Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: Integrating nikto fingerprints on runtime
From: Christian Heinrich <christian.heinrich () cmlh id au>
Date: Thu, 19 Dec 2013 13:08:07 +1100

George,

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:
I don't think there is a concrete reason for doing this. I can think of some
advantages like:

* Nmap features, like multiple host/port scanning, output in various formats
etc.

* NSE specific features, like Lua, HTTP pipelining, caching etc.

* Unified results (along with the rest of Nmap output) during a testing.

Maybe Nikto support some of these, i'm not sure.

"nmap -p80 192.168.0.0/24 -oG - | nikto.pl -h -" is quoted from
http://cirt.net/nikto2-docs/usage.html

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:
Also, will nmap include the
http://packetstormsecurity.com/papers/IDS/whiskerids.html features
too?

This is an interesting paper. Some of these features are easy to implement and
they would probably make a good addition to NSE.

Yes I agree, maybe a TODO for the 2014 Google SoC?

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:
Nessus has its way as well [1].

http://www.tenable.com/blog/using-nessus-to-call-nikto
http://www.tenable.com/blog/integrating-nikto-with-nessus-video


-- 
Regards,
Christian Heinrich

http://cmlh.id.au/contact
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault