You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Running a Nikto scan against multiple ports and servers, I've found a few issues.
The UI only shows the results for one server, despite the IVIL containing all the servers. (same vulnerabilities for each server).
Similarly for ports, only the vulnerabilities for one port shows up.
If using hostnames (server1.com), these are inserted into the "IP" column.
IVIL (filtered for just 1 vulnerability)
<?xml version="1.0" standalone='yes'?>
<IVILversion="0.2">
<addressee>
<program>Seccubus</program>
<programSpecificData>
<workspace>Preprod</workspace>
<scan>NiktoAll</scan>
</programSpecificData>
</addressee>
<sender>
<scanner_type>Nikto</scanner_type>
<version>2.1.6</version>
<timestamp>20180911163103</timestamp>
</sender>
<findings>
<finding>
<ip>server1.com</ip>
<hostname></hostname>
<port>8080/tcp</port>
<id>999957</id>
<severity>2</severity>
<finding_txt>GET The anti-clickjacking X-Frame-Options header is not present.</finding_txt>
</finding>
<finding>
<ip>server1.com</ip>
<hostname></hostname>
<port>8043/tcp</port>
<id>999957</id>
<severity>2</severity>
<finding_txt>GET The anti-clickjacking X-Frame-Options header is not present.</finding_txt>
</finding>
<finding>
<ip>server2.com</ip>
<hostname></hostname>
<port>8080/tcp</port>
<id>999957</id>
<severity>2</severity>
<finding_txt>GET The anti-clickjacking X-Frame-Options header is not present.</finding_txt>
</finding>
<finding>
<ip>server2.com</ip>
<hostname></hostname>
<port>8043/tcp</port>
<id>999957</id>
<severity>2</severity>
<finding_txt>GET The anti-clickjacking X-Frame-Options header is not present.</finding_txt>
</finding>
</findings>
</IVIL>
NBE (filtered for just 1 vulnerability):
timestamps|network|host|port|nikto_id|prio|Nikto v2.1.6/2.1.5
results||server1.com|8080|999957|Security Warning|GET The anti-clickjacking X-Frame-Options header is not present.
results||server1.com|8043|999957|Security Warning|GET The anti-clickjacking X-Frame-Options header is not present.
results||server2.com|8080|999957|Security Warning|GET The anti-clickjacking X-Frame-Options header is not present.
results||server2.com|8043|999957|Security Warning|GET The anti-clickjacking X-Frame-Options header is not present.
UI (filtered for just 1 vulnerability):
The text was updated successfully, but these errors were encountered:
It might seem like it is on purpose, I'm honestly having a hard time reading Perl code, but it seems like we might be aggregating vulnerabilities into a single finding. If this is the case, would it be possible to indicate that in the UI somehow? E.g. list multiple hostnames/ips per finding?
Running a Nikto scan against multiple ports and servers, I've found a few issues.
IVIL (filtered for just 1 vulnerability)
NBE (filtered for just 1 vulnerability):
UI (filtered for just 1 vulnerability):
The text was updated successfully, but these errors were encountered: