April 2017
Intermediate to advanced
350 pages
8h 35m
English
Content preview from Applied Network Security
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Finding vulnerabilities from a targeted sites
There are tools out there will allow you to scan for possible vulnerabilities rather than having to put in countless hours into a hack that you may find it to be secure from. The first tool we'll use is called nikto; it will scan any website for vulnerabilities and reports back to you on what it finds. You'll find it very simple and efficient but not stealthy so any website/web server with an IDS/IPS is likely to detect it. You'll find this tool in Kali under Vulnerability Analysis | Misc Scanner | nikto. Once you launch it, you can input the IP or hostname to begin:
nikto -h 192.168.2.11 nikto -h TargetWebsite.com
For a Windows-based OS, you can download a similar GUI tool called Wikto. It ...