Nikto is a an open source software which acts as a web server scanner which performs multiple tests against web servers for many items which include 6500 potentially dangerous CGIs or files. It also checks for outdated versions of about 1250 servers. It also checks for about the problems on specific servers of about 270 kinds. It checks for server configuration items.
To open up Nikto on Kali Linux:
Kali Linux > Vulnerability Analysis > Misc Scanners > Nikto
Once you have opened up Nikto from the menu, you can see the help options by typing nikto -help
I won't explain each option in detail as it is self-explanatory.
Now this is how to use it.
1.) If you want to perform a database check then you need to type in nikto -dbcheck
2.)If you want to update your software( which in this case you won't need to as Kali Linux is not old enough, but you would need to update it in future) then type in nikto -update
3.)Before and after updating the software you can check the version of the software and to do the same you need to type in nikto -Version
4.) Now if in case you need to find out the plugins then you can type in nikto -list-plugins
5.) Now, the real game, the vulnerability check can be done by typing in the following syntax :
nikto -h <domain name>
for example: nikto -h www.anything(domain).com
After that you will be showed a detailed scan and you will also get to know how you will be able to penetrate the website.
for example, you may get a message that shall tell you that Attackers may be able to crash FrontPage by requesting a DOS Device.
By pressing any of the below you can turn on or off the following features even during an active scan.
SPACE - Report current scan status
v - Turn verbose mode on/off
d - Turn debug mode on/off
e - Turn error reporting on/off
p - Turn progress reporting on/off
r - Turn redirect display on/off
c - Turn cookie display on/off
o - Turn OK display on/off
a - Turn auth display on/off
q - Quit
N - Next host
P - Pause
v - Turn verbose mode on/off
d - Turn debug mode on/off
e - Turn error reporting on/off
p - Turn progress reporting on/off
r - Turn redirect display on/off
c - Turn cookie display on/off
o - Turn OK display on/off
a - Turn auth display on/off
q - Quit
N - Next host
P - Pause
i hope this all usefull to you people keep subsribe me and be in touch for more Articles Thank you .
- See more at: http://crezybrain.blogspot.com/2014/02/how-to-hack-website-using-kali-linux.html#sthash.XD1lyMzg.dpuf
.jpg)
www.crezybrain.net
ReplyDeleteHey Guys !
ReplyDeleteUSA Fresh & Verified SSN Leads AVAILABLE with best connectivity
All Leads have genuine & valid information
**HEADERS IN LEADS**
First Name | Last Name | SSN | Dob | DL Number |Address | State | City | Zip | Phone Number | Account Number | Bank Name
*Price for SSN lead $2
*You can ask for sample before any deal
*If anyone buy in bulk, we can negotiate
*Sampling is just for serious buyers
==>ACTIVE & FRESH CC FULLZ ALSO AVAILABLE<==
->$5 PER EACH
->Hope for the long term deal
->Interested buyers will be welcome
**Contact 24/7**
Whatsapp > +923172721122
Email > leads.sellers1212@gmail.com
Telegram > @leadsupplier
ICQ > 752822040
Hi Guy's
ReplyDeleteFresh & valid spammed USA SSN+Dob Leads with DL available in bulk.
>>1$ each SSN+DOB
>>3$ each with SSN+DOB+DL
>>5$ each for premium fullz (700+ credit score with replacement guarantee)
Prices are negotiable in bulk order
Serious buyer contact me no time wasters please
Bulk order will be preferable
CONTACT
Telegram > @leadsupplier
ICQ > 752822040
Email > leads.sellers1212@gmail.com
OTHER STUFF YOU CAN GET
SSN+DOB Fullz
CC's with CVV's (vbv & non-vbv)
USA Photo ID'S (Front & back)
All type of tutorials available
(Carding, spamming, hacking, scam page, Cash outs, dumps cash outs)
SMTP Linux Root
DUMPS with pins track 1 and 2
WU & Bank transfers
Socks, rdp's, vpn
Php mailer
Sql injector
Bitcoin cracker
Server I.P's
HQ Emails with passwords
All types of tools & tutorials.. & much more
Looking for long term business
For trust full vendor, feel free to contact
CONTACT
Telegram > @leadsupplier
ICQ > 752822040
Email > leads.sellers1212@gmail.com