Nikto: A Vulnerability Scanner

1
Nikto A Vulnerability Scanner
2
Description
???

• Nikto is a web server and CGI scanner written in
  Perl, using LibWhisker to perform fast security
  or informational checks and look for the follow
  items
• misconfigurations
• default files and scripts
• insecure files and scripts
• outdated software

3
Purpose

• To understand what is vulnerability scanner, and
  why we need it
• To family with the operation of the Nikto
  vulnerability scanner

4
Pre-Study

• Niktohttp//www.cirt.net/code/nikto.shtml
• Comprehensive Perl Archive Networkhttp//www.cpan
  .org

5
Required Facilities

• Hardware
• IBM-compatible PC
• Software
• Nikto http//www.cirt.net/code/nikto.shtml
• PERL module NETSSLeayhttp //www.cpan.org
• PERL module LibWhisker
• http//www.wiretrip.net/rfp/lw.asp
• OpenSSL (only required if SSL scans are needed)

6
Step

• Installation of NETSSLeay
• Installation of Nikto
• Find a target and launch nikto

7
Installation of Net_SSLeay

• Net_SSLeay.pm-1.25
• Download Net_SSLeay.pm-1.25.tar.gz
• Extract
• tar xvfz Net_SSLeay.pm-1.25.tar.gz
• Enter the directory you extracted with
• cd Net_SSLeay.pm-1.25
• ./Makefile.PL -t
• su root
• make install

8
Installation of Nikto

• Nikto
• Download nikto-current.tar.gz
• Extract
• tar xvfz nikto-curent tar.gz
• Enter the directory you extracted with
• cd nikto-1.32
• Run the file against a target
• ./nikto.pl -h target options

9
(No Transcript)
10
(No Transcript)
11
Report
./nikto.pl h 140.123.113.82
12

./nikto.pl h 140.123.113.99
13
(No Transcript)
14
./nikto.pl h 140.123.113.82 e 1
15
Summary

• Nikto is a PERL, open source web server scanner
  which supports SSL. It checks for remote web
  server vulnerabilities and misconfigurations
• Why we need it

16
Reference

• Niktohttp//www.cirt.net/code/nikto.shtml
• Comprehensive Perl Archive Networkhttp//www.cpan
  .org
• LibWhiskerhttp//www.wiretrip.net/rfp/lw.asp
• A look at whisker's anti-IDS tacticshttp//www.wi
  retrip.net/rfp/txt/whiskerids.html