Changeset 621

Timestamp:

02/11/2011 04:20:19 PM (2 years ago)

Author:

sullo

Message:

Fix nmap file identification, match /ssl/ as well as /http/ for web server ports.

Location:

trunk

Files:

• docs/CHANGES.txt (modified) (1 diff)
• plugins/nikto_core.plugin (modified) (3 diffs)

trunk/docs/CHANGES.txt

@@ -23 +23 @@
         - Ticket 155: -findonly is deprecated in favor of -Plugins "@@NONE" (-f will replicate this functionality)
         - Ticket 82: Auth is now checked per realm, not per resource
-        - Fix parsing of nmap greppable output so that any port descr matching http is checked. Thanks Moses Hernandez for reporting.
+        - Fix parsing of nmap greppable output so that any port descr matching http is checked. Thanks Moses Hernandez & @mubix for
+                reporting & testing.
         - Fix a potential div by zero error
         - Various cleanups in nikto_report_xml.plugin and nikto_report_html.plugin

trunk/plugins/nikto_core.plugin

@@ -1011 +1011 @@
 sub parse_hostfile {
     my ($file) = @_;
-    my (@results, $hostdesc, $nmap);
-    $nmap = 0;
+    my (@results, $hostdesc);
+    my $nmap = 0;
 
     open(IN, $file) || die print STDERR "+ ERROR: Cannot open '$file':$@\n";
@@ -1020 +1020 @@
         # Check whether this is a greppable nmap file
         chomp;
-        if (/^# Nmap [0-9.]* scan initiated/) {
-            $nmap = 1;
-        }
+        $nmap = 1 if (/^# Nmap/);
         s/\#.*$//;
         if ($_ eq "") { next; }
@@ -1028 +1026 @@
         # Parse for nmap files
         if ($nmap) {
-            if (($_ !~ /Host/) || ($_ !~ /Ports/) || ($_ !~ /open/) || ($_ !~ /http/i)) { next; }
+            if (($_ !~ /Host/) || ($_ !~ /Ports/) || ($_ !~ /open/) || ($_ !~ /(?:http|ssl)/i)) { next; }
 
             # Get the host name