Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files/CGIs, checks for outdated versions of over 1200 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated. For downloads and more information, visit the Nikto homepage.
- #14, 2
- Latest release
- Feb. 20, 2011 (12 years, 3 months ago)
- ★★★★½ (10)
★★★★★60% ★★★★30% ★★★0% ★★0% ★10%
Nikto is one of the best web scanners. Now we have Nikto online https://nikto.online/ too, for easy scan
We like Nikto scanner and integrated it to our SaaS system. https://penteston.com
Nikto is very good scanner, yes it's old but still can detect flaws that would be missed with other scanners. In combination with w3af, Nessus (openvas) and maybe Acunetix it would be pretty much complete automated discovery of security flaws of servers and web applications. http://tz-security.com
I prefer nmap pkg, but nikto scanner is not at all bad.. hope for improvements.
I've had to research this tool for an assignment for my I.T studies... For an open-source tool, I found it to be very impressive - it made me aware of errors on my Debian VPS I wasn't even aware of. I was also suprised of the vast amount of features it offered, and the types of tests that are available to run. I find it a great tool to test clients' websites and make sure the servers are secure.
Just found it, old but still useful tool, we were suffering from many treads on many sites and it still catch them up pretty well
I like this tools!! because it can scan many vulnerability~
Very old, it is not at the same level of the other tools in this list
Really good for finding vulnerable web servers. Good work!
I Interst to all type of web and application Anti kack methods and applications.Thanks .
Definitely the best one out of the free options, would be nice if they made a java port, for easier Windows integration
This is a Perl script, so to run under Windows requires a Perl interpreter.
For some reason I can't find the windows version on the homepage.
i like this tool, it's awesome there is a lot of things i can do with this tool to protect my website
Old school tool that continues to find poorly configured web servers. It wont find all your web app bugs but it does find interesting things to poke at.