Nikto

Web server scanner for misconfigurations

Description

Nikto is an open source web server scanner which performs comprehensive tests against web servers for multiple items, including dangerous files, outdated server software, and other problems.

Installation

BASH

sudo apt install nikto

Basic Usage

BASH

                            # Basic scan
nikto -h https://target.com

# Save output
nikto -h https://target.com -o report.html -Format htm
                        

Advanced Usage

                        BASH
                        
                            # With tuning (specific test categories)
nikto -h https://target.com -Tuning x

# SSL scan
nikto -h https://target.com -ssl

# Multiple targets
nikto -h targets.txt

# Through proxy
nikto -h https://target.com -useproxy http://127.0.0.1:8080

Back to Vulnerability Scanners