Name: Nikto
Rating: 10 (2 reviews)
Author: Open Source

Help Desk

Web and Video Conferencing

Customer Support

Innovation Management

PHP Frameworks

Development

Business Intelligence (BI)

Collaboration

Manufacturing Execution

Payment Facilitation

Quality Management

Enterprise

Accounting

Blockchain Payments

Merger and Acquisition

Payment Hubs

Finance and Accounting

Applicant Tracking

Corporate Learning Management

Employer of Record (EOR)

HR Management

Payroll

Talent Intelligence

Talent Management

Workforce Analytics

Workforce Management

Human Resources

AIOps

Bot Mitigation

Cloud Storage

Container Security

Data Center Outsourcing (Canada)

Data Center Power

Data Replication

Endpoint Security

Firewall

Fraud Detection

Graph Database

Infrastructure-as-a-Service

Integration Platform as a Service (iPaaS)

LAN Switches

Mobile Data Security

Network Performance Monitoring

Network Troubleshooting

SQL Server Performance Monitoring

Scale-Out Storage

Secure Access Control

Smart Contracts

Testing Services

Information Technology

A/B Testing

Ad Serving & Retargeting

All-in-One Marketing

Content Management

Email Marketing

Grant Management Software

IP Geolocation

Marketing Attribution

Marketing Automation

Social Media Management

Survey & Forms Building

Translation

Web Analytics

Marketing

Project Management

Task Management

Professional Services

Customer Relationship Management (CRM)

Intelligent Virtual Assistant

Sales Dialer

Sales Training

Sales

Data-Centric Audit Protection (DCAP)

Security

Aviation

Emergency Notification

Fleet Maintenance

Hospital Management

Hotel Management

Retail Analytics

Revenue Cycle Management (RCM)

Shipping

Veterinary

Warranty Management

Vertical-Specific

Find top rated software and services based on in-depth reviews from verified users. 400+ software categories including PaaS, NoSQL, BI, HR, and more.

Wireshark

Open Source

PortSwigger Burp Suite

PortSwigger Web Security

Metasploit

Rapid7

Acunetix by Invicti

Invicti Security

John the Ripper

Titania Nipper

Titania Ltd

Qualys TruRisk Platform

Qualys

Pentest-Tools.com

Veracode

Hydra

Nikto is an open source fast (not stealthy) vulnerability testing tool that can be used in penetration testing or purple team exercises.

Wireshark is a free and open source network troubleshooting tool.

Intruder, from Intruder Systems in London, is a cloud-based vulnerability scanner that finds cyber security weaknesses in digital infrastructure, to avoid costly data breaches.

Intruder

Nikto

Application Security Testing is a key element of ensuring that web applications remain secure. Various tools and managed services exist to provide continuous testing, besides application security platforms that include app testing as part of their functionality. Penetration Testing (Pen Testing) Tools provide means to conduct authorized, ethical hacking of applications in production, to locate vulnerabilities that may be exploited by hackers.

Penetration Testing

This is a quick demo on obtaining and using Nikto to test the security of your web server.  I have chosen to use apache for the web server being scanned and as always my preference is to run on Linux, specifically Ubuntu 11.04.  

There is a slight synchronization issue between the audio and video in the last 60 seconds.  

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files/CGIs, checks for outdated versions of over 1000 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.

Nikto is not designed as an overly stealthy tool. It will test a web server in the quickest time possible, and is fairly obvious in log files. However, there is support for LibWhisker's anti-IDS methods in case you want to give it a try (or test your IDS system).

Not every check is a security problem, though most are. There are some items that are "info only" type checks that look for things that may not have a security flaw, but the webmaster or security engineer may not know are present on the server. These items are usually marked appropriately in the information printed. There are also some checks for unknown items which have been seen scanned for in log files.

Nikto is written by Chris Sullo and David Lodge.
http://cirt.net/Nikto2

Nikto Web Server Scanner Demo by NetcladSecurity

Slovak Band DEMO 6 - Nikto Nezna

Martin Gabor Demo 2020 Cower Nikto Nezna Jak To boly.

Nikto Demo

nikto demo

NIKTO+LOG DEMO

Likelihood to Recommend

Archer Integrated Risk Management Platform

Microsoft Teams

Tenable Nessus

Senior consultant

Nikto 2022-06-22 12:22:53

TrustRadius is a technology and business research firm based in Austin, Texas. The company is known as a review platform for verified B2B technology and software reviews through a proprietary algorithm and human verification.

TrustRadius

Home

Penetration Testing Tools

It is one of the best open-source command line web server vulnerability scanner tools available in the market as of now. I have been using this tool for the last 7 years It also checks for checking server configuration items such as the presence of multiple index files, and HTTP server options, and will attempt to identify installed web servers and software.

Well known tool
Source code available
Wweb server vulnerability scanner

Can be made GUI based for ease of users
User community should be there
Development and support should be available

Identifying common web server vulnerabilities
Open source tool
Identify outdated servers and programs
Not a very costly product

Improved security posture of organisation.
Improved in regulatory and corporate compliance.
Easy to use result in adaptation of this tool by business users.

Qualys Cloud Platform, Microsoft Teams, Archer Integrated Risk Management Platform

Nikto

Overview

What is Nikto?