漏洞掃描工具--Nikto漏洞掃描工具調研

Nikto主頁： http://www.cirt.net/nikto2

 

簡介：

Nikto是一款開放源代碼的、功能強大的WEB掃描評估軟件，能對web服務器多種安全項目進行測試的掃描軟件，能在230多種服務器上掃描出 2600多種有潛在危險的文件、CGI及其他問題，它可以掃描指定主機的WEB類型、主機名、特定目錄、COOKIE、特定CGI漏洞、返回主機允許的 http模式等等。它也使用LibWhiske庫，但通常比Whisker更新的更爲頻繁。

 

以下在10.46.170.167上部署測試：

 

1. 下載最新版Nikto

http://211.138.156.198:81/1Q2W3E4R5T6Y7U8I9O0P1Z2X3C4V5B/www.cirt.net/nikto/nikto-2.1.5.tar.bz2

1. 安裝Nikto

[root@gyfd ~]# tar jxvf nikto-2.1.5.tar.bz2

[root@gyfd ~]# mv nikto-2.1.5 /usr/local/

1. 使用

(1). 基本測試

[root@gyfd ~]# cd /usr/local/nikto-2.1.5

----------------------------------------------------------------------------------------------------------------------------

[root@gyfd nikto-2.1.5]# perl nikto.pl -h 10.46.169.24 -p80 -output text.txt

說明：-h 指定被掃描的IP或者主機名

           -p 指定被掃描的端口，沒有指定則默認80,可指定掃描範圍或者多個端口

           -output 指定掃描結果保存文件。可保存的格式爲text, CSV, HTML, XML, NBE等。

掃描結果：（會在終端中顯示，同時保存到指定的文件中）

[root@gyfd nikto-2.1.5]# perl nikto.pl -h10.46.169.24 -p 80 -output text.txt               

- ***** SSL support not available (see docsfor SSL install) *****

- Nikto v2.1.5

---------------------------------------------------------------------------

+ Target IP:          10.46.169.24

+ Target Hostname:    10.46.169.24

+ Target Port:        80

+ Start Time:         2014-08-20 17:08:58 (GMT8)

---------------------------------------------------------------------------

+ Server: Apache

+ Uncommon header 'x-frame-options' found,with contents: SAMEORIGIN

+ No CGI Directories found (use '-C all' toforce check all possible dirs)

+ Allowed HTTP Methods: GET, HEAD, POST, OPTIONS

+ 6544 items checked: 0 error(s) and 2item(s) reported on remote host

+ End Time:           2014-08-20 17:09:15 (GMT8) (17seconds)

---------------------------------------------------------------------------

+ 1 host(s) tested

----------------------------------------------------------------------------------------------------------------------------

掃描https地址：

perl nikto.pl -h https://10.46.169.24:443/

 

perl nikto.pl -h 10.46.169.24 -p 443 -ssl

多端口掃描：

perl nikto.pl -h 10.46.169.24 -p 80,12580,12306

多主機掃描：

nmap -p80 192.168.0.0/24 -oG - | nikto.pl -h -

 

 

(2).Nikto的更新

[root@gyfd nikto-2.1.5]# perl nikto.pl -update

+ Retrieving 'nikto_report_csv.plugin'

+ Retrieving 'nikto_headers.plugin'

+ Retrieving 'nikto_cookies.plugin'

+ Retrieving 'db_tests'

+ Retrieving 'db_parked_strings'

+ Retrieving 'CHANGES.txt'

+ CIRT.net message: Please submit Niktobugs to http://trac2.assembla.com/Nikto_2/report/2

(3).Nikto的交互性

During an active scan, pressing any of thekeys below will turn on or off the listed feature or perform the listed action.Note that these are case sensitive.

·       SPACE - Report current scanstatus

·       v - Turn verbose mode on/off

·       d - Turn debug mode on/off

·       e - Turn error reporting on/off

·       p - Turn progress reportingon/off

·       r - Turn redirect display on/off

·       c - Turn cookie display on/off

·       o - Turn OK display on/off

·       a - Turn auth display on/off

·       q - Quit

·       N - Next host

·       P - Pause