Website Venerability Scanning and Testing :: Tutorial1

Category: Ethical Hacking and Cyber Security & Approved by adwivedi008@gmail.com On February-11-2021 16:36:46

Disclaimer and Note
VERY IMPORTANT !!!




This course is Entirely for EDUCATIONAL PURPOSE only and TO MAKE PEOPLE AWARE about the various ATTACKS and PREVENT YOURSELF and YOUR FAMILY from such ATTACKS.

Under no circumstances will the course Instructor i.e. Aashish Dwivedi / TechGyan-Today Team or Interstellar Association will be held responsible or liable in any way for any claims, damages, losses, expenses, costs or liabilities whatsoever (including, without limitation, any direct or indirect damages for loss of profits, business interruption or loss of information) resulting or arising directly or indirectly from your use of or inability to use this website or any websites linked to it, or from your reliance on the information and material on this website, even if the Instructor has been advised of the possibility of such damages in advance.




You need to follow some steps , Lets begin...

    NOTE : Don’t expect that you can find venerability of any specific site whenever you want!This is just the demonstration of how it works!For 100% work you need deeper understanding of it! This is just information gathering for choosing correct attack type and don't expect results all the time.

  • So the first thing you need is Kali Linux or Parrot Sec OS or any other Linux OS

  • You can download parrot OS from here, and kali Linux from here,

  • Now lets start the guide:-

  • So the first thing you need is a net connection and brain and yeah don't forget Linux any distro or flavour

  • So we are going to use 3 specific tools named :-
    1.)nmap :- is used for finding open port and port scanning and it is a very powerful tool.
    2.dig command :-used to find ip address of any website to form attack basics information for selection of attack
    3.)nikto :-is used for website venerability and testing purposes.

  • Ok so, time for fun now :-)[:~)].

  • Open Terminal

  • apt update && apt ugrade -y
  • apt-get install git {installing git to clone repo}
  • apt-get install python {installing python }
  • apt-get install python3 {installing python3}
  • cd Desktop {changing directory to desktop}
  • dig {Used to get ip address of taarget website }
  • nmap -v -A {It will look for open ports to which we can approch for 4 way incomplete handshake for the DDOs attack purposes.}
  • nikto -h {Scanning a host}
  • nikto -h -port ,{Scanning specific ports}

  • {Nikto can detect over 6700 potentially dangerous files/CGIs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files and HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated}

    If you want full series over nikto then do comment and make us aware about your decisions.
    Waiting for your comments :-) :-)


    Share and Support

    Some special courses are also waiting for u all in our telegram channel. We can't share that all due to WhatsApp policy. Do join us over telegram and get all premium courses and content their
    t.me/interstellarassociation
    Or
    here
    https://t.me/joinchat/Gucm7U8x7e1kAV172Nwm8g


Comments

Share your thoughts about this post
web counter