1. Reconnaissance
HTTrack You can crawl all pages of the target Web site and reduce the interaction with the target server during reconnaissance.
2.Nikto (1). Detection Object
Scan software version
Search for files with security implications
Configuration vulnerability
no404 Avoid 404 miscalculation based on response content
Remove time information to take MD5 (2). Scan Command
Nikto-list-plugins
List Scan Plugins
Nikto-update
Update Plugin
nikto-hosthttp://1.1.1.1
Specify host Scan
nikto-host192.168.1.1-ssl-port443,8443,995Specify the host and port forSSLthe scan
Nikto-hosthost.txt
read scan target from filenmap-p80192.168.1.0/24-og-|nikto-host-combinedNmapUsenikto-host192.168.1.1-useproxyhttp://localhost:8087using proxies-vhostwhen aIPwhen the address points to multiple virtual hosts, you need to useVhostParameters-evasionDodgeIDS
Set Cookies
Modifying a configuration file /etc/nikto.confstatic-cookie= "Cookie1" = "cookievalue"; " Cookie2 "=" Cookievalu "
View details when scanning
space–reportcurrentscanstatusv–verbosemodeon/offd–debugmodeon/offe–errorreportingon/offp–progressreportingon/ Offr–redirectdisplayon/offc–cookiedisplayon/offa–authdisplayon/off
Q–quitn–nexthostp-pause
3.vega (1). Mode
Scan Mode proxy mode
(2). function
crawl, process forms, inject test support SSL
Safe Cow Learning Notes Web Scanner (1)