Projects
These projects are related to Nikto, or incorporate/use the Nikto databases in some fashion.
- SCRT Webshag - "Webshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing." Webshag incorporates the Nikto scan database.
- LibWhisker - RFP's most excellent PERL HTTP+ library (and Nikto's HTTP internals).
The Nessus scanner supports a plugin architecture that allows anyone to develop security checks in the NASL (Nessus Attack Scripting Language) language. We have contributed the plugins below to the Nessus effort.
If you have not yet used Nessus, it is worth the time to check it out, as it beats the commercial scanners hands-down.
Please Note
SETI-Web is no longer being actively maintained. I will try to answer questions or offer assistance if I can, but my time and interest in the project are limited and I will not be making any further enhancements (though I may fix a bug here & there). If someone is interested in taking over the project, please contact me.
What is SETI-Web?
The SETI-Web package is a set of command-line and CGI scripts which grab, store, analyze and present data for a group running machines in the SETI@home effort.
Current Projects
Nikto - An Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including vulnerabilities and misconfigurations.
lw_build_req - A PERL script to build valid LibWhisker PERL code from raw HTTP headers.
Nessus Plugins - Plugins for the Nessus security scanner.
Closed Projects
SETI-Web - SETI@Home Web Statistics.
Download
Version 1.00: lw_build_req
Description
lw_build_req creates a simple LibWhisker script from raw HTTP headers. This is useful for writing quick, on-the-fly tests that need some degree of customization.
Options
Assumptions
