- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP:          149.56.244.87
+ Target Hostname:    149.56.244.87
+ Target Port:        80
+ Start Time:         2024-05-26 08:28:33 (GMT-4)
---------------------------------------------------------------------------
+ Server: Apache/2.4.38 (Debian)
+ /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /nanites.php: Retrieved x-powered-by header: PHP/7.3.31-1~deb10u6.
+ /robots.txt: Entry '/nanites.php' is returned a non-forbidden or redirect HTTP code (200). See: https://portswigger.net/kb/issues/00600600_robots-txt-file
+ /robots.txt: contains 2 entries which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt
+ /: Server may leak inodes via ETags, header found with file /, inode: 390b, size: 596aedca79780, mtime: gzip. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1418
+ Apache/2.4.38 appears to be outdated (current is at least 2.4.58). Apache 2.2.34 is the EOL for the 2.x branch.
+ OPTIONS: Allowed HTTP Methods: HEAD, GET, POST, OPTIONS .
+ /admin/: Directory indexing found.
+ /admin/: This might be interesting.
+ /icons/README: Apache default file found. See: https://www.vntweb.co.uk/apache-restricting-access-to-iconsreadme/
+ Scan terminated: 0 error(s) and 10 item(s) reported on remote host
+ End Time:           2024-05-26 08:29:34 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested