Scan report for "pentest-tools.com"

Membership level: Free member
Nikto scan (max 60 sec) (nikto -host pentest-tools.com -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP:          76.76.21.21
+ Target Hostname:    pentest-tools.com
+ Target Port:        80
+ Start Time:         2024-05-24 03:29:19 (GMT-4)
---------------------------------------------------------------------------
+ Server: Vercel
+ /: Uncommon header 'refresh' found, with contents: 0;url=https://pentest-tools.com/.
+ Root page / redirects to: https://pentest-tools.com/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /database.alz: IP address found in the 'x-vercel-id' header. The IP is "ad1::df". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ /database.alz: Uncommon header 'x-vercel-id' found, with contents: iad1::dfc94-1716535765285-690755ff91c2.
+ /file/../../+ /file/../../../../../../../../etc/: Uncommon header 'x-vercel-error' found, with contents:+ /level/16: C+ /level/16: Cookie firstpage created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /level/16: Uncommon header 'x-vercel-cache' found, with contents: MISS.
+ /level/16: Uncommon header 'x-vercel-execution-region' found, with contents: lhr1.
+ /level/16: Uncommon header 'origin-agent-cluster' found, with + /?=PHPB8B5F2+ /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000: Cookie ptt.banner.index.content created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000: Cookie ptt.banner.index.visible created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-+ /jsp/jspsamp+ /jsp/jspsamp/jspexamples/viewsource.jsp?source=/../../../../../../../../../boot.ini: Cookie source created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web+ Scan termina+ Scan terminated: 4 error(s) and 12 item(s) reported on remote host
+ End Time:           2024-05-24 03:30:20 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Color Scheme
Target
pentest-tools.com
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host pentest-tools.com -maxtime 60
Scan time
61s
Quick report
Order full scan ($79/one time)
Scan date
24 May 2024 03:30
Copy scan report
Download report
Remove scan result
$
Some firewalls blocks Nikto. For get true positive results add nikto.online IP addresses (172.96.166.66-172.96.166.70 or CIDR 172.96.166.64/29) to the whitelist
[scan_method]
Visibility:
Scan method: