From 785410248f0913414cc75fa42e31571a334bb456 Mon Sep 17 00:00:00 2001 From: xtraeme Date: Fri, 5 Dec 2003 17:45:23 +0000 Subject: Initial import of nikto-1.32 from pkgsrc-wip, packaged by Adrian Portelli. Nikto is a web server scanner which performs comprehensive tests against web servers for multiple items, including over 2200 potentially dangerous files/CGIs, versions on over 140 servers, and problems on over 210 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired). --- security/nikto/DESCR | 5 +++++ security/nikto/MESSAGE | 14 ++++++++++++++ security/nikto/Makefile | 38 ++++++++++++++++++++++++++++++++++++++ security/nikto/PLIST | 32 ++++++++++++++++++++++++++++++++ security/nikto/distinfo | 6 ++++++ security/nikto/patches/patch-aa | 13 +++++++++++++ security/nikto/patches/patch-ab | 20 ++++++++++++++++++++ 7 files changed, 128 insertions(+) create mode 100644 security/nikto/DESCR create mode 100644 security/nikto/MESSAGE create mode 100644 security/nikto/Makefile create mode 100644 security/nikto/PLIST create mode 100644 security/nikto/distinfo create mode 100644 security/nikto/patches/patch-aa create mode 100644 security/nikto/patches/patch-ab (limited to 'security') diff --git a/security/nikto/DESCR b/security/nikto/DESCR new file mode 100644 index 00000000000..d4d214bc703 --- /dev/null +++ b/security/nikto/DESCR @@ -0,0 +1,5 @@ +Nikto is a web server scanner which performs comprehensive tests against web +servers for multiple items, including over 2200 potentially dangerous +files/CGIs, versions on over 140 servers, and problems on over 210 servers. +Scan items and plugins are frequently updated and can be automatically +updated (if desired). diff --git a/security/nikto/MESSAGE b/security/nikto/MESSAGE new file mode 100644 index 00000000000..afccc665f60 --- /dev/null +++ b/security/nikto/MESSAGE @@ -0,0 +1,14 @@ +=========================================================================== +$NetBSD: MESSAGE,v 1.1.1.1 2003/12/05 17:45:23 xtraeme Exp $ + +You will need to create your own config.txt file before running nikto. +A sample file can be found in "${PREFIX}/share/examples/nikto". + +Once you have customised this file for your environment it must be in +your current working directory when nikto is run. + +You may want to run "nikto -update" as root once you have customised +your config.txt file. This will ensure you have the latest updates +for the nikto scanner. + +=========================================================================== diff --git a/security/nikto/Makefile b/security/nikto/Makefile new file mode 100644 index 00000000000..ecd52aa7104 --- /dev/null +++ b/security/nikto/Makefile @@ -0,0 +1,38 @@ +# $NetBSD: Makefile,v 1.1.1.1 2003/12/05 17:45:23 xtraeme Exp $ + +DISTNAME= nikto-1.32 +CATEGORIES= security www +MASTER_SITES= http://www.cirt.net/nikto/ + +MAINTAINER= adrianp@stindustries.net +HOMEPAGE= http://www.cirt.net/code/nikto.shtml +COMMENT= URL scanner used to search for known vulnerable CGIs on websites + +DEPENDS+= p5-Net-SSLeay>=1.20:../../security/p5-Net-SSLeay +DEPENDS+= nmap>=2.00:../../net/nmap + +USE_PERL5= YES +REPLACE_PERL= nikto.pl + +do-build: + @${SED} -e 's|@PREFIX@|${PREFIX}|g' < ${WRKSRC}/config.txt > \ + ${WRKSRC}/config.txt.sample + +do-install: + ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/nikto + ${INSTALL_DATA_DIR} ${PREFIX}/share/nikto + ${INSTALL_DATA_DIR} ${PREFIX}/share/nikto/docs + ${INSTALL_DATA_DIR} ${PREFIX}/share/nikto/plugins + ${INSTALL_DATA_DIR} ${PREFIX}/share/examples/nikto + ${INSTALL_DATA} ${WRKSRC}/docs/*.txt ${PREFIX}/share/doc/nikto + ${INSTALL_DATA} ${WRKSRC}/docs/CHANGES.txt ${PREFIX}/share/nikto/docs + ${INSTALL_DATA} ${WRKSRC}/docs/*.html ${PREFIX}/share/doc/nikto + ${INSTALL_DATA} ${WRKSRC}/config.txt.sample \ + ${PREFIX}/share/examples/nikto + ${INSTALL_SCRIPT} ${WRKSRC}/nikto.pl ${PREFIX}/bin/nikto + ${INSTALL_DATA} ${WRKSRC}/plugins/*.plugin ${PREFIX}/share/nikto/plugins + ${INSTALL_DATA} ${WRKSRC}/plugins/LW.pm ${PREFIX}/share/nikto/plugins + ${INSTALL_DATA} ${WRKSRC}/plugins/*.db ${PREFIX}/share/nikto/plugins + ${INSTALL_DATA} ${WRKSRC}/plugins/*.txt ${PREFIX}/share/nikto/plugins + +.include "../../mk/bsd.pkg.mk" diff --git a/security/nikto/PLIST b/security/nikto/PLIST new file mode 100644 index 00000000000..fa72af14e1d --- /dev/null +++ b/security/nikto/PLIST @@ -0,0 +1,32 @@ +@comment $NetBSD: PLIST,v 1.1.1.1 2003/12/05 17:45:24 xtraeme Exp $ +bin/nikto +share/doc/nikto/CHANGES.txt +share/nikto/docs/CHANGES.txt +share/doc/nikto/LICENSE.txt +share/doc/nikto/README_plugins.txt +share/doc/nikto/nikto_usage.html +share/doc/nikto/nikto_usage.txt +share/examples/nikto/config.txt.sample +share/nikto/plugins/LW.pm +share/nikto/plugins/nikto_apacheusers.plugin +share/nikto/plugins/nikto_core.plugin +share/nikto/plugins/nikto_headers.plugin +share/nikto/plugins/nikto_httpoptions.plugin +share/nikto/plugins/nikto_msgs.plugin +share/nikto/plugins/nikto_mutate.plugin +share/nikto/plugins/nikto_outdated.plugin +share/nikto/plugins/nikto_passfiles.plugin +share/nikto/plugins/nikto_plugin_order.txt +share/nikto/plugins/nikto_realms.plugin +share/nikto/plugins/nikto_robots.plugin +share/nikto/plugins/nikto_user_enum_apache.plugin +share/nikto/plugins/nikto_user_enum_cgiwrap.plugin +share/nikto/plugins/outdated.db +share/nikto/plugins/realms.db +share/nikto/plugins/scan_database.db +share/nikto/plugins/server_msgs.db +share/nikto/plugins/servers.db +@dirrm share/nikto/docs +@dirrm share/nikto/plugins +@dirrm share/nikto +@dirrm share/doc/nikto diff --git a/security/nikto/distinfo b/security/nikto/distinfo new file mode 100644 index 00000000000..ad7342f52b5 --- /dev/null +++ b/security/nikto/distinfo @@ -0,0 +1,6 @@ +$NetBSD: distinfo,v 1.1.1.1 2003/12/05 17:45:24 xtraeme Exp $ + +SHA1 (nikto-1.32.tar.gz) = 3d1909ccbd60e14f8a319d33c33830bdd8a6da61 +Size (nikto-1.32.tar.gz) = 345290 bytes +SHA1 (patch-aa) = 2fe6b18a1e66b1ecc865aa50feb5fc166bc0e853 +SHA1 (patch-ab) = 1d5ad9f778dc9af6f37549a9882e7adc6e55a09c diff --git a/security/nikto/patches/patch-aa b/security/nikto/patches/patch-aa new file mode 100644 index 00000000000..0196bc21341 --- /dev/null +++ b/security/nikto/patches/patch-aa @@ -0,0 +1,13 @@ +$NetBSD: patch-aa,v 1.1.1.1 2003/12/05 17:45:24 xtraeme Exp $ + +--- plugins/nikto_core.plugin.orig Mon Sep 15 00:09:43 2003 ++++ plugins/nikto_core.plugin Mon Sep 15 00:10:51 2003 +@@ -859,7 +859,7 @@ + print "+ Retrieving 'CHANGES.txt'\n"; + (my $RES, $CONTENT) = fetch("$serverdir/CHANGES.txt","GET"); + if (($CONTENT ne "") && ($RES eq 200)) { +- open(OUT,">$NIKTO{plugindir}/../docs/CHANGES.txt") || die print "+ ERROR: Unable to open '$NIKTO{plugindir}/../CHANGES.txt' for write: $@\n"; ++ open(OUT,">$NIKTO{plugindir}/../docs/CHANGES.txt") || die print "+ ERROR: Unable to open '$NIKTO{plugindir}/../docs/CHANGES.txt' for write: $@\n"; + print OUT $CONTENT; + close(OUT); + } diff --git a/security/nikto/patches/patch-ab b/security/nikto/patches/patch-ab new file mode 100644 index 00000000000..f6aadb272e5 --- /dev/null +++ b/security/nikto/patches/patch-ab @@ -0,0 +1,20 @@ +$NetBSD: patch-ab,v 1.1.1.1 2003/12/05 17:45:24 xtraeme Exp $ + +--- config.txt.orig Sat Oct 4 01:49:02 2003 ++++ config.txt Sat Oct 4 01:49:49 2003 +@@ -5,13 +5,13 @@ + # CLIOPTS=-g -a + + # location of nmap to use with port scanning (rather than Nikto internals) +-#NMAP=/usr/bin/nmap ++NMAP=@PREFIX@/bin/nmap + + # ports never to scan + SKIPPORTS=21 111 + + # if Nikto is having difficulty finding 'plugins', set the full path here +-# PLUGINDIR=/usr/local/nikto/plugins ++PLUGINDIR=@PREFIX@/share/nikto/plugins + + # the default HTTP version to try... can/will be changed as necessary + DEFAULTHTTPVER=1.1 -- cgit v1.2.3