Add nikto 1.30, web and CGI vulnerability scanner with SSL support.

PR:		43313
Submitted by:	pandzilla

5 files changed, 87 insertions, 0 deletions

diff --git a/security/Makefile b/security/Makefile
index 87ec396aee21..24f1b7426feb 100644
--- a/security/Makefile
+++ b/security/Makefile
@@ -161,6 +161,7 @@
     SUBDIR += nessus-plugins-devel
     SUBDIR += nettle
     SUBDIR += newpg
+    SUBDIR += nikto
     SUBDIR += nmap
     SUBDIR += nmapfe
     SUBDIR += nofgpg
diff --git a/security/nikto/Makefile b/security/nikto/Makefile
new file mode 100644
index 000000000000..1baf7a0902a6
--- /dev/null
+++ b/security/nikto/Makefile
@@ -0,0 +1,39 @@
+# New ports collection makefile for: 	nikto
+# Date created: 			23 September 2002
+# Whom: 				pandzilla
+#
+# $FreeBSD$
+#
+
+PORTNAME=	nikto
+PORTVERSION= 	1.30
+CATEGORIES= 	security www
+
+MAINTAINER=	jan@atstake.com
+COMMENT=	Web and CGI vulnerability scanner with SSL support
+
+MASTER_SITES=	http://www.cirt.net/nikto/ \
+		http://packetstormsecurity.org/UNIX/cgi-scanners/
+DISTNAME=	${PORTNAME}-current
+
+WRKSRC=		${WRKDIR}/${PORTNAME}-${PORTVERSION}
+
+RUN_DEPENDS = 	${SITE_PERL}/${PERL_ARCH}/Net/SSLeay.pm:${PORTSDIR}/security/p5-Net-SSLeay \
+		${SITE_PERL}/libwhisker/LW.pm:${PORTSDIR}/security/libwhisker
+
+NO_BUILD= 	yes
+USE_REINPLACE=	yes
+
+do-install:
+	@${INSTALL_SCRIPT} ${WRKSRC}/nikto.pl ${PREFIX}/bin/nikto
+	@${MKDIR} ${PREFIX}/etc/nikto && ${CHMOD} 755 ${PREFIX}/etc/nikto
+	@${REINPLACE_CMD} -e "s|/usr/bin/nmap|${PREFIX}/bin/nmap|g" ${WRKSRC}/config.txt
+	@${REINPLACE_CMD} -e "s|/usr/local/nikto|${PREFIX}/share/nikto|g" ${WRKSRC}/config.txt
+	@${INSTALL_DATA} ${WRKSRC}/config.txt ${PREFIX}/etc/nikto/
+	@${MKDIR} ${PREFIX}/share/nikto/ && ${CHMOD} 755 ${PREFIX}/share/nikto/
+	@for i in `ls ${WRKSRC}/plugins/` ; \
+	do \
+	${INSTALL_SCRIPT} ${WRKSRC}/plugins/$$i ${PREFIX}/share/nikto; \
+	done
+
+.include <bsd.port.mk>
diff --git a/security/nikto/distinfo b/security/nikto/distinfo
new file mode 100644
index 000000000000..2b8da7a60594
--- /dev/null
+++ b/security/nikto/distinfo
@@ -0,0 +1 @@
+MD5 (nikto-current.tar.gz) = 54c8d0e292a4030c4d680fcf11b53623
diff --git a/security/nikto/pkg-descr b/security/nikto/pkg-descr
new file mode 100644
index 000000000000..c4c6370cbd84
--- /dev/null
+++ b/security/nikto/pkg-descr
@@ -0,0 +1,23 @@
+Nikto is a web server scanner which performs comprehensive tests against web 
+servers for multiple items, including over 2200 potentially dangerous 
+files/CGIs, versions on over 140 servers, and problems on over 210 servers.
+Scan items and plugins are frequently updated and can be automatically updated
+(if desired).
+
+Nikto is designed to examine web servers and look for items in multiple 
+categories:
+
+- misconfigurations
+- default files and scripts
+- insecure files and scripts
+- outdated software
+
+It uses Rain Forest Puppy's LibWhisker (wiretrip.net) for HTTP functiona lity,
+and can perform checks in HTTP or HTTPS.  It also supports basic port scanning
+ and will determine if a web server is running on any open ports.
+
+WWW: http://www.cirt.net/code/nikto.shtml
+
+- pandzilla
+
+jan@atstake.com
diff --git a/security/nikto/pkg-plist b/security/nikto/pkg-plist
new file mode 100644
index 000000000000..2865e705d683
--- /dev/null
+++ b/security/nikto/pkg-plist
@@ -0,0 +1,23 @@
+bin/nikto
+etc/nikto/config.txt
+share/nikto/nikto_mutate.plugin
+share/nikto/nikto_outdated.plugin
+share/nikto/nikto_apacheusers.plugin        
+share/nikto/nikto_passfiles.plugin
+share/nikto/nikto_httpoptions.plugin
+share/nikto/nikto_msgs.plugin
+share/nikto/server_msgs.db
+share/nikto/outdated.db
+share/nikto/scan_database.db
+share/nikto/nikto_core.plugin
+share/nikto/nikto_headers.plugin
+share/nikto/nikto_plugin_order.txt
+share/nikto/nikto_realms.plugin
+share/nikto/nikto_robots.plugin
+share/nikto/nikto_user_enum_apache.plugin
+share/nikto/nikto_user_enum_cgiwrap.plugin
+share/nikto/realms.db
+share/nikto/servers.db
+share/nikto/LW.pm
+@dirrm share/nikto
+@dirrm etc/nikto