I need to pentest an IPv6-only web server situated in a remote network from my IPv4 host (Kali Linux VM). I have a 6-to-4 tunnel up between the two hosts (configured using Hurricane Electric). I'm trying to do a vulnerability scan using Nikto, but as far as I know, it's not compatible with IPv6 and I'd need to use socat to bind the local IPv4 port to the remote IPv6 service:
$ socat TCP-LISTEN:8080,reuseaddr,fork TCP6:[IPv6-remote-address]:80
After running the command above, I launched Nikto and tried to scan the IPv6 host again:
$ nikto -h web-server.com
and also
$ nikto -h IPv6-remote-address
but I got the ERROR: Website not found and ERROR: Invalid IP address '2001' (The IPv6 remote host address starts with 2001).
Any suggestions on how to fix this? And does Nikto use TCP port 8080 by default?
Thank you.