named run_hooks? What I got from the code is the subroutine do some checking, but I don't understand what the function of those checkings. 2. I try to call: nfetch($mark, "www.google.com", "GET"); But the response is error code 400. What's wrong with my request? Thanks. --Raymond _______________________________________________ Nikto is sponsored by Netsparker, a false positive free web application security scanner. Visit https://www.netsparker.com/ for more information. _______________________________________________ Nikto-discuss mail list Nikto-discuss at attrition.org https://attrition.org/mailman/listinfo/nikto-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: From resident.deity at gmail.com Fri Jul 11 02:40:15 2014 From: resident.deity at gmail.com (a) Date: Fri, 11 Jul 2014 08:40:15 +0100 Subject: [Nikto-discuss] Nikto Plugin Tutorial In-Reply-To: References: Message-ID: Yeah that book refers to Nikto pre-2.1.0. I keep meaning to write a full tutorial, but run out of time. It was to this aim that the last plugin I wrote I excessively commented. So, until I can find time, it's best to copy the nikto_drupal plugin and mangle it ( https://github.com/sullo/nikto/blob/master/program/plugins/nikto_drupal.plugin ) I'll put this on my (very long) list of things to do. On 21 June 2014 05:47, raymond lukanta wrote: > Hi All, > > I want to create new Nikto plugin. > > I've been googling but what I found was this book: > > http://books.google.co.id/books?id=iV8DRekYvg0C&printsec=frontcover&dq=Network+Security+Tools:+Writing,+Hacking,+and+Modifying+Security+Tools&hl=en&sa=X&ei=xAylU4DPGc7JuAS39YCwCA&ved=0CBsQ6AEwAA#v=onepage&q&f=false > > On page 86, the author give some explanation, but I think the author use > the older Nikto version. > > Is there anybody have some tutorial that I can follow? > > Thanks. > -- > Raymond L > > _______________________________________________ > Nikto is sponsored by Netsparker, a false positive free web application > security scanner. > Visit https://www.netsparker.com/ for more information. > _______________________________________________ > Nikto-discuss mail list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: From resident.deity at gmail.com Fri Jul 11 02:46:52 2014 From: resident.deity at gmail.com (a) Date: Fri, 11 Jul 2014 08:46:52 +0100 Subject: [Nikto-discuss] [Ask] nikto_core.plugin In-Reply-To: References: Message-ID: run_hooks pretty much *is* Nikto: it's the bit that runs all of the plugins. In essence Nikto > 2.1.0 is just a plugin runner. The core component of Nikto parses the command line, cleans up a lot of the gubbins, and the runs all the plugins. To run a plugin it will call run_hooks at various points, this then goes through the plugin list and calls each registered plugin for that hook, the phases (or hooks - phase was the 2.1.0 term; it became hook in 2.1.1 or 2.1.2) are described in the documentation: http://cirt.net/nikto2-docs/expanding.html#id2792681 So, in essence, don't touch run_hooks unless you know what you're doing or things will go weird. On 4 July 2014 09:35, raymond lukanta wrote: > I've found the answer for question number 2. > It's because the host name has been set at the beginning of scanning. > > In fact, the second parameter of nfetch is URI. So, for example I set > host to "localhost", then the URL will become localhost/www.google.com. > > I'm still waiting the answer for question 1. :-) > > -- > Raymond > > ------------------------------ > From: raymond_pluto at hotmail.com > To: nikto-discuss at attrition.org > Date: Fri, 4 Jul 2014 13:19:08 +0700 > Subject: [Nikto-discuss] [Ask] nikto_core.plugin > > > Hi, > > I have 2 questions. > > 1. What's the function of subroutine named run_hooks? What I got from the > code is the subroutine do some checking, but I don't understand what the > function of those checkings. > > 2. I try to call: nfetch($mark, "www.google.com", "GET"); > But the response is error code 400. What's wrong with my request? > > Thanks. > > -- > Raymond > > _______________________________________________ Nikto is sponsored by > Netsparker, a false positive free web application security scanner. Visit > https://www.netsparker.com/ for more information. > _______________________________________________ Nikto-discuss mail list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > > _______________________________________________ > Nikto is sponsored by Netsparker, a false positive free web application > security scanner. > Visit https://www.netsparker.com/ for more information. > _______________________________________________ > Nikto-discuss mail list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: From resident.deity at gmail.com Fri Jul 11 03:15:16 2014 From: resident.deity at gmail.com (a) Date: Fri, 11 Jul 2014 09:15:16 +0100 Subject: [Nikto-discuss] Nikto Debugger In-Reply-To: References: Message-ID: I normally debug the bit I'm doing using print and exit; or, if I'm doing a plugin I'll use the plugin specific debug and verbose flags, by passing verbose or debug as a parameter to the plugin, e.g.: -Plugin drupal(verbose) If I'm just doing a test, and want to run just that test and nothing else, you can tune it with the tid option to the test plugin and use the -no404 switch to disable the 100 or so requests Nikto makes to guess what looks like a 404: -no404 -Plugin tests(tids:50001..50010) On 25 June 2014 11:54, raymond lukanta wrote: > Dear All, > > What is the suitable debugger for developing Nikto? > > I've tried Epic, but it skip the break point if I put a break point on > different module (example on /plugins/nikto_core.plugin). > Anyone ever face the same problem? > > Thanks. > > -- > Raymond L > > _______________________________________________ > Nikto is sponsored by Netsparker, a false positive free web application > security scanner. > Visit https://www.netsparker.com/ for more information. > _______________________________________________ > Nikto-discuss mail list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: