25: APPLIED LAB: Performing Web Vulnerability Scanning
CySA+ (Exam CS0-003)
14/14
Congratulations, you passed!
Duration: 1 hour, 10 minutes
Use a script to confirm the existence of /root/nikto-scan.txt Score: 1
Select the Score button to validate this task.
Path found ... checking contents
Contents matched ..
Task complete
What are the web server type and the version number discovered by Nikto? (Select Score: 1
two)
IIS
nginx
Apache
10.0.17763
2.4.41
1.23.1
Congratulations, you have answered the question correctly.
Which of the following issues were discovered on the targeted website by Nikto? Score: 1
(Select all that apply)
uncommon header: x-content-security-policy
anti-clickjacking X-Frame-Options header not present
PHPSESSID creation without httponly flag
robots.txt file contains entries that need to be reviewed
Root page redirects to login.php
OSVDB-3268 - Directory indexing found
RFC-1918 IP addresses found in the 'location' header
Configuration information may be available remotely
OSVDB-630 - Web server may reveal its real IP address in headers
Congratulations, you have answered the question correctly.
Score: 1
CySA+ (Exam CS0-003)
14/14
Congratulations, you passed!
Duration: 1 hour, 10 minutes
Use a script to confirm the existence of /root/nikto-scan.txt Score: 1
Select the Score button to validate this task.
Path found ... checking contents
Contents matched ..
Task complete
What are the web server type and the version number discovered by Nikto? (Select Score: 1
two)
IIS
nginx
Apache
10.0.17763
2.4.41
1.23.1
Congratulations, you have answered the question correctly.
Which of the following issues were discovered on the targeted website by Nikto? Score: 1
(Select all that apply)
uncommon header: x-content-security-policy
anti-clickjacking X-Frame-Options header not present
PHPSESSID creation without httponly flag
robots.txt file contains entries that need to be reviewed
Root page redirects to login.php
OSVDB-3268 - Directory indexing found
RFC-1918 IP addresses found in the 'location' header
Configuration information may be available remotely
OSVDB-630 - Web server may reveal its real IP address in headers
Congratulations, you have answered the question correctly.
Score: 1