The summary analyzes the results of a Nikto scan on the target sharksacademy.co.za:
- The scan found several potential security issues including missing security headers like X-Frame-Options and HSTS, uncommon response headers, and use of content encoding that could enable attacks.
- It also found that the server returned responses to invalid HTTP methods, which could cause false positives, and reached the error limit after 1369 seconds without fully scanning the target.
The summary analyzes the results of a Nikto scan on the target sharksacademy.co.za:
- The scan found several potential security issues including missing security headers like X-Frame-Options and HSTS, uncommon response headers, and use of content encoding that could enable attacks.
- It also found that the server returned responses to invalid HTTP methods, which could cause false positives, and reached the error limit after 1369 seconds without fully scanning the target.
The summary analyzes the results of a Nikto scan on the target sharksacademy.co.za:
- The scan found several potential security issues including missing security headers like X-Frame-Options and HSTS, uncommon response headers, and use of content encoding that could enable attacks.
- It also found that the server returned responses to invalid HTTP methods, which could cause false positives, and reached the error limit after 1369 seconds without fully scanning the target.
The summary analyzes the results of a Nikto scan on the target sharksacademy.co.za:
- The scan found several potential security issues including missing security headers like X-Frame-Options and HSTS, uncommon response headers, and use of content encoding that could enable attacks.
- It also found that the server returned responses to invalid HTTP methods, which could cause false positives, and reached the error limit after 1369 seconds without fully scanning the target.
Download as TXT, PDF, TXT or read online from Scribd
Download as txt, pdf, or txt
You are on page 1/ 1
- Nikto v2.5.
0 --------------------------------------------------------------------------- + Target IP: 196.22.142.100 + Target Hostname: sharksacademy.co.za + Target Port: 443 --------------------------------------------------------------------------- + SSL Info: Subject: /CN=sharksacademy.co.za Altnames: sharksacademy.co.za, www.sharksacademy.co.za Ciphers: TLS_AES_256_GCM_SHA384 Issuer: /C=US/O=Let's Encrypt/CN=R3 + Start Time: 2022-09-19 19:04:51 (GMT0) --------------------------------------------------------------------------- + Server: Apache + /: The anti-clickjacking X-Frame-Options header is not present. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options + /: Drupal Link header found with value: <https://sharksacademy.co.za/wp-json/>; rel="https://api.w.org/", <https://sharksacademy.co.za/wp-json/wp/v2/pages/1671>; rel="alternate"; type="application/json", <https://sharksacademy.co.za/>; rel=shortlink. See: https://www.drupal.org/ + /: The site uses TLS and the Strict-Transport-Security HTTP header is not defined. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict- Transport-Security + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing- content-type-header/ + /tyMaqIrn.: Uncommon header 'x-redirect-by' found, with contents: WordPress. + /robots.txt: contains 2 entries which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt + /: The Content-Encoding header is set to "deflate" which may mean that the server is vulnerable to the BREACH attack. See: http://breachattack.com/ + /: Web Server returns a valid response with junk HTTP methods which may cause false positives. + ERROR: Error limit (20) reached for host, giving up. Last error: opening stream: can't connect (timeout): Interrupted system call + Scan terminated: 20 error(s) and 8 item(s) reported on remote host + End Time: 2022-09-19 19:27:40 (GMT0) (1369 seconds) --------------------------------------------------------------------------- + 1 host(s) tested
