Nikto –h buyrug’ini termenalga kiritish orqali amalga oshirishimiz mumkin va bu saytni zaifliklarini anqlaydi. Bu ancha ko’p vaqt olishi mumkin:
BU juda kop vaqt olganligi uchun CTRL+C orqali jarayonni kutmay to’xtatdim va bir qancha sayt zaifliklari haqida ma’lumot to’pladi va bular quyidagilar:
Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP: 161.35.87.190
+ Target Hostname: daryo.uz
+ Target Port: 80
+ Start Time: 2023-12-10 19:33:43 (GMT5)
---------------------------------------------------------------------------
+ Server: nginx/1.18.0 (Ubuntu)
+ /: The anti-clickjacking X-Frame-Options header is not present. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ Root page / redirects to: https://daryo.uz/
Biz bundan tashqari nikto barcha razvetka ma’lumotlarini qayd qilib borishi mumkin va bu quyidagicha amalga oshiriladi:
nikto -h daryo.uz -o ~/Documents/Sherzod.txt Bunda biz biror txt faylni (~/Documents/Sherzod.txt) manzilini ko’rsatishi kerak: