Nikto vs. Mobile Security Framework (MobSF)

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Nikto
Score 10.0 out of 10
N/A
Nikto is an open source fast (not stealthy) vulnerability testing tool that can be used in penetration testing or purple team exercises.N/A
Mobile Security Framework (MobSF)
Score 8.0 out of 10
N/A
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, IPA & APPX) along with zipped source code and provides REST APIs for integration with CI/CD or DevSecOps pipeline. The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.N/A
Pricing
NiktoMobile Security Framework (MobSF)
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
NiktoMobile Security Framework (MobSF)
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Best Alternatives
NiktoMobile Security Framework (MobSF)
Small Businesses

No answers on this topic

No answers on this topic

Medium-sized Companies
Veracode
Veracode
Score 8.6 out of 10
Veracode
Veracode
Score 8.6 out of 10
Enterprises
Veracode
Veracode
Score 8.6 out of 10
Veracode
Veracode
Score 8.6 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
NiktoMobile Security Framework (MobSF)
Likelihood to Recommend
10.0
(1 ratings)
8.0
(1 ratings)
User Testimonials
NiktoMobile Security Framework (MobSF)
Likelihood to Recommend
Open Source
Nikto is well suited for scanning web server-related vulnerabilities for small and medium enterprises. We can utilise it for checking server default files and security misconfigurations. It is not suited well for some users because it is CLI based tool and not a GUI based. Also, community and OEM support are not available for this tool.
Read full review
Open Source
MobSF is good for checking for vulnerabilities in your app. It will also give suggestions on how to address them. Another thing is can do is find code that may be incorrect. It is not, however, a substitute for a system that actually checks your code for proper use. It really is concentrated on security.
Read full review
Pros
Open Source
  • Well known tool
  • Source code available
  • Wweb server vulnerability scanner
Read full review
Open Source
  • Scan for vulnerabilities
  • Scan for bad coding
  • Give suggestions on fixes for security issues
Read full review
Cons
Open Source
  • Can be made GUI based for ease of users
  • User community should be there
  • Development and support should be available
Read full review
Open Source
  • The UI is not that user friendly
  • The documentation could be easier to understand
  • An easier method of deploying MobSF would be appreciated
Read full review
Alternatives Considered
Open Source
No answers on this topic
Open Source
In my opinion, MobSF is not as comprehensive as SonarQube. Both, however, do a very good job in scanning your code for vulnerabilities. Both do roughly the same things. The reports of SonarQube are more detailed though. The advantage that MobSF has over SonarQube is the price. One is free while the other is a paid solution (with several tiers). However, we use them together to get a more comprehensive scan.
Read full review
Return on Investment
Open Source
  • Improved security posture of organisation.
  • Improved in regulatory and corporate compliance.
  • Easy to use result in adaptation of this tool by business users.
Read full review
Open Source
  • It has allowed our apps to pass a security vetting requirement of a third party to deploy our app
  • We can see where we can improve on the development of our app
  • The deployment can take a while, especially with teams not familiar with the software
Read full review
ScreenShots