Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Integrating nikto fingerprints on runtime

From: Christian Heinrich <christian.heinrich () cmlh id au>
Date: Thu, 19 Dec 2013 13:08:07 +1100
George,

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:

I don't think there is a concrete reason for doing this. I can think of some
advantages like:

* Nmap features, like multiple host/port scanning, output in various formats
etc.

* NSE specific features, like Lua, HTTP pipelining, caching etc.

* Unified results (along with the rest of Nmap output) during a testing.

Maybe Nikto support some of these, i'm not sure.


"nmap -p80 192.168.0.0/24 -oG - | nikto.pl -h -" is quoted from
http://cirt.net/nikto2-docs/usage.html

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:

Also, will nmap include the
http://packetstormsecurity.com/papers/IDS/whiskerids.html features
too?


This is an interesting paper. Some of these features are easy to implement and
they would probably make a good addition to NSE.


Yes I agree, maybe a TODO for the 2014 Google SoC?

On Thu, Dec 19, 2013 at 11:47 AM, George Chatzisofroniou
<sophron () latthi com> wrote:

Nessus has its way as well [1].


http://www.tenable.com/blog/using-nessus-to-call-nikto
http://www.tenable.com/blog/integrating-nikto-with-nessus-video


-- 
Regards,
Christian Heinrich

http://cmlh.id.au/contact
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: