Warung Bebas

Thursday, April 19, 2012

Penetrasi dengan Nikto

Refrensi : pemula
Tested : linux backtrack 4 R2
versi :v2.1.3

Sekilas mengenai nikto

Nikto merupakan web scanner Open Source (GPL), yang melakukan tes komprehensif terhadap web server. Nikto memiliki kemampuan mendeteksi 3500 file yang berpotensi mendatangkan bahaya / CGIS. Nikto dapat menguji web server dengan cepat, tetapi mudah dilihat pada log. Tapi sangat berguna untuk menguji suatu web server.

Menu Utilities :

-config+ Use this config file
-Cgidirs+ scan these CGI dirs: 'none', 'all', or values like "/cgi/ /cgi-a/"
-dbcheck check database and other key files for syntax errors (cannot be abbreviated)
-evasion+ ids evasion technique
-Format+ save file (-o) format
-host+ target host
-Help Extended help information
-id+ host authentication to use, format is userid:password
-list-plugins List all available plugins
-mutate+ Guess additional file names
-mutate-options+ Provide extra information for mutations
-output+ Write output to this file
-nocache Disables the URI cache
-nossl Disables using SSL
-no404 Disables 404 checks
-Plugins+ List of plugins to run (default: ALL)
-port+ Port to use (default 80)
-root+ Prepend root value to all requests, format is /directory
-Display+ Turn on/off display outputs
-ssl Force ssl mode on port
-Single Single request mode
-timeout+ Timeout (default 2 seconds)
-Tuning+ Scan tuning
-update Update databases and plugins from cirt.net (cannot be abbreviated)
-Version Print plugin and database versions
-vhost+ Virtual host (for Host header)
+ requires a value

File konfigurasi terletak di direktori (/ pentest / scanner / Nikto) dan disebut config.txt

################################################################################​#########################
# CONFIG STUFF
################################################################################​#########################
# default command line options, can't be an option that requires a value. used for ALL runs.
# CLIOPTS=-g -a

# location of nmap to use with port scanning (rather than Nikto internals)
# and any options to pass to it
NMAP=/usr/local/bin/nmap
NMAPOPTS=-P0

# ports never to scan
SKIPPORTS=21 111

# IDs never to alert on (Note: this only works for IDs loaded from db_tests)
SKIPIDS=000703

# if Nikto is having difficulty finding the ‘plugins’, set the full install path here
# EXECDIR=/usr/local/nikto

# the default HTTP version to try… can/will be changed as necessary
DEFAULTHTTPVER=1.0

# Nikto can submit updated version strings to CIRT.net. It won’t do this w/o permission. You should
# send updates because it makes the data better for everyone ;) *NO* server specific information
# such as IP or name is sent, just the relevant version information.
# UPDATES=yes #– ask before each submission if it should send
# UPDATES=no #– don’t ask, don’t send
# UPDATES=auto #– automatically attempt submission *without prompting*
UPDATES=yes

# Warning if MAX_WARN OK or MOVED responses are retrieved
MAX_WARN=20

# Prompt… if set to ‘no’ you’ll never be asked for anything. Good for automation.
#PROMPTS=no

# cirt.net : set the IP so that updates can work without name resolution
CIRT=209.172.49.178

################################################################################​#########################
# PROXY STUFF
################################################################################​#########################
#PROXYHOST=127.0.0.1
#PROXYPORT=8080
#PROXYUSER=proxyuserid
#PROXYPASS=proxypassword

################################################################################​#########################
# COOKIE STUFF
################################################################################​#########################
# send a cookie with all requests, helpful if auth cookie is needed
#STATIC-COOKIE=cookiename=cookievalue

ini ane test di local lan ane yang udah ada virtual server a …
Beberapa penggunaan dasar :


Code:
zee-laptop@IBTeam:~$ perl nikto.pl -h 192.168.1.3

Untuk menguji port tertentu, gunakan opsi-p (port). Ini akan scan port IP 192.168.1.3 pada TCP 443

perl nikto.pl -h 192.168.1.3 -p 80

Berikut perintah untuk penggunaan pengujian multiport

perl nikto.pl -h 192.168.1.3 -p 80,88,443

Untuk Penggunaan menyimpan log txt

bt nikto # ./nikto.pl -e 1 -host hxxp://192.168.1.3/joomla1af -F txt -o monfile.txt

COntoh hasil

http://a4.sphotos.ak.fbcdn.net/hphotos-ak-snc6/180930_1568118200021_1147422359_31227298_7799398_n.jpg

0 comments em “Penetrasi dengan Nikto”

Post a Comment

 

Indahnya Berbagi Copyright © 2012 Fast Loading -- Powered by Blogger