Nikto is a powerful open-source web server scanner that performs comprehensive tests against web servers for multiple items, including the dangerous files/CGIs, outdated server software, and server configuration issues. It is a valuable tool for penetration testers and security professionals to identify potential vulnerabilities.
Below are common usage examples for the Nikto scanner:
# To scan a particular host
nikto -host [host IP/name]# To scan a host on multiple ports (default = 80)
nikto -host [host IP/name] -port [port number 1], [port number 2], [port number 3]# To scan a host and output fingerprinted information to a file
nikto -host [host IP/name] -output [output_file]# To use a proxy while scanning a host
nikto -host [host IP/name] -useproxy [proxy address]Nikto can identify thousands of potential issues, including:
- Outdated server software versions
- Server misconfigurations
- Default files and scripts
- Insecure CGI scripts
- And many more security-related items.
It is crucial to use Nikto responsibly and only on systems you have explicit permission to scan. For more advanced usage and options, refer to the official Nikto documentation.