I downloaded N-stealth, and ran it against one of my apache servers...I then parsed out my logs to see what it was looking for...
It does a bunch of extra unicode checks and it checks for a *crapload* of default directories...
Maybe someone can help me...is there anything wrong with me going through my log files, finding deltas (between Nessus and N-stealth), and adding these to Nessus????
I'm not sure if that would qualify as reverse-engineering, which might just be illegal (depending on your purposes and your side of the ocean :-)
Regards
Javi
