Closed f00d4w0rm4 closed 3 years ago
lol I said commands instead of command...knew it was user error ^_^
nvm that didn't fix the issue...
Same issue, cant run nikto using AutoRecon.
I just updated a couple days ago to the latest version.
I've scanned 3 boxes since then, nikto did not run on all three of them. The script also missed a webpage at an odd open port: 17445, however it caught two others at unusual ports, 30445, 50080.
@nuhghets nikto was retired from AutoRecon quite a while ago, it does not run automatically anymore, but can be run manually. When you say "the script also missed a webpage at an odd open port", you mean "Nmap also missed a webpage at an odd open port". AutoRecon does not do any of its own port scanning / service / version detection, it uses Nmap. You should investigate why Nmap didn't find those ports, perhaps the network was busy, perhaps the service on that port gets knocked over easily, etc.
@f00d4w0rm4 and @websecnl try the latest beta version and see if that makes a difference: https://github.com/Tib3rius/AutoRecon/tree/beta
Hello! I'm assuming this is user error, but I'm trying to make the nikto and dirsearch manual commands automatic. I just changed "description =" to "name =" and "http.manual" to "http.scan". I tried rebooting my computer after making these changes. I tested it against a box that only has port 80 open. I also made modifications to fuff to fuzz subdomains instead of directories but I got the same output as before. Here's the relevant part of my /usr/share/autorecon/config/service-scans-default.toml and my results: