Can't make manual scans automatic

[f00d4w0rm4]

Hello! I'm assuming this is user error, but I'm trying to make the nikto and dirsearch manual commands automatic. I just changed "description =" to "name =" and "http.manual" to "http.scan". I tried rebooting my computer after making these changes. I tested it against a box that only has port 80 open. I also made modifications to fuff to fuzz subdomains instead of directories but I got the same output as before. Here's the relevant part of my /usr/share/autorecon/config/service-scans-default.toml and my results:

[[http.scan]]
name = 'nikto'
commands = 'nikto -ask=no -h {scheme}://{address}:{port} 2>&1 | tee "{scandir}/{protocol}_{port}_{scheme}_nikto.txt"'

[[http.scan]]
name = 'dirsearch'
commands = 'dirsearch -u {scheme}://{address}:{port}/ -t 16 -r -e txt,html,php,asp,aspx,jsp -f -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt --plain-text-report="{scandir}/{protocol}_{port}_{scheme}_dirsearch_medium.txt"'

[[http.scan]]
name = 'ffuf'
command = 'ffuf -u {scheme}://{address}:{port}/ -H "Host:FUZZ.{address}" -t 10 -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-20000.txt -v | tee {scandir}/{protocol}_{port}_{scheme}_ffuf_subdomains.txt'

╭─f00d4w0rm5@Garuda in /usr/share/autorecon/results/10.11.1.10/scans🔒
╰─λ ls
drwxr-xr-x    - root 26 May 22:43  xml
.rw-r--r-- 1.9k root 26 May 22:43  _commands.log
.rw-r--r-- 2.6k root 26 May 22:45  _full_tcp_nmap.txt
.rw-r--r-- 4.7k root 26 May 22:43  _manual_commands.txt
.rw-r--r--  147 root 26 May 22:47  _patterns.log
.rw-r--r-- 1.0k root 26 May 22:43  _quick_tcp_nmap.txt
.rw-r--r-- 1.9k root 26 May 22:52  _top_20_udp_nmap.txt
.rw-r--r--  489 root 26 May 22:45  tcp_80_http_ffuf.txt
.rw-r--r-- 1.7k root 26 May 22:43  tcp_80_http_index.html
.rw-r--r-- 5.9k root 26 May 22:47  tcp_80_http_nmap.txt
.rw-r--r-- 1.8k root 26 May 22:43  tcp_80_http_robots.txt
.rw-r--r-- 1.6k root 26 May 22:43  tcp_80_http_whatweb.txt

[f00d4w0rm4]

lol I said commands instead of command...knew it was user error ^_^

[f00d4w0rm4]

nvm that didn't fix the issue...

[websecnl]

Same issue, cant run nikto using AutoRecon.

[nuhghets]

I just updated a couple days ago to the latest version.

I've scanned 3 boxes since then, nikto did not run on all three of them. The script also missed a webpage at an odd open port: 17445, however it caught two others at unusual ports, 30445, 50080.

[Tib3rius]

@nuhghets nikto was retired from AutoRecon quite a while ago, it does not run automatically anymore, but can be run manually. When you say "the script also missed a webpage at an odd open port", you mean "Nmap also missed a webpage at an odd open port". AutoRecon does not do any of its own port scanning / service / version detection, it uses Nmap. You should investigate why Nmap didn't find those ports, perhaps the network was busy, perhaps the service on that port gets knocked over easily, etc.

@f00d4w0rm4 and @websecnl try the latest beta version and see if that makes a difference: https://github.com/Tib3rius/AutoRecon/tree/beta