Open digininja opened 3 years ago
Just a couple of things
IIRC the is the site up thingy tests ssl first unless it's specified explicitly using one of the above two mechanisms.
I tried with http and that didn't help, I'll try the nossl later.
The fact it is going over port 80 means it is getting the https response from Burp and not from the end site.
On Thu, 19 Aug 2021, 15:49 D L, @.***> wrote:
Just a couple of things
- try specifying http://target.com
- try specifying -nossl
IIRC the is the site up thingy tests ssl first unless it's specified explicitly using one of the above two mechanisms.
— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/sullo/nikto/issues/738#issuecomment-901979429, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAA4SWMFYOPN6EUXDXTQXP3T5UKWBANCNFSM5CNV3NPA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email .
-nossl
fixes it.
Defaulting to https is OK, but if it does, it should also default to port 443, not https on port 80.
@tautology0
IIRC the is the site up thingy tests ssl first unless it's specified explicitly using one of the above two mechanisms.
That was true until the last commit; now it checks HTTP first which, I think, shouldn't have any negative repercussions and as a byproduct fixes this issue due to how the fallback logic works.
However, right now it's sending the full URL in the "file" portion of the request when it shouldn't (when using a proxy with an HTTPS site).
I've just checked and I would agree with all that. HTTP works fine, HTTPS is making requests in the style:
GET https://digi.ninja:443/KESDM0w5.Htm HTTP/1.1
Yep--that's the unfixed bug I have to track down.
On Mon, Jan 17, 2022 at 4:14 AM Robin Wood @.***> wrote:
I've just checked and I would agree with all that. HTTP works fine, HTTPS is making requests in the style:
GET https://digi.ninja:443/KESDM0w5.Htm HTTP/1.1
— Reply to this email directly, view it on GitHub https://github.com/sullo/nikto/issues/738#issuecomment-1014297069, or unsubscribe https://github.com/notifications/unsubscribe-auth/AALICRASEG7JL6KCFP6IOGTUWPMW3ANCNFSM5CNV3NPA . You are receiving this because you commented.Message ID: @.***>
--
Expected behavior
Requests be made over http when specified
Actual behavior
Requests are made over https to port 80
Steps to reproduce
With this command line the requests are being made through Burp to the target
https://cewl.test:80
rather thanhttp://...
Even if I specify the host as
http://cewl.test
it still goes tohttps
.Running direct, no proxy, it does as it is supposed to and hits
http
The only change I've made to the config file is to add this line:
Without it, Nikto can't talk to Burp
Nikto version
Pull from 2.5 branch
Further technical info
In case this helps: