Nikto Forensics Analysis

- Nikto v2.1.6 --------------------------------------------------------------------------- + Target IP: 10.10.10.20 + Target Hostname: legacy-corp.local + Target Port: 80 + Start Time: 2026-05-06 10:00:00 (GMT) --------------------------------------------------------------------------- + Server: Apache/2.2.14 (Ubuntu) + The anti-clickjacking X-Frame-Options header is not present. + The X-XSS-Protection header is not defined. + Allowed HTTP Methods: GET, HEAD, POST, PUT, DELETE, OPTIONS + OSVDB-397: HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server. + OSVDB-3268: /config.bak: Backup file found. This may contain sensitive information. + OSVDB-3092: /cgi-bin/test.cgi: This might be interesting... + OSVDB-112004: /cgi-bin/status: Site appears vulnerable to the 'Shellshock' vulnerability (CVE-2014-6271). + 8919 requests: 0 error(s) and 7 item(s) reported on remote host + End Time: 2026-05-06 10:05:23 (GMT) (323 seconds) --------------------------------------------------------------------------- + 1 host(s) tested