WHAT IS NIKTO
Nikto is an Open Source (GPL) web server scanner which performs absolute tests adjoin web servers for assorted items, including over 6700 potentially alarming files/programs, checks for anachronous versions of over 1250 servers, and adaptation specific problems on over 270 servers. It additionally checks for server agreement items such as the attendance of assorted basis files, HTTP server options, and will attack to analyze installed web servers and software. Scan items and plugins are frequently adapted and can be automatically updated.
Nikto is not advised as a catlike tool. It will analysis a web server in the quickest time possible, and is accessible in log files or to an IPS/IDS. However, there is abutment for LibWhisker’s anti-IDS methods in case you appetite to accord it a try (or analysis your IDS system).
Not every analysis is a aegis problem, admitting best are. There are some items that are “info only” blazon checks that attending for things that may not accept a aegis flaw, but the webmaster or aegis architect may not apperceive are present on the server. These items are usually apparent appropriately in the advice printed. There are additionally some checks for alien items which accept been apparent scanned for in log files.
FEATURES
- Full support for SSL
- Finds sub-domain
- Supports full HTTP Proxy
- Outdated component report
- Result saved in multiple format (xml, csv etc)
- Username guessing
- Gives details of installed software
- Takes Nmap file as input to scan port in a web-server.
- Able to perform dictionary attack.
- Updated easily
NIKTO HELP
Post a Comment