- Nikto v2.1.6----------------------------------------------------------------

1. - Nikto v2.1.6
2. ---------------------------------------------------------------------------
3. + Target IP: 216.70.123.103
4. + Target Hostname: officialproudboys.com
5. + Target Port: 80
6. + Start Time: 2017-08-16 23:02:31 (GMT-4)
7. ---------------------------------------------------------------------------
8. + Server: Apache/2.2.22
9. + Retrieved x-powered-by header: PHP/5.6.21
10. + The anti-clickjacking X-Frame-Options header is not present.
11. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
12. + Uncommon header 'link' found, with contents: <http://officialproudboys.com/wp-json/>; rel="https://api.w.org/"
13. + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
14. + Server leaks inodes via ETags, header found with file /robots.txt, inode: 60859578, size: 67, mtime: Sun May 14 14:00:23 2017
15. + Entry '/wp-admin/' in robots.txt returned a non-forbidden or redirect HTTP code (302)
16. + Entry '/wp-admin/admin-ajax.php' in robots.txt returned a non-forbidden or redirect HTTP code (200)
17. + "robots.txt" contains 2 entries which should be manually viewed.
18. + Apache/2.2.22 appears to be outdated (current is at least Apache/2.4.12). Apache 2.0.65 (final release) and 2.2.29 are also current.
19. + Web Server returns a valid response with junk HTTP methods, this may cause false positives.
20. + OSVDB-3092: /forums/: This might be interesting...
21. + OSVDB-3092: /shop/: This might be interesting...
22. + OSVDB-3092: /license.txt: License file found may identify site software.
23. + 2319 requests: 0 error(s) and 14 item(s) reported on remote host
24. + End Time: 2017-08-16 23:32:33 (GMT-4) (1802 seconds)