[Nikto-discuss] Nikto Plugin Tutorial

a resident.deity at gmail.com
Wed Nov 19 07:29:14 CST 2014


This must have the record for the longest delay in responding; but the
first: every request performed by Nikto. It's mainly used by plugins like
auth to poke credentials into the request.

There's a similar postauth so you can essentially grep the responses or
check the headers.

On 18 August 2014 12:34, raymond lukanta <raymond_pluto at hotmail.com> wrote:

> Hi again,
>
> In the docs (http://cirt.net/nikto2-docs/expanding.html#id2792681),
> there's a prefetch hook.
>
> In the explanation, it is said that "The prefetch phase is called before
> every request to the server".
>
> My question is what does "every request" means? Every request done by
> Nikto or every request done by the plugin that defines that hook?
>
> Thanks.
>
> --
> Raymond L
>
> ------------------------------
> Subject: Re: [Nikto-discuss] Nikto Plugin Tutorial
> From: csullo at gmail.com
> Date: Sat, 21 Jun 2014 09:54:40 -0400
> CC: nikto-discuss at attrition.org
> To: raymond_pluto at hotmail.com
>
>
> Raymond
>
> I don't know of a full tutorial other than the docs (
> http://cirt.net/nikto2-docs/expanding.html#id2792681) on it. You might
> start with an existing plugin which has similar functionality and start
> modifying it.
>
> Feel free to post questions as well!
>
> Regards,
> Sullo
>
>
> On Jun 21, 2014, at 12:47 AM, raymond lukanta <raymond_pluto at hotmail.com>
> wrote:
>
> Hi All,
>
> I want to create new Nikto plugin.
>
> I've been googling but what I found was this book:
>
> http://books.google.co.id/books?id=iV8DRekYvg0C&printsec=frontcover&dq=Network+Security+Tools:+Writing,+Hacking,+and+Modifying+Security+Tools&hl=en&sa=X&ei=xAylU4DPGc7JuAS39YCwCA&ved=0CBsQ6AEwAA#v=onepage&q&f=false
> <http://books.google.co.id/books?id=iV8DRekYvg0C&printsec=frontcover&dq=Network+Security+Tools:+Writing%2c+Hacking%2c+and+Modifying+Security+Tools&hl=en&sa=X&ei=xAylU4DPGc7JuAS39YCwCA&ved=0CBsQ6AEwAA#v=onepage&q&f=false>
>
> On page 86, the author give some explanation, but I think the author use
> the older Nikto version.
>
> Is there anybody have some tutorial that I can follow?
>
> Thanks.
> --
> Raymond L
>
> _______________________________________________
> Nikto is sponsored by Netsparker, a false positive free web application
> security scanner.
> Visit https://www.netsparker.com/ for more information.
> _______________________________________________
> Nikto-discuss mail list
> Nikto-discuss at attrition.org
> https://attrition.org/mailman/listinfo/nikto-discuss
>
>
> _______________________________________________
> Nikto is sponsored by Netsparker, a false positive free web application
> security scanner.
> Visit https://www.netsparker.com/ for more information.
> _______________________________________________
> Nikto-discuss mail list
> Nikto-discuss at attrition.org
> https://attrition.org/mailman/listinfo/nikto-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://attrition.org/pipermail/nikto-discuss/attachments/20141119/e753b2e6/attachment.html>


More information about the Nikto-discuss mailing list