Exploit the possiblities
Showing 1 - 25 of 89 RSS Feed

Files

Nikto Web Scanner 2.1.5
Posted Sep 17, 2012
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Various fixes and changes.
tags | tool, web, cgi
systems | unix
MD5 | efcc98a918becb77471ee9a5df0a7b1e
Nikto Web Scanner 2.1.4
Posted Feb 19, 2011
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Various fixes and changes.
tags | web, cgi
systems | unix
MD5 | 8b9df0b08bbbcdf25b5ddec9e30b2633
Nikto Web Scanner 2.1.1
Posted Feb 4, 2010
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Added about 2300 RFI tests from the combined RSnake/OSVDB list. Various fixes and changes.
tags | web, cgi
systems | unix
MD5 | aacf88ebdf69e2ccda1f6d611b9f640e
Nikto Web Scanner 2.1.0
Posted Oct 19, 2009
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: This version has gone through significant rewrites under the hood to how Nikto works, to make it more expandable and usable.
tags | web, cgi
systems | unix
MD5 | 364200f2e181398fa0e8995d550f9a9c
Nikto Web Scanner 2.03
Posted Sep 4, 2008
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Multiple enhancements.
tags | web, cgi
systems | unix
MD5 | 2577536f8cd03cc37cb1c4ff99d1c66a
Nikto Web Scanner 2.01
Posted Dec 14, 2007
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Multiple enhancements.
tags | web, cgi
systems | unix
MD5 | 8af0dca235bbca9bf86b7017229a825f
Nikto Web Scanner 2.00
Posted Nov 13, 2007
Authored by Sullo | Site cirt.net

Nikto is an Open Source web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers.

Changes: Version 2 adds many enhancements to reduce false positives, server fingerprinting, scan tuning, HTML report templates, optimizations and more.
tags | web, cgi
systems | unix
MD5 | 64814606e342d3988093c7b8af9779c4
Nikto Web Scanner 1.36
Posted Feb 14, 2007
Authored by Sullo | Site cirt.net

Nikto is a perl open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2400 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.

Changes: Nikto 1.36 has been released. This version adds a new option for setting a 404 string from the command line, a new plugin to test PUT/DELETE methods, new header checks and obligatory bug fixes.
tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | 3baff72d534228575556e8cf5d34e49c
nestea.tgz
Posted Nov 20, 2005
Authored by slick

Nestea is a CGI scanner that also looks for forbidden files and directories. It has a database of 2097 vulnerabilities and it takes about 10 minutes to completely scan a host.

tags | cgi, vulnerability
systems | unix
MD5 | 46f15302a0a1fefcedea90065c36b59a
Nikto Web Scanner 1.35
Posted May 30, 2005
Authored by Sullo | Site cirt.net

Nikto is a perl open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2400 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.

Changes: Has patches from Pavel Kankovsky to support multiple config files and to reduce false positives. Also includes updated databases and several bug fixes.
tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | 908f6b5c670434324633db48bd4537cd
hsh-gen.tar.gz
Posted Jul 16, 2004
Authored by nummish | Site 0x90.org

hsh-gen is a script used to create shell wrappers to assist in exploitation of remote execution via directory traversal attacks on cgi scripts.

tags | remote, shell, cgi
systems | unix
MD5 | 32d966d86a9386fbf00c78e70f9a165a
Nikto Web Scanner 1.31
Posted Sep 29, 2003
Authored by Sullo | Site cirt.net

Nikto 1.31 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.

Changes: LibWhisker 1.8, additional configuration options, enhanced multiple-host scanning, and multiple bug fixes and more.
tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | cb6719d7e0fd4659cb826f821f01cd64
Nikto Web Scanner 1.30
Posted May 28, 2003
Authored by Sullo | Site cirt.net

Nikto 1.30 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.

Changes: Now has multiple host/port scanning, username guessing via cgiwrap, NTLM auth support, CSV output format & more.
tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | fdc8fb9aa86e090ee104903d3b2e0a28
Nikto Web Scanner 1.23
Posted Jan 5, 2003
Authored by Sullo | Site cirt.net

Nikto 1.23 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) over 2000 remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site.

Changes: Now has Apache username guessing, static auth cookies, static base directories, proxy id/password prompting and bug fixes.
tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | 59b561c2e086167c4469bd21e3e44bff
wmap1.3.tar.gz
Posted Dec 29, 2002
Authored by Efrain Torres | Site pwp.007mundo.com

Wmap v1.3 is a cgi scanner that attempts to be smarter than most. To increase the chance of finding useful stuff, wmap has a file containing interesting Directories (dirs.db) and other file containing common cgi dirs (dircgis.db) to search for. If a directory is found is added to the test. This include all the directories that are found in the html tags. For each directory found, not only scans for vulnerable CGI's (cgis.db) it scan for interesting files (ex. passwords.tmp) included in the file (file.db) and does an http PUT scan.

Changes: Many bug fixes.
tags | web, cgi
systems | unix
MD5 | c6ea4d3cb5c9499182cb736b26942b2c
cst1_4.tar.gz
Posted Dec 29, 2002
Authored by Toxic Ocean | Site blackhat.be

CST is a java based web scanner that scans using a database of scripts (user editable). The sample databases included contains +1600 possibly vulnerable scripts/dirs. You can scan with or without a proxy server. The scanner has 11 different Anti-IDS tactics and sends fake "X-Forwarded-For:", "Referer:" and "User-Agent:" headers to hide your scan even more. You can also specify a wait time between 2 script fetches. The scanner uses HEAD requests instead of GET for faster scanning, and has support for scanning virtual hosts. You can also specify another port to scan instead of the standard port 80. The scanner outputs the scripts/dirs that return a 200, 403 or 401 HTTP code and outputs the webserver software. A full and comprehensive manual is included.

tags | java, web, cgi
systems | unix
MD5 | dd65552d1d225d11a0cddb0db3755a27
libwhisker-1.6.tar.gz
Posted Dec 6, 2002
Authored by rain forest puppy | Site wiretrip.net

Libwhisker is a perl module for performing whisker CGI vulnerability checks. It adds a vast array of functionality and has robust functions that are geared toward network auditing. Function reference available here.

Changes: Major fixes - All users should upgrade.
tags | cgi, perl
systems | unix
MD5 | 06ac9f0f28d5269c893937e03d342c64
whisker-2.1.tar.gz
Posted Dec 6, 2002
Authored by rain forest puppy | Site wiretrip.net

Whisker is a high quality URL scanner which is used to search for known vulnerable CGIs on websites. Whisker does this by both scanning the the CGIs directly as well as crawling the website in order to determine what CGIs are already currently in use. Whisker is scriptable and is easily tailored to do lots of flexible web scanning. Very stealthy. Implemented anti-IDS techniques. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host, Proxy, and SSL support.

Changes: Tons of changes - so many it's not worth individually documenting. Added the newbie.help guided configuration walkthrough. Fixed bugs.
tags | web, cgi
systems | unix
MD5 | cb51d20dad52350c93845fdc6829d577
iss.c
Posted Sep 25, 2002
Authored by Rammstein

This tool can be used to scan IIS servers for the unicode directory traversal vulnerability.

tags | cgi
systems | unix
MD5 | 9992afec563d973be3af36bcfa97c9f1
cuinapache.c
Posted Sep 10, 2002
Authored by m4rc3l0

ChecaUserinApache - A utility that makes use of the 401 error page in Apache to verify whether or not a user exists on that system.

tags | cgi
systems | unix
MD5 | 241c60d5e695ce71f4548828fc12ccdd
IISscan2002.pl
Posted Sep 5, 2002
Authored by Thomas O'Connor | Site thomasoconnor.net

IISscan2002.pl scans for over 97 IIS strings and gets past certain IIS 4 an IIS 5 unicode charter set hot fixes as well as the ability to get cmd.exe access on open IIS servers vulnerable to the unicode flaw.

tags | cgi
systems | unix
MD5 | 8e660cf2c10b6fc3f34c06024fbd8443
arirang-1.6.tar.gz
Posted Sep 5, 2002
Authored by Pilot | Site monkey.org

Arirang is a powerful webserver security scanner with many features. Checks over 700 vulnerabilities including the apache chunking bug, IIS .ida buffer overflow, and more. Documentation available here.

tags | overflow, cgi, vulnerability
systems | unix
MD5 | 286cff103eef8a264fefb481230fd9cf
cgivti2.V2.pl
Posted Aug 30, 2002
Authored by Lawrence Lavigne | Site neoerudition.net

Cgivti2.V2.pl uses a webserver host list provided by the user to scan for cgi, vti, msadc and several other vulnerabilities. Like cgivti.V2.pl, this script is easily configured to include other vulnerabilities.

tags | cgi, vulnerability
systems | unix
MD5 | f743fb6b423ff1082ef30ebbdbd6c7ad
cgivti.V2.pl
Posted Aug 29, 2002
Authored by Lawrence Lavigne | Site neoerudition.net

This scanner searches for vulnerable web servers for Common Gateway Interface and Vermeer Technology Incorporated services. Version 2 allows for Class C IP generation done "On The Fly" and a timeout scheme added thanks to MaB of Efnets #programmers.

tags | web, cgi
systems | unix
MD5 | 23a078671cbcdad1c38669a40867f812
Nikto Web Scanner 1.20
Posted Aug 11, 2002
Authored by Sullo | Site cirt.net

Nikto 1.20 is a PERL, open source web server scanner which supports SSL. Nikto checks for (and if possible attempts to exploit) remote web server vulnerabilities and misconfigurations. It also looks for outdated software and modules, warns of any version specific problems, supports scans through proxies (with authentication), host Basic authentication and more. Data is kept in CSV format databases for easy maintenance, and supports the ability to automatically update local databases with current versions on the Nikto web site. New this version: password file guessing, Google file-hunting, SSL details and bug fixes.

tags | remote, web, local, cgi, perl, vulnerability
systems | unix
MD5 | e437a187ba945390d38dee5a70350623
Page 1 of 4
Back1234Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
NYPD Cops Need A Warrant To Snoop On Your Phone
Posted Nov 17, 2017

tags | headline, government, privacy, usa, phone
Oracle Scrambles To Fix Security Flaws In Tuxedo
Posted Nov 17, 2017

tags | headline, database, flaw, oracle
Github To Devs: Now You'll Get Security Alerts On Flaws In Popular Software Libraries
Posted Nov 17, 2017

tags | headline, flaw
Keystone Pipeline Leaked 210,000 Gallons Of Oil In South Dakota
Posted Nov 17, 2017

tags | headline, flaw
Cash Converters Reveals Data Breach
Posted Nov 16, 2017

tags | headline, hacker, cybercrime, data loss, fraud, identity theft
Kaspersky Defends Its Role In NSA Breach
Posted Nov 16, 2017

tags | headline, government, malware, usa, russia, data loss, spyware, nsa
McAfee Anti-Hacking Service Exposed Users To Banking Malware
Posted Nov 16, 2017

tags | headline, malware, bank, cybercrime, fraud, flaw, identity theft, mcafee
DJI Bug Bounty NDA Is 'Not Signable', Say Irate Infosec Researchers
Posted Nov 16, 2017

tags | headline, hacker, flaw
Government Just Figures Out You Can Hack Planes Remotely Due To Poor Design
Posted Nov 15, 2017

tags | headline, government, usa, flaw, terror
UK Security Chief Blames Russia For Hacks
Posted Nov 15, 2017

tags | headline, hacker, government, britain, russia, cyberwar
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close